045: Deloitte fail, CCleaner, and dotards on Twitter
Smashing Security
Graham Cluley
4.7 • 579 Ratings
🗓️ 27 September 2017
⏱️ 36 minutes
🧾️ Download transcript
Summary
Deloitte suffers an embarrassing hack, CCleaner spreads malware, and Twitter explains why it isn't planning to ban Donald Trump from Twitter anytime soon.
All this and more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by special guest Phil Wood of Cisco.
Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes.
Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!
Warning: This podcast may contain nuts, adult themes, and rude language.
Special Guest: Phil Wood.
Sponsored By:
- Recorded Future: Recorded Future is the real-time threat intelligence company whose patented machine learning technology continuously analyzes technical, open, and dark web sources to give organizations unmatched insight into emerging threats.Sign up for free daily threat intelligence updates at https://recordedfuture.com/intel
Links:
- Graham Cluley on Twitter: "Turns out I slept in a cheesegrater last night"
- Deloitte hit by cyber-attack revealing clients’ secret emails - The Guardian
- Source: Deloitte Breach Affected All Company Email, Admin Accounts — Krebs on Security
- Deloitte is a sitting duck: Key systems with RDP open, VPN and proxy 'login details leaked' • The Register
- CCleanup: A Vast Number of Machines at Risk - Talos Intelligence blog
- CCleaner Command and Control Causes Concern - Talos Intelligence
- North Korean Minister: Trump's 'Declaration Of War' Means N.K. Can Shoot Down U.S. Bombers - NPR
- Twitter PublicPolicy on Twitter
- The Twitter Rules - Twitter Help Center
- Wildergorn colour-in posters
- Star Trek: Discovery - CBS
- Rick and Morty - Wikipedia
- Smashing Security on Facebook
- Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
Privacy & Opt-Out: https://redcircle.com/privacy
Transcript
Click on a timestamp to play from that location
| 0:00.0 | Hello, Caroli. |
| 0:03.4 | Hey, Graham, welcome back to the UK. |
| 0:06.0 | That's right. |
| 0:06.5 | I'm back, huh? |
| 0:07.1 | Yes. |
| 0:08.0 | Yeah, isn't it nicer here? |
| 0:10.5 | It's a bit wetter, to be honest. |
| 0:12.3 | I know, I know. |
| 0:13.1 | It was in New York. |
| 0:14.0 | But maybe we should explain to everyone. |
| 0:16.0 | So we recorded the podcast that people are about to hear on Tuesday because I was over in New York. And it's, it's now Wednesday evening. Actually, we recorded it on Tuesday because it gives us a bit more time to edit, right? Shh, shh, keep using a secret. There's no editing. There's no editing. There's no editing. There's never an edit. Okay. But now it's Wednesday evening. And there's more stuff to say about Deloitte. |
| 0:38.5 | Okay, tell them, tell them. |
| 0:39.6 | So we are going to talk about the Deloitte hack, but since we recorded, there have been a cavalcade of other disasters which have come out. |
| 0:46.3 | It looks like a whole bunch of Deloitte's corporate VPN passwords, usernames, operational details. |
| 0:52.7 | You can read all about this on the register. |
| 1:01.7 | Were posted on a public-facing GitHub repository, which isn't good news, and one of their employees was also, it appears, posting VPN passwords and login credentials to his public Google plus page. |
| 1:12.3 | No way. |
| 1:14.2 | And there have been a whole host of other discoveries as well. |
| 1:17.3 | You know what I love about this? |
| 1:18.3 | We do talk about Deloitte saying there's just a few cases, right? |
| 1:23.7 | And we were like a few for Deloitte. |
| 1:26.5 | Yeah. |
... |
Please login to see the full transcript.
Disclaimer: The podcast and artwork embedded on this page are from Graham Cluley, and are the property of its owner and not affiliated with or endorsed by Tapesearch.
Generated transcripts are the property of Graham Cluley and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.
Copyright © Tapesearch 2026.