The dark web's worst assassins, and Pegasus in the dock
Smashing Security
Graham Cluley
4.7 • 579 Ratings
🗓️ 29 January 2026
⏱️ 46 minutes
🧾️ Download transcript
Summary
In episode 452, a London-based YouTuber wins a landmark court case against Saudi Arabia after his phone was hacked with Pegasus spyware — exposing how a single, seemingly harmless text message can turn a smartphone into a round-the-clock surveillance device.
Plus, we go looking for professional hitmen online - only to uncover uncomfortable questions about why some crimes attract customers but very few complaints.
All this and more is discussed in the latest edition of the "Smashing Security" podcast by cybersecurity veteran Graham Cluley, joined this week by special guest Joe Tidy.
EPISODE LINKS:
- Sorry Dave, I’m afraid I can’t do that! PCs refuse to shut down after Microsoft patch - The Register.
- Russian state hackers likely behind wiper malware attack on Poland’s power grid - The Record.
- US charges 31 more suspects linked to ATM malware attacks - Bleeping Computer.
- Dark web arrests in Romania linked to portal which offered services including murder - ROCU.
- Romanian scammers ran fake hitman-for-hire site, lured desperate perpetrators as 'incompetent assassins' - Fox News.
- This Fake Hitman Site Is the Most Elaborate, Twisted Dark Web Scam Yet - VICE.
- Unlikely Assassin, The Murder of Amy Allwine - Rooster.
- Saudi dissident awarded $4.1 million by UK court for hacking, assault 'by Saudi Arabia' - Reuters.
- Stalkerware: The software that spies on your partner - BBC News.
- Using 'stalkerware' to spy on a colleague's phone - YouTube.
- “Polite Society” trailer - YouTube.
- Elegoo Saturn 3 3D printer - Elegoo.
- Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
SPONSORS:
- Passwork - a reliable secrets manager and password management solution.
- Coreview - Download "Total Tenant Takeover", a white paper about the Microsoft 365 Disaster No One Is Ready For.
- Vanta - Expand the scope of your security program with market-leading compliance automation… while saving time and money. Smashing Security listeners get $1000 off!
SUPPORT THE SHOW:
Tell your friends and colleagues about “Smashing Security”, and leave us a review on Apple Podcasts or Podchaser.
Become a supporter! Join Smashing Security PLUS via Patreon or Apple Podcasts for ad-free episodes on our early-release feed!
FOLLOW THE SHOW:
Follow us on Bluesky or Mastodon, or on the Smashing Security subreddit, and visit our website for more episodes.
THANKS:
Theme tune: "Vinyl Memories" by Mikael Manvelyan.
Assorted sound effects: AudioBlocks.
Privacy & Opt-Out: https://redcircle.com/privacy
Transcript
Click on a timestamp to play from that location
| 0:00.0 | And I spoke to the police about this, and I said, what are you going to do about this? |
| 0:06.5 | And he says, we haven't had any complaints, so there's no victims. |
| 0:10.6 | Perfect crime. |
| 0:13.2 | Wow. |
| 0:31.1 | Smashing Security, Episode 452, The Dark Web's Worst Assassins, and Pegasus in the Dock, |
| 0:33.9 | with Graham Cluelly and special guest Joe Tidy. |
| 0:39.7 | Hello, hello, and welcome to Smashing Security episode 452. My name's Graham Cluelly. And I'm Joe Tidy. Hello, hello and welcome to Smash Insecurity Episode 452. My name's Graham Cluelly. And I'm Joe Tidy. Joe, welcome back to the show. Lovely to have you on again. Of course, you are the author of |
| 0:46.2 | Control Alt Chaos, the book which we were talking about last year, about some of the astonishing |
| 0:51.4 | hacking, particularly that case which happened with the Vastamo |
| 0:54.5 | psychotherapy clinic over in Finland and the chap who was behind all of that. |
| 0:59.4 | For my money, the cruelest cyber attack in history, I just think, you know, there hasn't |
| 1:03.0 | been one that's been so nasty, insidious. |
| 1:06.1 | And, you know, the fact that he, Julius Kivamaki, went directly after the patients and emailed |
| 1:10.7 | them and said, I've got your therapy notes, pay me or I'll publish them online. You know, the impact that had on people was absolutely enormous. And that's what the book addresses. And also this kind of cycle that we're in where young boys fall down a dark path towards cybercrime. Yeah, it's a really interesting book. I've greatly enjoyed reading it. |
| 1:27.7 | Thank you. |
| 1:28.0 | And it's coming out in the United States, isn't it? Yeah, North America, so United States and Canada. It came out last year in the UK and Europe and I think other places, Australia as well. But yeah, big launch in the US and Canada now this week. Very excited. But that's not the only thing that's been keeping you busy, |
| 1:44.4 | because of course you are the cyber correspondent over on the BBC, and you've also been pumping |
| 1:50.3 | out some episodes recently of the cyber hack podcast, too. Yeah, it's Evil Corps. So I'm sure |
| 1:55.9 | the listeners of Smashing Security will know Evil Corps, the infamous Russian cyber gang. I described them as |
| 2:02.4 | kind of like the cockroaches of cyber, because they just won't die. They sort of evolve as the |
| 2:07.7 | cybercrime underworld has changed and shifted. So they started off in like banking Trojans in the |
| 2:12.7 | early days, sort of 2009, 10, and then moved into ransomware. Now there's pretty decent evidence that they could |
... |
Please login to see the full transcript.
Disclaimer: The podcast and artwork embedded on this page are from Graham Cluley, and are the property of its owner and not affiliated with or endorsed by Tapesearch.
Generated transcripts are the property of Graham Cluley and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.
Copyright © Tapesearch 2026.