Graham Cluely
The AI Fix #44: AI-generated malware, and a stunning AI breakthrough
In episode 44 of The AI Fix, ChatGPT won’t build a crystal meth lab, GPT-4o improves the show’s podcast art, some students manage to screw in a lightbulb, Google releases Gemini 2.5 Pro Experimental and nobody notices, and Mark invents a clock for measuring AI time.
Graham explains how ChatGPT’s love for Young Adult fiction can be used to turn it into an evil malware developer, and Mark looks at the ARC-AGI-2 benchmark and a staggering leap forward in AI intelligence.
All this and much more is discussed in the latest edition of "The AI Fix" podcast by Graham Cluley and Mark Stockley.
Categories: Graham Cluely
Hackers exploit little-known WordPress MU-plugins feature to hide malware
A new security issue is putting WordPress-powered websites at risk. Hackers are abusing the “Must-Use” plugins (MU-plugins) feature to hide malicious code and maintain long-term access on hacked websites.
Read more in my article on the Hot for Security blog.
Categories: Graham Cluely
£3 million fine for healthcare MSP with sloppy security after it was hit by ransomware attack
A UK firm has been hit by a £3.07 million fine after being hit by a ransomware attack that exposed sensitive data related to almost 80,000 people, and disrupted NHS services.
Read more in my article on the Exponential-e blog.
Categories: Graham Cluely
VanHelsing ransomware: what you need to know
First reported earlier in March 2025, VanHelsing is a new ransomware-as-a-service operation.
Read more in my article on the Tripwire State of Security blog.
Categories: Graham Cluely
Malaysian PM says “no way” to $10 million ransom after alleged cyber attack against Kuala Lumpur airport
According to some reports, Kuala Lumpur International Airport had to resort to using whiteboards to communicate with passengers.
Read more in my article on the Hot for Security blog.
Categories: Graham Cluely
Smashing Security podcast #410: Unleash the AI bot army against the scammers – now!
A YouTuber has unleashed an innovative AI bot army to disrupt and outwit the world of online scammers, and a New York Times investigation looks into the intricate web of global money laundering.
All this and more is discussed in the latest edition of the award-winning "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault.
Categories: Graham Cluely
The AI Fix #43: I, for one, welcome our new robot overlords!
In episode 43 of The AI Fix, our hosts discover a robot that isn't terrifying, a newspaper shuns journalists in favour of AI, Graham watches a robot dog learn to stand, an AI computer programmer develops a familiar attitude, and New York tries to stop its humans arming their robots.
Graham worries about AI vomit, a Norwegian man is falsely accused of murder by ChatGPT, and Mark looks at why we're suddenly surrounded by news about robots.
All this and much more is discussed in the latest edition of "The AI Fix" podcast by Graham Cluley and Mark Stockley.
Categories: Graham Cluely
BlackLock ransomware: What you need to know
BlackLock has become a big deal, very quickly. It has been predicted to be one of the biggest ransomware-as-a-service operations of 2025.
Read more in my article on the Tripwire State of Security blog.
Categories: Graham Cluely
Smashing Security podcast #409: Peeping perverts and FBI phone calls
In episode 409 of the "Smashing Security" podcast, we uncover the curious case of the Chinese cyber-attack on Littleton's Electric Light Company, and a California landlord's hidden camera scandal.
Find out about this, and more, in the latest edition of the "Smashing Security" podcast by cybersecurity veterans Graham Cluley and Carole Theriault.
Categories: Graham Cluely
Supply-chain CAPTCHA attack hits over 100 car dealerships
A security researcher has discovered that the websites of over 100 car dealerships have been compromised in a supply-chain attack that attempted to infect the PCs of internet visitors.
Read more in my article on the Hot for Security blog.
Categories: Graham Cluely
The AI Fix #42: AIs with anxiety, and why AIs don’t know what happened
In episode 42 of the AI Fix, our hosts discover why ads for the Neo Gamma robot are so sinister, Graham plays peek-a-boo with a crow, humans give up writing, an AI designs a drug, an upstart AI agent gets everyone’s attention, and a talking fish offers our hosts some sage advice. Graham wonders if … Continue reading "The AI Fix #42: AIs with anxiety, and why AIs don’t know what happened"
Categories: Graham Cluely
Mandatory Coinbase wallet migration? It’s a phishing scam!
An ingenious phishing scam is targeting cryptocurrency investors, by posing as a mandatory wallet migration.
Read more in my article on the Hot for Security blog.
Categories: Graham Cluely
Free file converter malware scam “rampant” claims FBI
Whether you're downloading a video from YouTube or converting a Word document into a PDF file, there's a chance that you might be unwittingly handing control of your PC straight into the hands of cybercriminals.
Read more in my article on the Hot for Security blog.
Categories: Graham Cluely
Borked Chromecasts are beginning to receive their update – just hope you didn’t do a factory reset
The news can't have come too soon for the many Chromecast users who have found themselves unable to stream their favourite TV shows, movies, and other media.
Read more in my article on the Hot for Security blog.
Categories: Graham Cluely
Chromecast chaos – 2nd gen devices go belly-up as Google struggles to fix certificate issue
Has your old Chromecast suddenly developed a problem?
You're not alone it seems.
Read more in my article on the Hot for Security blog.
Categories: Graham Cluely
Medusa ransomware: FBI and CISA urge organisations to act now to mitigate threat
The Medusa ransomware gang continues to present a major threat to the critical infrastructure sector, according to a newly-released - with at least one organisation hit with a "triple-extortion" threat.
Read more in my article on the Tripwire State of Security blog.
Categories: Graham Cluely
Smashing Security podcast #408: A gag order backfires, and a snail mail ransom demand
What happens when a healthcare giant’s legal threats ignite a Streisand Effect wildfire… while a ransomware gang appears to ditch the dark web for postage stamps?
Find out about this, and more, in the latest edition of the "Smashing Security" podcast by cybersecurity veterans Graham Cluley and Carole Theriault.
Categories: Graham Cluely
Man found guilty of planting infinite loop logic bomb on ex-employer’s system
Davis Lu had planted malicious Java code onto his employer's network that would cause "infinite loops" that would ultimate result in the server crashing or hanging.
Read more in my article on the Hot for Security blog.
Categories: Graham Cluely
The AI Fix #41: Can AIs be psychopaths, and why we should be AI optimists
In episode 41 of the AI Fix, our hosts learn that society needs to be completely reordered by December, Grok accuses Trump of being a Russian asset, Graham discovers that parents were wrong about computer games all along, and Mark wonders if a kung-fu kicking robot from Unitree is the hero that we need.
Graham gives an AI a Rorschach test and learns about "Norman" the psychopathic AI, and Mark discovers why we should actually be optimistic about AI.
Plus - don’t miss our featured interview with Marc Beckman, the author of “Some future day: How AI is going to change everything.”
Categories: Graham Cluely
Webinar: Credential security in the age of AI: Insights for IT leaders
On Tuesday, March 18 2025, at 1pm EST, I will be joining the experts at Dashlane for an online chat all about credential security in the age of AI.
Learn more and make sure to book your free seat.
Categories: Graham Cluely