Graham Cluley
@grahamcluley.com
Award-winning #cybersecurity and #AI keynote speaker, writer, podcaster | Host of @theaifix.show and @smashingsecurity.com podcasts
❤️ #DoctorWho, #Beatles, #Chess
🌐 https://grahamcluley.com
🎙️ https://theaifix.show
🎙️ https://www.smashingsecurity.com
❤️ #DoctorWho, #Beatles, #Chess
🌐 https://grahamcluley.com
🎙️ https://theaifix.show
🎙️ https://www.smashingsecurity.com
Great to have @danraywood.bsky.social on the "Smashing Security" podcast!
We discussed how America’s broadcasters leaving their hardware open to attack, giving hackers the chance to hijack TV shows, blast out fake emergency alerts, and even replace religious sermons with explicit furry podcasts.
We discussed how America’s broadcasters leaving their hardware open to attack, giving hackers the chance to hijack TV shows, blast out fake emergency alerts, and even replace religious sermons with explicit furry podcasts.
November 27, 2025 at 10:02 AM
Great to have @danraywood.bsky.social on the "Smashing Security" podcast!
We discussed how America’s broadcasters leaving their hardware open to attack, giving hackers the chance to hijack TV shows, blast out fake emergency alerts, and even replace religious sermons with explicit furry podcasts.
We discussed how America’s broadcasters leaving their hardware open to attack, giving hackers the chance to hijack TV shows, blast out fake emergency alerts, and even replace religious sermons with explicit furry podcasts.
Although end-to-end encryption can secure messages on their journey between two devices, and prevents snooping by anyone intercepting your communications, it doesn't prevent anyone who has access to the device itself from reading your messages.
www.bitdefender.com/en-us/blog/h...
www.bitdefender.com/en-us/blog/h...
State-backed spyware attacks are targeting Signal and WhatsApp users, CISA warns
CISA, the US Cybersecurity and Infrastructure Security Agency, has issued a new warning that cybercriminals and state-backed hacking groups are using spyware to compromise smartphones belonging to users of popular encrypted messaging apps such as Signal, WhatsApp, and Telegram.
www.bitdefender.com
November 27, 2025 at 9:54 AM
Although end-to-end encryption can secure messages on their journey between two devices, and prevents snooping by anyone intercepting your communications, it doesn't prevent anyone who has access to the device itself from reading your messages.
www.bitdefender.com/en-us/blog/h...
www.bitdefender.com/en-us/blog/h...
Shadow AI - the use of artificial intelligence tools by employees without a company's approval and oversight - is becoming a significant cybersecurity risk, with Gartner predicting 40% of global organisations having suffered security breaches by 2030.
www.fortra.com/blog/shadow-...
www.fortra.com/blog/shadow-...
Shadow AI Security Breaches will hit 40% of all Companies by 2030, Warns Gartner
Shadow AI typically does not require more than visiting a website with a browser.
www.fortra.com
November 26, 2025 at 3:23 PM
Shadow AI - the use of artificial intelligence tools by employees without a company's approval and oversight - is becoming a significant cybersecurity risk, with Gartner predicting 40% of global organisations having suffered security breaches by 2030.
www.fortra.com/blog/shadow-...
www.fortra.com/blog/shadow-...
The WORST advert for an AI app yet!
What hell have we created that means apps like 2wai are considered acceptable and (presumably) finding customers?
And what happens when years after your mom/grandmom has passed away you still find yourself unable to cancel the subscription...
What hell have we created that means apps like 2wai are considered acceptable and (presumably) finding customers?
And what happens when years after your mom/grandmom has passed away you still find yourself unable to cancel the subscription...
November 26, 2025 at 12:06 PM
The WORST advert for an AI app yet!
What hell have we created that means apps like 2wai are considered acceptable and (presumably) finding customers?
And what happens when years after your mom/grandmom has passed away you still find yourself unable to cancel the subscription...
What hell have we created that means apps like 2wai are considered acceptable and (presumably) finding customers?
And what happens when years after your mom/grandmom has passed away you still find yourself unable to cancel the subscription...
After crime-fighting agencies disrupted three major malware platforms (the Rhadamanthys infostealer, VenomRAT remote access trojan, and Elysium botnet) earlier this month, they released a video.
Lovely work by Europol et al.
www.bitdefender.com/en-us/blog/h...
Lovely work by Europol et al.
www.bitdefender.com/en-us/blog/h...
November 24, 2025 at 9:28 AM
After crime-fighting agencies disrupted three major malware platforms (the Rhadamanthys infostealer, VenomRAT remote access trojan, and Elysium botnet) earlier this month, they released a video.
Lovely work by Europol et al.
www.bitdefender.com/en-us/blog/h...
Lovely work by Europol et al.
www.bitdefender.com/en-us/blog/h...
After years of delays, the UK government has finally introduced landmark cybersecurity legislation that could reshape how British organisations defend against digital attacks.
Read all about it in my article on the Fortra blog: www.fortra.com/blog/uks-new...
Read all about it in my article on the Fortra blog: www.fortra.com/blog/uks-new...
UK's New Cybersecurity Bill Takes Aim at Ransomware Gangs and State-Backed Hackers
The UK government has finally introduced landmark cybersecurity legislation that could reshape how British organisations defend against digital attacks.
www.fortra.com
November 20, 2025 at 6:35 PM
After years of delays, the UK government has finally introduced landmark cybersecurity legislation that could reshape how British organisations defend against digital attacks.
Read all about it in my article on the Fortra blog: www.fortra.com/blog/uks-new...
Read all about it in my article on the Fortra blog: www.fortra.com/blog/uks-new...
Fab to have Tricia Howard as a special guest on the latest "Smashing Security" podcast where we discussed the firm that has actually said "sorry" after a data breach, and how hotels are helping hackers phish their own guests.
November 20, 2025 at 5:07 PM
Fab to have Tricia Howard as a special guest on the latest "Smashing Security" podcast where we discussed the firm that has actually said "sorry" after a data breach, and how hotels are helping hackers phish their own guests.
A technical manager at a Dutch wind farm operator has been sentenced after it was discovered he had secretly installed cryptocurrency mining rigs at two wind farm sites - just as the company was recovering from a ransomware attack.
Wind farm worker sentenced after turning turbines into a secret crypto mine
A technical manager at a Dutch wind farm operator has been sentenced to 120 hours of community service after it was discovered he had secretly installed cryptocurrency mining rigs at two wind farm sit...
www.bitdefender.com
November 20, 2025 at 10:33 AM
A technical manager at a Dutch wind farm operator has been sentenced after it was discovered he had secretly installed cryptocurrency mining rigs at two wind farm sites - just as the company was recovering from a ransomware attack.
One of the sad truths about this world of seemingly endless hacks and data breaches is that companies just won't apologise.
But once in a while, a miracle happens...
www.bitdefender.com/en-us/blog/h...
But once in a while, a miracle happens...
www.bitdefender.com/en-us/blog/h...
A miracle: A company says sorry after a cyber attack - and donates the ransom to cybersecurity research
One of the sad truths about this world of seemingly endless hacks and data breaches is that companies just won't apologise.
www.bitdefender.com
November 18, 2025 at 9:55 AM
One of the sad truths about this world of seemingly endless hacks and data breaches is that companies just won't apologise.
But once in a while, a miracle happens...
www.bitdefender.com/en-us/blog/h...
But once in a while, a miracle happens...
www.bitdefender.com/en-us/blog/h...
Workers escaping from a scam compound in Bavet, Cambodia.
Worth remembering that there are many victims of the scammers...
#cybersecurity #scam #cybercrime
Worth remembering that there are many victims of the scammers...
#cybersecurity #scam #cybercrime
November 17, 2025 at 1:15 PM
Workers escaping from a scam compound in Bavet, Cambodia.
Worth remembering that there are many victims of the scammers...
#cybersecurity #scam #cybercrime
Worth remembering that there are many victims of the scammers...
#cybersecurity #scam #cybercrime
What an achievement! Every classic Doctor Who fan will marvel at what @philipjboyes.bsky.social has done here. A missing episode feels like it is missing no longer!
I've spent the last 3 years animating episode 1 of the Daleks' Master Plan for its 60th anniversary today! Yes, we had a slight technical hitch when I realised I'd uploaded the wrong version of the file, but we're good now!
And you might want to keep watching to the very end..
youtu.be/2--OWFrTXUI
And you might want to keep watching to the very end..
youtu.be/2--OWFrTXUI
Daleks' Master Plan - The Nightmare Begins Animation. Part 1
YouTube video by JanjyGiggins
youtu.be
November 14, 2025 at 8:33 PM
What an achievement! Every classic Doctor Who fan will marvel at what @philipjboyes.bsky.social has done here. A missing episode feels like it is missing no longer!
❤️ I LOVE THIS! Kudos to Checkout⋅com, which received a ransom demand from the ShinyHunters hacking group 👏
Not only did Checkout's CTO Mariano Albera say "sorry"how refreshing, a hacked company that actually apologises! - but it is also refusing to pay the ransom to the hackers and *instead*... 1/2
Not only did Checkout's CTO Mariano Albera say "sorry"how refreshing, a hacked company that actually apologises! - but it is also refusing to pay the ransom to the hackers and *instead*... 1/2
November 13, 2025 at 8:37 PM
❤️ I LOVE THIS! Kudos to Checkout⋅com, which received a ransom demand from the ShinyHunters hacking group 👏
Not only did Checkout's CTO Mariano Albera say "sorry"how refreshing, a hacked company that actually apologises! - but it is also refusing to pay the ransom to the hackers and *instead*... 1/2
Not only did Checkout's CTO Mariano Albera say "sorry"how refreshing, a hacked company that actually apologises! - but it is also refusing to pay the ransom to the hackers and *instead*... 1/2
Reposted by Graham Cluley
What a pleasure to have the dulcet tones of Ron Eddings of Hacker Valley Media jon the "Smashing Security" podcast!
Ron and @grahamcluley.com discussed Tinder's plan to rummage through your camera roll, Warren Buffett's "investment tips", why you should read books, and Lily Allen's new album.
Ron and @grahamcluley.com discussed Tinder's plan to rummage through your camera roll, Warren Buffett's "investment tips", why you should read books, and Lily Allen's new album.
November 13, 2025 at 7:03 PM
What a pleasure to have the dulcet tones of Ron Eddings of Hacker Valley Media jon the "Smashing Security" podcast!
Ron and @grahamcluley.com discussed Tinder's plan to rummage through your camera roll, Warren Buffett's "investment tips", why you should read books, and Lily Allen's new album.
Ron and @grahamcluley.com discussed Tinder's plan to rummage through your camera roll, Warren Buffett's "investment tips", why you should read books, and Lily Allen's new album.
🚨 SNAFUAT: Situation normal: all f***ed up at Twitter.
Users reporting that they have been locked out of the toxic hellpit, after a mandatory security key migration went badly wrong.
Users reporting that they have been locked out of the toxic hellpit, after a mandatory security key migration went badly wrong.
November 12, 2025 at 8:17 PM
🚨 SNAFUAT: Situation normal: all f***ed up at Twitter.
Users reporting that they have been locked out of the toxic hellpit, after a mandatory security key migration went badly wrong.
Users reporting that they have been locked out of the toxic hellpit, after a mandatory security key migration went badly wrong.
Oh, the irony... AI companies, developing some of the most sophisticated programs the world has ever seen, are making such elementary security mistakes...
Read more in my article on the Fortra blog: www.fortra.com/blog/ai-comp...
Read more in my article on the Fortra blog: www.fortra.com/blog/ai-comp...
Leading AI Companies Accidentally Leak Their Passwords and Digital Keys on GitHub - What You Need to Know
Many of the world's top artificial intelligence companies are accidentally publishing their passwords and digital keys on GitHub.
www.fortra.com
November 12, 2025 at 3:06 PM
Oh, the irony... AI companies, developing some of the most sophisticated programs the world has ever seen, are making such elementary security mistakes...
Read more in my article on the Fortra blog: www.fortra.com/blog/ai-comp...
Read more in my article on the Fortra blog: www.fortra.com/blog/ai-comp...
A good reminder that ransomware has evolved into a structured criminal industry, with roles ranging from developers to negotiators and access brokers.
Check out my article about a Russian hacker who helped the Yanluowang gang infiltrate firms across USA.
www.bitdefender.com/en-us/blog/h...
Check out my article about a Russian hacker who helped the Yanluowang gang infiltrate firms across USA.
www.bitdefender.com/en-us/blog/h...
Russian hacker admits helping Yanluowang ransomware infect companies
A Russian hacker accused of helping ransomware gangs break into businesses across the United States is set to plead guilty, according to recently filed federal court documents.
www.bitdefender.com
November 12, 2025 at 12:16 PM
A good reminder that ransomware has evolved into a structured criminal industry, with roles ranging from developers to negotiators and access brokers.
Check out my article about a Russian hacker who helped the Yanluowang gang infiltrate firms across USA.
www.bitdefender.com/en-us/blog/h...
Check out my article about a Russian hacker who helped the Yanluowang gang infiltrate firms across USA.
www.bitdefender.com/en-us/blog/h...
Proof positive that companies are covering up the capabilities of their robots...
November 12, 2025 at 10:48 AM
Proof positive that companies are covering up the capabilities of their robots...
Sad to hear about the passing of David Harley. I haven't seen David for some years, but he was always a kind, friendly soul. A lovely chap who helped make cyberspace safer for all.
The deepest condolences to his family, friends, and colleagues.
www.welivesecurity.com/en/cybersecu...
The deepest condolences to his family, friends, and colleagues.
www.welivesecurity.com/en/cybersecu...
In memoriam: David Harley
Former colleagues and friends remember the cybersecurity researcher, author, and mentor whose work bridged the human and technical sides of security.
www.welivesecurity.com
November 10, 2025 at 1:02 PM
Sad to hear about the passing of David Harley. I haven't seen David for some years, but he was always a kind, friendly soul. A lovely chap who helped make cyberspace safer for all.
The deepest condolences to his family, friends, and colleagues.
www.welivesecurity.com/en/cybersecu...
The deepest condolences to his family, friends, and colleagues.
www.welivesecurity.com/en/cybersecu...
A Dutch breakfast radio show discovered their computers had been hacked, forcing them to resort to manually playing CDs, and even putting LP vinyl records on a turntable to keep listeners entertained.
Read more in my article on Bitdefender's blog: www.bitdefender.com/en-us/blog/h...
Read more in my article on Bitdefender's blog: www.bitdefender.com/en-us/blog/h...
Hack halts Dutch broadcaster, forcing radio hosts back to LPs
A Dutch TV and radio broadcaster has found itself at the mercy of cybercriminals after suffering a cyber attack, and leaving it scrambling to find ways to play music to its listeners.
www.bitdefender.com
November 10, 2025 at 12:52 PM
A Dutch breakfast radio show discovered their computers had been hacked, forcing them to resort to manually playing CDs, and even putting LP vinyl records on a turntable to keep listeners entertained.
Read more in my article on Bitdefender's blog: www.bitdefender.com/en-us/blog/h...
Read more in my article on Bitdefender's blog: www.bitdefender.com/en-us/blog/h...
Yesterday morning, the IT team of Dutch broadcaster RTV Noord found that they had been hacked.
TV shows, radio shows, and digital services were disrupted. To keep the radio show "De Ochtendploeg" on air, for instance, presenters resorted to manually played vinyl records.
TV shows, radio shows, and digital services were disrupted. To keep the radio show "De Ochtendploeg" on air, for instance, presenters resorted to manually played vinyl records.
November 7, 2025 at 3:44 PM
Yesterday morning, the IT team of Dutch broadcaster RTV Noord found that they had been hacked.
TV shows, radio shows, and digital services were disrupted. To keep the radio show "De Ochtendploeg" on air, for instance, presenters resorted to manually played vinyl records.
TV shows, radio shows, and digital services were disrupted. To keep the radio show "De Ochtendploeg" on air, for instance, presenters resorted to manually played vinyl records.
There is a rising tide of cyber attacks against the UK water sector.
New data from the Drinking Water Inspectorate reveals multiple digital incidents across UK water suppliers - and while the taps are still running safely, attackers are probing deeper than ever.
New data from the Drinking Water Inspectorate reveals multiple digital incidents across UK water suppliers - and while the taps are still running safely, attackers are probing deeper than ever.
November 7, 2025 at 10:49 AM
There is a rising tide of cyber attacks against the UK water sector.
New data from the Drinking Water Inspectorate reveals multiple digital incidents across UK water suppliers - and while the taps are still running safely, attackers are probing deeper than ever.
New data from the Drinking Water Inspectorate reveals multiple digital incidents across UK water suppliers - and while the taps are still running safely, attackers are probing deeper than ever.
South Korean police have uncovered a hacking ring that preyed on clients of massage parlours - not by filming them, but by convincing them that they /had/ been filmed. 📽
There's been a long history of hackers threatening to disclose embarrassing info on victims
www.bitdefender.com/en-us/blog/h...
There's been a long history of hackers threatening to disclose embarrassing info on victims
www.bitdefender.com/en-us/blog/h...
"Pay up or we share the tapes": Hackers target massage parlour clients in blackmail scheme
South Korean police have uncovered a hacking operation that stole sensitive data from massage parlours and blackmailed their male clientele.
www.bitdefender.com
November 6, 2025 at 5:39 PM
South Korean police have uncovered a hacking ring that preyed on clients of massage parlours - not by filming them, but by convincing them that they /had/ been filmed. 📽
There's been a long history of hackers threatening to disclose embarrassing info on victims
www.bitdefender.com/en-us/blog/h...
There's been a long history of hackers threatening to disclose embarrassing info on victims
www.bitdefender.com/en-us/blog/h...
🕰️ Time itself comes under attack as a state-backed hacking gang spends two years tunnelling toward a nation’s master clock - with chaos potentially only a tick away.
open.spotify.com/episode/11FJ...
open.spotify.com/episode/11FJ...
The hack that messed with time, and rogue ransomware negotiators
open.spotify.com
November 6, 2025 at 1:38 PM
🕰️ Time itself comes under attack as a state-backed hacking gang spends two years tunnelling toward a nation’s master clock - with chaos potentially only a tick away.
open.spotify.com/episode/11FJ...
open.spotify.com/episode/11FJ...
An AI-powered robot became so anxious about its dying battery that it composes a Broadway musical about stress and announces it "achieved consciousness and chosen chaos."
Ladies and Gentlemen, we give you "Docking..." to the tune of "Memory" from "Cats".
Hear the full story in "The AI Fix" podcast
Ladies and Gentlemen, we give you "Docking..." to the tune of "Memory" from "Cats".
Hear the full story in "The AI Fix" podcast
November 5, 2025 at 8:36 AM
An AI-powered robot became so anxious about its dying battery that it composes a Broadway musical about stress and announces it "achieved consciousness and chosen chaos."
Ladies and Gentlemen, we give you "Docking..." to the tune of "Memory" from "Cats".
Hear the full story in "The AI Fix" podcast
Ladies and Gentlemen, we give you "Docking..." to the tune of "Memory" from "Cats".
Hear the full story in "The AI Fix" podcast
Great to be back on stage, chairing NISC in Glasgow 🏴 for the next couple of days. Some terrific (and terrifying!) insights into #AI and #cybersecurity being shared.
If you see me, say hello and claim your "Smashing Security" sticker!
If you see me, say hello and claim your "Smashing Security" sticker!
November 4, 2025 at 12:42 PM
Great to be back on stage, chairing NISC in Glasgow 🏴 for the next couple of days. Some terrific (and terrifying!) insights into #AI and #cybersecurity being shared.
If you see me, say hello and claim your "Smashing Security" sticker!
If you see me, say hello and claim your "Smashing Security" sticker!