Graham Cluley
@grahamcluley.com
Award-winning #cybersecurity keynote speaker, writer, podcaster | Host of multi-award-winning @smashingsecurity.com podcast.
❤️ #DoctorWho, #Beatles, #Chess
He/him
🌐 https://grahamcluley.com
🎙️ https://www.smashingsecurity.com
❤️ #DoctorWho, #Beatles, #Chess
He/him
🌐 https://grahamcluley.com
🎙️ https://www.smashingsecurity.com
I remember when I proposed this... although seeing as you turned out to be less of the doom monger when it came to AI than me, maybe I should have been the one wearing cloaked in darkness.
February 10, 2026 at 1:24 PM
I remember when I proposed this... although seeing as you turned out to be less of the doom monger when it came to AI than me, maybe I should have been the one wearing cloaked in darkness.
When a Romanian businesswoman fell for a fake Dubai Crown Prince in a $2.5 million romance scam, investigators tracked the fraudster to his Nigerian mansion - only to discover he was masquerading as a campaigning philanthropist.
Read more: www.bitdefender.com/en-us/blog/h...
Read more: www.bitdefender.com/en-us/blog/h...
Fake Dubai Crown Prince tracked to Nigerian mansion after $2.5M romance scam
An investigation has tracked down a sophisticated scammer who posed as Dubai's Crown Prince in a succesful plot to defraud a Romanian businesswoman out of over US $2.
www.bitdefender.com
February 7, 2026 at 1:22 PM
When a Romanian businesswoman fell for a fake Dubai Crown Prince in a $2.5 million romance scam, investigators tracked the fraudster to his Nigerian mansion - only to discover he was masquerading as a campaigning philanthropist.
Read more: www.bitdefender.com/en-us/blog/h...
Read more: www.bitdefender.com/en-us/blog/h...
Reposted by Graham Cluley
OMFGs the second degree burn from The Guardian
February 4, 2026 at 3:58 AM
OMFGs the second degree burn from The Guardian
PLUS, we chat about how a senior US cybersecurity official uploaded sensitive government material into the public version of ChatGPT. Oops.
🟢 Spotify: open.spotify.com/episode/5hCr...
🟣 Apple Podcasts: www.smashingsecurity.com/applepodcasts
🛑 Pocket Casts: pca.st/itunes/11950...
🟢 Spotify: open.spotify.com/episode/5hCr...
🟣 Apple Podcasts: www.smashingsecurity.com/applepodcasts
🛑 Pocket Casts: pca.st/itunes/11950...
The Epstein Files didn’t hide this hacker very well
open.spotify.com
February 5, 2026 at 8:27 PM
PLUS, we chat about how a senior US cybersecurity official uploaded sensitive government material into the public version of ChatGPT. Oops.
🟢 Spotify: open.spotify.com/episode/5hCr...
🟣 Apple Podcasts: www.smashingsecurity.com/applepodcasts
🛑 Pocket Casts: pca.st/itunes/11950...
🟢 Spotify: open.spotify.com/episode/5hCr...
🟣 Apple Podcasts: www.smashingsecurity.com/applepodcasts
🛑 Pocket Casts: pca.st/itunes/11950...
Fab to have Tricia Howard join me on the latest "Smashing Security" podcast, where we discussed how supposedly-redacted Epstein files can still reveal exactly who they’re talking about - especially when AI, LinkedIn, and a few biographical breadcrumbs do the heavy lifting.
February 5, 2026 at 8:27 PM
Fab to have Tricia Howard join me on the latest "Smashing Security" podcast, where we discussed how supposedly-redacted Epstein files can still reveal exactly who they’re talking about - especially when AI, LinkedIn, and a few biographical breadcrumbs do the heavy lifting.
Maybe training police on cryptocurrency while running a running a vast Tor-hidden drug bazaar wasn't such a good idea...
Read more about the man who made an elementary mistake that ensured his arrest.
www.bitdefender.com/en-us/blog/h...
Read more about the man who made an elementary mistake that ensured his arrest.
www.bitdefender.com/en-us/blog/h...
Incognito Market admin sentenced to 30 years for running $105 million dark web drug empire
A Taiwanese man who ran one of the world's largest dark web drugs marketplaces has been sentenced to 30 years in a US federal prison, in what the judge described as "the most serious drug crime I...
www.bitdefender.com
February 5, 2026 at 8:18 PM
Maybe training police on cryptocurrency while running a running a vast Tor-hidden drug bazaar wasn't such a good idea...
Read more about the man who made an elementary mistake that ensured his arrest.
www.bitdefender.com/en-us/blog/h...
Read more about the man who made an elementary mistake that ensured his arrest.
www.bitdefender.com/en-us/blog/h...
Sorry to hear this Joe.
Tech is such an integral part of our lives, and deserves quality reporting. Feels like another poor decision by the Washington Post. :(
I'm sure your talents will be put to good use elsewhere. Good luck!
Tech is such an integral part of our lives, and deserves quality reporting. Feels like another poor decision by the Washington Post. :(
I'm sure your talents will be put to good use elsewhere. Good luck!
February 4, 2026 at 5:12 PM
Sorry to hear this Joe.
Tech is such an integral part of our lives, and deserves quality reporting. Feels like another poor decision by the Washington Post. :(
I'm sure your talents will be put to good use elsewhere. Good luck!
Tech is such an integral part of our lives, and deserves quality reporting. Feels like another poor decision by the Washington Post. :(
I'm sure your talents will be put to good use elsewhere. Good luck!
I can't hear the phrase without thinking of Lord Peter Wimsey...
February 2, 2026 at 7:54 PM
I can't hear the phrase without thinking of Lord Peter Wimsey...
eScan has issued a fix, but if you were hit you may need to manually fix the hosts file first, or contact them directly for the patch.
Do you feel confident that the nightmare scenario of your cybersecurity vendor getting pwned won't impact you?
More info: www.morphisec.com/blog/critica...
4/4
Do you feel confident that the nightmare scenario of your cybersecurity vendor getting pwned won't impact you?
More info: www.morphisec.com/blog/critica...
4/4
Threat Bulletin: Critical eScan Supply Chain Compromise | Morphisec Blog
Morphisec has identified a critical eScan supply chain compromise. Read this bulletin for immediate remediate actions and IOC information.
www.morphisec.com
February 2, 2026 at 3:27 PM
eScan has issued a fix, but if you were hit you may need to manually fix the hosts file first, or contact them directly for the patch.
Do you feel confident that the nightmare scenario of your cybersecurity vendor getting pwned won't impact you?
More info: www.morphisec.com/blog/critica...
4/4
Do you feel confident that the nightmare scenario of your cybersecurity vendor getting pwned won't impact you?
More info: www.morphisec.com/blog/critica...
4/4
To make matters worse, the malware tampered with users' hosts file to block eScan's update servers - meaning the remediation patch eScan released COULDN'T reach compromised systems automatically...
3/4
3/4
February 2, 2026 at 3:27 PM
To make matters worse, the malware tampered with users' hosts file to block eScan's update servers - meaning the remediation patch eScan released COULDN'T reach compromised systems automatically...
3/4
3/4
On 20 January, malicious hackers compromised the anti-virus update infrastructure of cybersecurity firm MicroWorld Technologies - the makers of eScan anti-virus.
They managed to push out malicious payloads to users through the very mechanism designed to protect them...
2/4
They managed to push out malicious payloads to users through the very mechanism designed to protect them...
2/4
February 2, 2026 at 3:27 PM
On 20 January, malicious hackers compromised the anti-virus update infrastructure of cybersecurity firm MicroWorld Technologies - the makers of eScan anti-virus.
They managed to push out malicious payloads to users through the very mechanism designed to protect them...
2/4
They managed to push out malicious payloads to users through the very mechanism designed to protect them...
2/4
The nightmare scenario for any cybersecurity company - when its solution becomes the actual attack vector. 😱
If you needed one, here's a timely reminder that supply-chain attacks remain one of the most insidious threats in cybersecurity...
1/4
If you needed one, here's a timely reminder that supply-chain attacks remain one of the most insidious threats in cybersecurity...
1/4
February 2, 2026 at 3:27 PM
The nightmare scenario for any cybersecurity company - when its solution becomes the actual attack vector. 😱
If you needed one, here's a timely reminder that supply-chain attacks remain one of the most insidious threats in cybersecurity...
1/4
If you needed one, here's a timely reminder that supply-chain attacks remain one of the most insidious threats in cybersecurity...
1/4
Maybe it's not a case of AI getting smarter and smarter, maybe it's us humans getting dumber and dumber...
Thanks to Hacker Valley Media for having me on their show. You can watch the full thing here: www.youtube.com/watch?v=9brv...
Thanks to Hacker Valley Media for having me on their show. You can watch the full thing here: www.youtube.com/watch?v=9brv...
February 2, 2026 at 2:51 PM
Maybe it's not a case of AI getting smarter and smarter, maybe it's us humans getting dumber and dumber...
Thanks to Hacker Valley Media for having me on their show. You can watch the full thing here: www.youtube.com/watch?v=9brv...
Thanks to Hacker Valley Media for having me on their show. You can watch the full thing here: www.youtube.com/watch?v=9brv...
Good reporting about an important story.
Was great to have @joetidy.bsky.social on this week's @smashingsecurity.com podcast, sharing his thoughts on this case.
Was great to have @joetidy.bsky.social on this week's @smashingsecurity.com podcast, sharing his thoughts on this case.
Exclusive broadcast interview with Ghanem al-Masarir today. The Saudi human rights activist accused Saudi Arabia of targeting him with spyware and has now been awarded £3m in damages by a UK court which concluded the Saudi Royal family ordered the hack and an assault.
www.youtube.com/watch?v=yrgJ...
www.youtube.com/watch?v=yrgJ...
Hacked, stalked and beaten, the YouTuber awarded £3m after Saudi spyware attack
YouTube video by Joe Tidy
www.youtube.com
January 31, 2026 at 9:30 PM
Good reporting about an important story.
Was great to have @joetidy.bsky.social on this week's @smashingsecurity.com podcast, sharing his thoughts on this case.
Was great to have @joetidy.bsky.social on this week's @smashingsecurity.com podcast, sharing his thoughts on this case.
Reposted by Graham Cluley
Love this week’s episode of @smashingsecurity.com!
@joetidy.bsky.social’s book is amazing, definitely pick it up now that it’s available in the US.
And, @grahamcluley.com, you know I love you, but if you need an arch-nemesis I’m your huckleberry!
@joetidy.bsky.social’s book is amazing, definitely pick it up now that it’s available in the US.
And, @grahamcluley.com, you know I love you, but if you need an arch-nemesis I’m your huckleberry!
The dark web's worst assassins, and Pegasus in the dock
Podcast Episode · Smashing Security · 01/29/2026 · 41m
podcasts.apple.com
January 31, 2026 at 9:24 PM
Love this week’s episode of @smashingsecurity.com!
@joetidy.bsky.social’s book is amazing, definitely pick it up now that it’s available in the US.
And, @grahamcluley.com, you know I love you, but if you need an arch-nemesis I’m your huckleberry!
@joetidy.bsky.social’s book is amazing, definitely pick it up now that it’s available in the US.
And, @grahamcluley.com, you know I love you, but if you need an arch-nemesis I’m your huckleberry!
The DoJ may have redacted the name, but they left enough details to easily identify the individual referenced.... took me just a couple of minutes to work it out.
TechCrunch has reported about it here (without naming the hacker): techcrunch.com/2026/01/30/i...
3/3
TechCrunch has reported about it here (without naming the hacker): techcrunch.com/2026/01/30/i...
3/3
Informant told FBI that Jeffrey Epstein had a ‘personal hacker’ | TechCrunch
The hacker allegedly developed zero-day exploits and offensive cyber tools and sold them to several countries, including an unnamed central African government, the U.K., and the United States.
techcrunch.com
January 31, 2026 at 1:41 PM
The DoJ may have redacted the name, but they left enough details to easily identify the individual referenced.... took me just a couple of minutes to work it out.
TechCrunch has reported about it here (without naming the hacker): techcrunch.com/2026/01/30/i...
3/3
TechCrunch has reported about it here (without naming the hacker): techcrunch.com/2026/01/30/i...
3/3
The name of the hacker alleged to have worked for Epstein is redacted in the document, but...
🔺 He sold his company to CrowdStrike in 2017
🔺 He took on a VP role at the company, post acquisition
🔺 He was an Italian citizen born in Calabria
2/3
🔺 He sold his company to CrowdStrike in 2017
🔺 He took on a VP role at the company, post acquisition
🔺 He was an Italian citizen born in Calabria
2/3
January 31, 2026 at 1:41 PM
The name of the hacker alleged to have worked for Epstein is redacted in the document, but...
🔺 He sold his company to CrowdStrike in 2017
🔺 He took on a VP role at the company, post acquisition
🔺 He was an Italian citizen born in Calabria
2/3
🔺 He sold his company to CrowdStrike in 2017
🔺 He took on a VP role at the company, post acquisition
🔺 He was an Italian citizen born in Calabria
2/3
One of the newly-released files reveals that an informant claims that Jeffery Epstein had a hacker working for him who found zero-day exploits in iOS, BlackBerry etc.
The name of the hacker alleged to have worked for Epstein is redacted in the document, but...
1/3
The name of the hacker alleged to have worked for Epstein is redacted in the document, but...
1/3
January 31, 2026 at 1:41 PM
One of the newly-released files reveals that an informant claims that Jeffery Epstein had a hacker working for him who found zero-day exploits in iOS, BlackBerry etc.
The name of the hacker alleged to have worked for Epstein is redacted in the document, but...
1/3
The name of the hacker alleged to have worked for Epstein is redacted in the document, but...
1/3
Reposted by Graham Cluley
You can test new tech ideas using the Seinfeld Test
Would the product eliminate the plot of an episode? (Google maps, cell phones, paypal, battery packs)
Good tech.
Would the product inspire new Seinfeld plots? (NFTs, AI chatbots, crypto currency, blindboxes, metaverse land sales)
Bad tech.
Would the product eliminate the plot of an episode? (Google maps, cell phones, paypal, battery packs)
Good tech.
Would the product inspire new Seinfeld plots? (NFTs, AI chatbots, crypto currency, blindboxes, metaverse land sales)
Bad tech.
January 31, 2026 at 6:57 AM
You can test new tech ideas using the Seinfeld Test
Would the product eliminate the plot of an episode? (Google maps, cell phones, paypal, battery packs)
Good tech.
Would the product inspire new Seinfeld plots? (NFTs, AI chatbots, crypto currency, blindboxes, metaverse land sales)
Bad tech.
Would the product eliminate the plot of an episode? (Google maps, cell phones, paypal, battery packs)
Good tech.
Would the product inspire new Seinfeld plots? (NFTs, AI chatbots, crypto currency, blindboxes, metaverse land sales)
Bad tech.
The FBI has seized control of RAMP, a cybercrime online forum that bragged to be the only place that allowed ransomware, with over 14,000 active users
Now some of those users' details are ln the hands of the police...
Read more on the Bitdefender blog: www.bitdefender.com/en-us/blog/h...
Now some of those users' details are ln the hands of the police...
Read more on the Bitdefender blog: www.bitdefender.com/en-us/blog/h...
FBI takes notorious RAMP ransomware forum offline
The FBI has seized control of RAMP, a notorious cybercrime online forum that bragged to be "the only place ransomware allowed.
www.bitdefender.com
January 31, 2026 at 9:38 AM
The FBI has seized control of RAMP, a cybercrime online forum that bragged to be the only place that allowed ransomware, with over 14,000 active users
Now some of those users' details are ln the hands of the police...
Read more on the Bitdefender blog: www.bitdefender.com/en-us/blog/h...
Now some of those users' details are ln the hands of the police...
Read more on the Bitdefender blog: www.bitdefender.com/en-us/blog/h...
Not without a trombone.
January 30, 2026 at 3:03 AM
Not without a trombone.
Imagine the scene. It's a cold Monday morning in Moscow. You press the button to unlock your car, and ... nothing happens. You try again. Still nothing. The alarm starts blaring. You can't turn it off.
That's what just happened to cars across Russia. www.fortra.com/blog/hacking...
That's what just happened to cars across Russia. www.fortra.com/blog/hacking...
January 29, 2026 at 9:01 PM
Imagine the scene. It's a cold Monday morning in Moscow. You press the button to unlock your car, and ... nothing happens. You try again. Still nothing. The alarm starts blaring. You can't turn it off.
That's what just happened to cars across Russia. www.fortra.com/blog/hacking...
That's what just happened to cars across Russia. www.fortra.com/blog/hacking...
If you enjoyed "Polite Society", I would also recommend "We Are Lady Parts" - a Channel 4 show that seems to be by the same team.
I've only just discovered We Are Lady Parts, and am enjoying it a lot. Quite likely it will be a future Pick of the Week 🎶
I've only just discovered We Are Lady Parts, and am enjoying it a lot. Quite likely it will be a future Pick of the Week 🎶
January 29, 2026 at 1:14 PM
If you enjoyed "Polite Society", I would also recommend "We Are Lady Parts" - a Channel 4 show that seems to be by the same team.
I've only just discovered We Are Lady Parts, and am enjoying it a lot. Quite likely it will be a future Pick of the Week 🎶
I've only just discovered We Are Lady Parts, and am enjoying it a lot. Quite likely it will be a future Pick of the Week 🎶
I guess it would have been a good idea if I'd tagged @joetidy.bsky.social
Hey @bsky.app, when are you going to get an edit button, eh?
Hey @bsky.app, when are you going to get an edit button, eh?
January 29, 2026 at 12:19 PM
I guess it would have been a good idea if I'd tagged @joetidy.bsky.social
Hey @bsky.app, when are you going to get an edit button, eh?
Hey @bsky.app, when are you going to get an edit button, eh?
Plus learn about Joe's adventures in 3D-printing, and the best comedy drama martial arts coming-of-age fantasy I saw all week! 🎥
Find "Smashing Security" episode 452, "The dark web’s worst assassins, and Pegasus in the dock", in all good podcast apps, or at
open.spotify.com/episode/7fOZ...
Find "Smashing Security" episode 452, "The dark web’s worst assassins, and Pegasus in the dock", in all good podcast apps, or at
open.spotify.com/episode/7fOZ...
The dark web's worst assassins, and Pegasus in the dock
open.spotify.com
January 29, 2026 at 12:01 PM
Plus learn about Joe's adventures in 3D-printing, and the best comedy drama martial arts coming-of-age fantasy I saw all week! 🎥
Find "Smashing Security" episode 452, "The dark web’s worst assassins, and Pegasus in the dock", in all good podcast apps, or at
open.spotify.com/episode/7fOZ...
Find "Smashing Security" episode 452, "The dark web’s worst assassins, and Pegasus in the dock", in all good podcast apps, or at
open.spotify.com/episode/7fOZ...