When security firms get hacked, and your new North Korean remote worker
Smashing Security
Graham Cluley
4.7 • 579 Ratings
🗓️ 23 October 2024
⏱️ 31 minutes
🧾️ Download transcript
Summary
The SolarWinds have returned to haunt four cybersecurity companies who tried to hide their breaches and ended up with their trousers around their ankles, and North Korea succeeds in getting one of its IT workers hired... but what's their plan?
All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by cybersecurity veterans Graham Cluley and Carole Theriault.
Warning: This podcast may contain nuts, adult themes, and rude language.
Episode links:
- SolarWinds Sunburst supply chain attack - Wikipedia.
- Rep. Katie Porter slams SolarWinds for its poor passwords - Twitter.
- SEC Charges Four Companies With Misleading Cyber Disclosures - SEC.
- Western firm hacked by North Korean cybercriminal hired as remote IT worker - Computing.
- Engaging with a Remote Workforce: Statistics and Strategies for Success - Government Events.
- 67% Of U.S. Employers To Lose Employees To Remote Work In 2024 - Forbes.
- A company's remote-working hire turns out to be in North Korea. He tried to hold it to ransom - Business Insider.
- US company accidentally hires North Korean for remote work, gets blackmailed when they try to fire him - IBTimes.
- Watch “Undercover: Exposing the Far Right” - Channel 4.
- Undercover film exposing UK far-right activists pulled from London festival - The Guardian.
- Kermode and Mayo’s Take - YouTube.
- The Fear of God: 25 Years of the Exorcist – BBC iPlayer.
- Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
Sponsored by:
- 1Password Extended Access Management – Secure every sign-in for every app on every device.
- Vanta – Expand the scope of your security program with market-leading compliance automation… while saving time and money. Smashing Security listeners get $1000 off!
SUPPORT THE SHOW:
Tell your friends and colleagues about “Smashing Security”, and leave us a review on Apple Podcasts or Podchaser.
Become a supporter via Patreon or Apple Podcasts for ad-free episodes and our early-release feed!
FOLLOW US:
Follow us on Twitter at @SmashinSecurity, or Mastodon, or on the Smashing Security subreddit, and visit our website for more episodes.
THANKS:
Theme tune: "Vinyl Memories" by Mikael Manvelyan.
Assorted sound effects: AudioBlocks.
Privacy & Opt-Out: https://redcircle.com/privacyTranscript
Click on a timestamp to play from that location
| 0:00.0 | It wasn't helped, of course, because solar winds had been advising customers to disable any |
| 0:07.7 | antivirus before installing its software. In retrospect, maybe not the best advice. |
| 0:14.3 | Maybe not the best advice. Doesn't look that good. Yeah. |
| 0:34.9 | Smashing Security, Episode 390, when security firms get hacked, and your new North Korean remote worker, with Carol Terrio and Graham Cluley. |
| 1:10.8 | Hello, hello, and welcome to Smashing Security episode 390. My name's Graham Cluley. And I'm Carol Terrio. Ah, Carol, you sounding much better voice this week. Are you feeling better? I am, and I'm getting my sense of smell and taste back. That was a bit of a shocker. Not fun. I didn't know you had any sense of taste ever. That's extraordinary. Well, that's why I hang out with you. Oh, you caught me on the boomerang. Sorry, I don't mean to bully you. Now, I've had a busy week. I went off to Norway. Yes. I performed on the stage at the Oslo Opera House. I hear it's very beautiful. He is stunning the Oslo Opera House. |
| 1:13.1 | It's an incredible piece of architecture. |
| 1:15.4 | Really, really cool. |
| 1:16.3 | Looks like a Bond Villains layer. |
| 1:18.9 | But it was terrific being there and meeting some fans of the pod as well. |
| 1:23.6 | I hope you enjoy your stickers. |
| 1:26.3 | High five to you all. Now let's kick this show off and thank this |
| 1:30.7 | week's wonderful sponsors, One Password and Vanta. Now coming up on today's show, Graham, what do you |
| 1:36.8 | got? I'm going to be talking about when cyber security companies get hacked. Ooh, and I'm going to |
| 1:42.9 | talk about when a new remote hire does not work out as planned. |
| 1:47.9 | All this and much more coming up on this episode of Smashing Security. |
| 1:54.9 | Now, chums, chums, I'm going to start off today talking about a hack which happened a few years ago, the hack of solar winds. |
| 2:02.8 | Crow, have you heard of solar winds? |
| 2:04.1 | Yes. |
| 2:04.9 | Yes, of course you have. |
| 2:06.1 | It was huge. |
| 2:06.9 | Huge. |
| 2:07.2 | And they are a huge company. |
... |
Please login to see the full transcript.
Disclaimer: The podcast and artwork embedded on this page are from Graham Cluley, and are the property of its owner and not affiliated with or endorsed by Tapesearch.
Generated transcripts are the property of Graham Cluley and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.
Copyright © Tapesearch 2026.