When your mouse turns snitch, and hackers grow a conscience
Smashing Security
Graham Cluley
4.7 • 579 Ratings
🗓️ 8 October 2025
⏱️ 42 minutes
🧾️ Download transcript
Summary
Your computer's mouse might not be as innocent as it looks - and one ransomware crew has a crisis of conscience that nobody saw coming.
We talk about how something as ordinary as a web page could turn your mouse into a surprisingly nosey neighbour, and why ransomware gangs need to think carefully about their reputation.
Meanwhile, Graham reveals a baked potato hack that might just change your life, and we take an unexpected detour to South America for a bit of literary adventure involving inflatable pigs.
All this and more is discussed in episode 438 of the "Smashing Security" podcast with cybersecurity veteran Graham Cluley, and his special guest Geoff White.
EPISODE LINKS:
- Discord users' data stolen by hackers in third-party data breach - Bitdefender.
- North Korean hackers increasingly targeting wealthy crypto holders - BBC News.
- Scattered Lapsus$ Hunters offering $10 in Bitcoin to 'endlessly harass' execs - The Register.
- Vacanti mouse - Wikipedia.
- Mic-E-Mouse.
- Invisible Ears at Your Fingertips: Acoustic Eavesdropping via Mouse Sensors - Arvix.
- Mic-E-Mouse Pipeline Demonstration - YouTube.
- Hackers say they have deleted children's pictures and data after nursery attack backlash - BBC News.
- Baked Potato - Wikipedia.
- “At the Tomb of the Inflatable Pig: Travels through Paraguay” - Penguin.
- Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
SPONSORS:
- Vanta - Expand the scope of your security program with market-leading compliance automation... while saving time and money. Smashing Security listeners get $1000 off.
- Trelica by 1Password - Access Governance for every SaaS app. Discover, manage, and optimize access for any of your SaaS apps - whether managed or unmanaged.
- Drata - The world’s most advanced Trust Management platform – making risk and compliance management accessible, continuous, and 10x more automated than ever before.
SUPPORT THE SHOW:
Tell your friends and colleagues about “Smashing Security”, and leave us a review on Apple Podcasts or Podchaser.
Become a supporter via Patreon or Apple Podcasts for ad-free episodes on our early-release feed!
FOLLOW THE SHOW:
Follow us on Bluesky or Mastodon, or on the Smashing Security subreddit, and visit our website for more episodes.
THANKS:
Theme tune: "Vinyl Memories" by Mikael Manvelyan.
Assorted sound effects: AudioBlocks.
ENJOYED THE SHOW?
Make sure to check out our sister podcast, "The AI Fix".
Privacy & Opt-Out: https://redcircle.com/privacy
Transcript
Click on a timestamp to play from that location
| 0:00.0 | You know what, Jeff, I listened to two whole seasons of the Lazarus' highest. And there was nothing about the proper way to bake a potato. No cooking advice. King Jong-un didn't give any advice to how his loyal subjects. Should they be lucky enough to actually own a potato? |
| 0:37.6 | Smashing Security, Episode 438, when your mouse turned snitch, and hackers grow a conscience with Graham Cluley. |
| 0:40.9 | Hello, hello and welcome to Smash Insecurity Episode 438. |
| 0:42.2 | My name's Graham Cluelly. |
| 0:43.5 | And I'm Jeff White. |
| 0:45.3 | Hey, Jeff. |
| 0:46.5 | Welcome back to the show. |
| 0:48.1 | Fabulous to have you here again. |
| 0:49.2 | Thanks for having me. |
| 0:50.4 | All of our listeners. |
| 2:18.0 | Know about you, of course, from the Lazarus Heist, from Rist, from Crime.com, you're on our TV screens, you're in our ears. You're everywhere. By the way, thanks for remembering my first book, Crime.com, which is interesting. As that's got older, it's just like fallen off the radar. People like, oh, you've written a couple of books. They're like, no, I did write a third of It's a bit old now, but it's still there. And gradually, it just sort of has fallen off the edge of the cliff at the back. So well done for remembering that there was a third book. I've got my copy, and it's a great read too. Thank you. What's keeping you busy at the moment? I am working on a new BBC podcast. Who? Exciting news. There are going to be not one, but two new seasons in the Lazarus Heist feed. Yes. This is exciting, breaking news. And I think you're probably the first to get it. Well, I think it's been announced on the BBC. I hope it's been announced on the BBC first. No one listened or watches the BBC for goodness sake, Jeff. Everyone's listening to Smash Incuity. Let's claim that we've got the exclusive here. So two new seasons of the Lazarus Heist. Yes, yes. So painfully aware that we did two seasons of Lazarus Heist, which was exciting. a lot of people liked that, you know, with my-host, Gene, did really, really well about North Korea and how North Korea became this computer hacking superpower. We then sort of just left it, and obviously you've got an audience of people who you've built up and who were expecting things, and we didn't give them anything. So we're painfully aware, I think, particularly the BBC, that, you know, probably should do something else. So, exciting news, Joe Tidy, the BBC's August cybersecurity reporter. |
| 2:22.6 | Yes. |
| 2:23.0 | He's obviously done amazing stuff on ransomware, which we'll talk a bit about in this episode, I think, as well, |
| 2:26.7 | has teamed up with the BBC's former, I think it's former Russia editor, Sarah Wainsford, |
| 2:32.5 | and they are going to be doing a new podcast, which is going to go in the Lazarus Heist feed. We are renaming that feed, Cyberhack, which I'm not a massive fan of that name, but there you go. No, I think it makes sense to people in the general public. So it's going to be Cyberhack, and then whatever the title of Joe and Sarah's series is, And that's going to go out imminently. I mean, that's going to be very soon. And then the series I'm working on, which is going to be, again, all about cyber attacks and particularly around things like ransomware is going to be going out next year. We think in February. So if you haven't subscribed already to Lazarus Heist, do it now. It may be called Cyberhack by the time you've described, but you'll be alerted to Joe and Sarah's series, and then it'll be alerted to my series. And honestly, the stuff we've got for my series is absolutely knockout amazing. And I'm sure Joe and Sarah have got some fantastic stuff in there at show as well. I can't wait to hear that. So yes, exciting news. |
| 3:24.6 | New Lazarus Heist. Very exciting. Terrific stuff. Before we kick off, let's thank this week's |
| 3:29.5 | wonderful sponsors, Vanta One Password and Drata. We'll be hearing more about them later on the |
| 3:34.6 | podcast. This week on Smashing Security. We're not going to be talking about how Discord has warned users that their data has been stolen in a third-party bridge, |
| 3:45.8 | with some users even having their passport scans falling into hackers' hands. |
| 3:52.5 | You'll hear no discussion of... |
| 3:54.1 | How hackers linked to North Korea are stealing record-breaking sums of cryptocurrency. |
| 4:00.6 | And we won't even mention. |
... |
Please login to see the full transcript.
Disclaimer: The podcast and artwork embedded on this page are from Graham Cluley, and are the property of its owner and not affiliated with or endorsed by Tapesearch.
Generated transcripts are the property of Graham Cluley and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.
Copyright © Tapesearch 2026.