A Canadian man is arrested in relation to the Snowflake hacks from earlier this year – after a cybersecurity researcher managed to track his identity, and a cryptocurrency-trading Instagram influencer is in trouble with the law.
All this and more is discussed in the latest edition of the “Smashing Security” podcast by cybersecurity veterans Graham Cluley and Carole Theriault.
Warning: This podcast may contain nuts, adult themes, and rude language.
0:00
0:00
0:00
0:00
Show full transcript ▼
This transcript was generated automatically, probably contains mistakes, and has not been manually verified.
Granddad, granddad, hey, I'm gonna read out a number, okay? It's long. I gotta read a passcode. Get your pen.
Smashing Security, episode 397: Snowflake Hackers and Under the Influence, with Carole Theriault and Graham Cluley. Hello, hello, and welcome to Smashing Security episode 397.
My name's Graham Cluley.
My name's Graham Cluley.
And I'm Carole Theriault.
Now, Carole, we've had some feedback.
Oh!
From a listener. Yes, Matt has been in touch and it's a bit of a, well, as he describes it, he says it's a bit of a nitpick.
Okay, I'm very excited to hear this.
Most unfortunately, it's a nitpick with me.
I didn't think you would bring that up. I was convinced it was gonna be something I'd done. Okay.
No, no, no, no, not on this occasion. So yeah, nitpick with me in my story last week.
He says, I lived in Korea for many years and can attest to the number of satellite dishes scattered throughout Seoul and regional areas. No problem so far.
But in episode 396, Graham— that's me— reports that Korean police have frozen 6 billion Korean dollars due to that dodgy dish manufacturer. You remember the story, I'm sure.
He says, I lived in Korea for many years and can attest to the number of satellite dishes scattered throughout Seoul and regional areas. No problem so far.
But in episode 396, Graham— that's me— reports that Korean police have frozen 6 billion Korean dollars due to that dodgy dish manufacturer. You remember the story, I'm sure.
Yeah, of course.
Yeah, yeah. So he says the company would be delighted if that were the case, not only because Korean dollars don't actually exist.
I kept referring to Korean dollars, but it's actually—
I kept referring to Korean dollars, but it's actually—
Instead of won?
Yes, it's Korean won.
Yeah, okay. I didn't even catch you, so I didn't, you know, my bad.
A listener, Pale Blue Dot, also got in touch with that correction via Bluesky. But he says also that my conversion rate was wrong.
They've actually frozen 61 billion Korean won, which means they've seized £34 million, which is a bit more significant than the £3 million I suggested in the show.
So consider me slapped on the wrist. Thank you, Matt.
They've actually frozen 61 billion Korean won, which means they've seized £34 million, which is a bit more significant than the £3 million I suggested in the show.
So consider me slapped on the wrist. Thank you, Matt.
What's the moral of the story, Graham? More research. Good. Okay, good. Just— we need a takeaway here. Thank you, Matt, very much. I appreciate it so much. It wasn't me.
Anyway, let's kick off the show.
Okay. First, let's thank this week's wonderful sponsors. We have 1Password, BigID, and ThreatLocker. Now, coming up in today's show, Graham, what do you got?
I've got another story about a Dumbo hacker.
Okay. And I'm going to head down under for a visit with a crypto stud. All this and much more coming up on this episode of Smashing Security.
Now, chums, chums, 2024. It has been another year of snowflakes, hasn't it? You know, keep on seeing it in the press, people being called snowflakes left, right and center.
I don't like it, actually. I don't like that people are called snowflakes. I dislike that kind of labeling. Equally, I dislike people being labeled Karens.
I just think it's not very nice. You know, we need to be nicer.
But it was a year of Snowflake in another way, because in April of this year, there was a massive data breach affecting the cloud storage firm Snowflake.
100 million people were estimated to have been impacted and over 100 companies.
I don't like it, actually. I don't like that people are called snowflakes. I dislike that kind of labeling. Equally, I dislike people being labeled Karens.
I just think it's not very nice. You know, we need to be nicer.
But it was a year of Snowflake in another way, because in April of this year, there was a massive data breach affecting the cloud storage firm Snowflake.
100 million people were estimated to have been impacted and over 100 companies.
What do they do? What does Snowflake do?
It's a bit like those Amazon Web Buckets where you can chuck all your data in the cloud. They will store your databases for you.
And lots of big companies use them like AT&T and Ticketmaster.
And lots of big companies use them like AT&T and Ticketmaster.
Oh, okay.
Even banks and so forth. So they're a big deal. Not the kind of companies which individual consumers may have heard of, but the big businesses do use them.
Right.
And so they are a company who could be storing your data in the services which they provide.
And unfortunately, Snowflake, at least Snowflake customers, suffered a breach, which meant that AT&T, they had stolen from them records of virtually every call made by AT&T's customers during a 6-month period.
And unfortunately, Snowflake, at least Snowflake customers, suffered a breach, which meant that AT&T, they had stolen from them records of virtually every call made by AT&T's customers during a 6-month period.
Oh my God.
The hacker ultimately was paid $370,000 by AT&T.
I think we should be clear though, it's not actually what is said in the call. It's a call log that was stolen.
That's right. It'll be logs as to where calls went from and what time and text messages and so forth.
Ticketmaster, they had a 1.3 terabyte database of information on their users stolen.
560 million Ticketmaster customers had their names, addresses, emails, phone numbers, as well as event details.
Ticketmaster, they had a 1.3 terabyte database of information on their users stolen.
560 million Ticketmaster customers had their names, addresses, emails, phone numbers, as well as event details.
Is this globally?
Yeah, absolutely.
Okay, so that means we're affected because we've bought stuff off Ticketmaster before.
There you go. So lots and lots of information, even included some credit card details as well. Last 4 digits of your card numbers. The hackers, again, they offered that for sale.
They said, "$500,000 if you want to get that." Neiman Marcus, which is a department store in the States, I think 65,000 customers had their contact information, dates of birth, that was taken.
So those companies made the headlines, but it wasn't as though their own systems had been breached.
It was that the data they had put on Snowflake's cloud services had been breached.
And the common problem it appears was that their credentials for logging into those accounts had been compromised and multifactor authentication hadn't been enabled.
So there were weak security practices which the hackers were able to exploit to gain access.
And at the time, Snowflake didn't demand that you had multifactor authentication turned on.
They said, "$500,000 if you want to get that." Neiman Marcus, which is a department store in the States, I think 65,000 customers had their contact information, dates of birth, that was taken.
So those companies made the headlines, but it wasn't as though their own systems had been breached.
It was that the data they had put on Snowflake's cloud services had been breached.
And the common problem it appears was that their credentials for logging into those accounts had been compromised and multifactor authentication hadn't been enabled.
So there were weak security practices which the hackers were able to exploit to gain access.
And at the time, Snowflake didn't demand that you had multifactor authentication turned on.
For companies, that's interesting, isn't it? Because that impacts everybody that is a customer of one, you know, one said company that is using Snowflake.
Yeah, there is some fault of the individual companies because maybe they should configure their web buckets better, but there's also some fault on the part of Snowflake, it seems, because it wasn't insisting upon it.
Yeah, yeah, yeah, agree.
So in October, I think it was around about October, Snowflake said, right, from now on, if you create a new account on our systems, MFA, multifactor authentication, is mandatory, which means even if the hackers have stolen a username and password, they won't be able to access the database, because at least it'd be more complicated.
They'd have to get that 6-digit number or something which is regularly changing as well, a one-time password. But they haven't said what's gonna happen with existing accounts.
I mean, maybe they should have multifactor authentication sort of forced upon them as well. So this has been a huge data breach.
As I say, millions and millions of pieces of information, and these hackers have been offering it for sale. They've been extorting money out of businesses as consequence.
And you have to wonder, who was behind this data breach? Who was behind this extortion? What kind of villain could this be? Where could they—
They'd have to get that 6-digit number or something which is regularly changing as well, a one-time password. But they haven't said what's gonna happen with existing accounts.
I mean, maybe they should have multifactor authentication sort of forced upon them as well. So this has been a huge data breach.
As I say, millions and millions of pieces of information, and these hackers have been offering it for sale. They've been extorting money out of businesses as consequence.
And you have to wonder, who was behind this data breach? Who was behind this extortion? What kind of villain could this be? Where could they—
If you say a 16-year-old kid in his back bedroom, I don't know.
Oh, come, come, Carole. It's not going to be anyone like that. It'll be some mastermind in an undersea base protected by sharks. It'll be someone hidden deep within a volcano.
Who was it?
Or will it be someone who lives with his grandfather in a quiet residential street in the city of Kitchener, close to Ontario, Canada. Yes, Carole, your neck of the woods.
Yeah.
Wow.
Well, yeah, that's—
Don't know if you want to claim any responsibility for this.
No, I don't. Okay, so he's leaving, he's living in this sleepy hollow. There's a lot of, I think it's Mennonites that live around there. So it is very sleepy bit of Ontario.
But what's a Mennonite?
Someone who lives off the land more—
Like the Amish or something like that?
Yeah, like the Amish. But it's Mennonites. I think there's Mennonite communities all dotted around there. So it is quite sleepy and quiet in many ways.
I wouldn't imagine they'd have a great broadband connection for downloading terabytes and terabytes of information. But maybe they do.
There's also very world-class tech universities there, right?
So yes, maybe they've got satellite dishes provided by South Korea.
Anyway, the thing is this, at the end of October, a man was arrested in connection with the hacks that targeted Snowflake's cloud customers, and he may well be well on his way to a US court because they put him in line for extradition.
He calls himself Alexander. I don't know how you pronounce this. Moucka, M-O-U-C-K-A. He also calls himself Connor Moucka.
He also uses the handle Waifu, and he allegedly was a leading member of a hacking gang. That was responsible for many major intrusions over the last 5 years or so.
Those are not my words, but they are the words of Allison Nixon. Now, Allison Nixon, I don't know if you've heard of her.
She is chief research officer at a cybersecurity firm called Unit 221B.
Anyway, the thing is this, at the end of October, a man was arrested in connection with the hacks that targeted Snowflake's cloud customers, and he may well be well on his way to a US court because they put him in line for extradition.
He calls himself Alexander. I don't know how you pronounce this. Moucka, M-O-U-C-K-A. He also calls himself Connor Moucka.
He also uses the handle Waifu, and he allegedly was a leading member of a hacking gang. That was responsible for many major intrusions over the last 5 years or so.
Those are not my words, but they are the words of Allison Nixon. Now, Allison Nixon, I don't know if you've heard of her.
She is chief research officer at a cybersecurity firm called Unit 221B.
Nope.
Have you ever heard of Unit 221B? Nope. Have you heard of 221B without a unit?
No.
Think of literature, think of detectives. Who lives at 221B?
Oh, very cute.
Yes, Benedict Cumberbatch or Sherlock Holmes and Dr. Watson. They're obviously big fans. Anyway, Allison Nixon, she has been tracking Waifu online for quite a while.
Okay.
And Waifu and the other hackers who've been behind these Snowflake breaches are members of a cybercriminal community called The Comm. I guess short for community.
They are an underground network of young hackers.
They're all there communicating via Telegram and Discord, and they're engaging in ransomware attacks and SIM swapping and cryptocurrency theft and sextortion and trolling and harassment and all kinds of nastiness like that.
And according to the Waterloo Region Record, which is the local newspaper, Waifu made a big error. And this potentially is one of the reasons why he's now been caught.
He made the mistake of threatening violence. Hard to imagine a Canadian doing such a thing, but he made the mistake of threatening violence against a woman online via Telegram.
They are an underground network of young hackers.
They're all there communicating via Telegram and Discord, and they're engaging in ransomware attacks and SIM swapping and cryptocurrency theft and sextortion and trolling and harassment and all kinds of nastiness like that.
And according to the Waterloo Region Record, which is the local newspaper, Waifu made a big error. And this potentially is one of the reasons why he's now been caught.
He made the mistake of threatening violence. Hard to imagine a Canadian doing such a thing, but he made the mistake of threatening violence against a woman online via Telegram.
Oh, but typically Telegram is purported to be the underground's main method of communication because it's all so encrypted and secret.
Well, yes, there have been questions in the past as to just how secret Telegram may be.
And certainly what it has done historically is it's turned a bit of a blind eye to cybercriminal and unpleasant criminal activity.
It's got a little bit more thorough about doing that since its CEO got into a bit of bother with law enforcement, who said, why aren't you doing more?
Now, Waifu, he really dropped a clanger. We don't know precisely what Waifu posted, but we do know it was unpleasant.
And we also know that this woman he targeted, we know who that was. And it was Allison Nixon, the cybersecurity research bod at Unit 221B.
And certainly what it has done historically is it's turned a bit of a blind eye to cybercriminal and unpleasant criminal activity.
It's got a little bit more thorough about doing that since its CEO got into a bit of bother with law enforcement, who said, why aren't you doing more?
Now, Waifu, he really dropped a clanger. We don't know precisely what Waifu posted, but we do know it was unpleasant.
And we also know that this woman he targeted, we know who that was. And it was Allison Nixon, the cybersecurity research bod at Unit 221B.
Right.
The game is afoot.
Okay. I don't think this is a game. I think this sounds pretty tragic so far, but—
No, it's a quote, Carole, from Sherlock Holmes. So, what did Alison Nixon do? Well, she got her team onto the case. So her day job is hunting down cybercriminals.
As you said, yeah.
Right? And she saw this cybercriminal having a bit of a pop at her and saying unpleasant things about her. And she thought, I don't like this.
Now, the thing is, she wasn't investigating Wei Fu until she saw these messages. And she, that obviously irked her.
And she thought, right, if he's being so unpleasant, we're going to turn our magnifying glass in his direction.
And so they delved deep and they uncovered all kinds of information about Waifu. And it turned out that Waifu had been a little bit careless online.
He had been writing Telegram posts and saying things, and at one point he maybe shared a little bit too much information. And maybe he realized his goof.
And so he started posting up on Telegram and Discord all kinds of false and misleading information about himself under different names, under different usernames.
Now, the thing is, she wasn't investigating Wei Fu until she saw these messages. And she, that obviously irked her.
And she thought, right, if he's being so unpleasant, we're going to turn our magnifying glass in his direction.
And so they delved deep and they uncovered all kinds of information about Waifu. And it turned out that Waifu had been a little bit careless online.
He had been writing Telegram posts and saying things, and at one point he maybe shared a little bit too much information. And maybe he realized his goof.
And so he started posting up on Telegram and Discord all kinds of false and misleading information about himself under different names, under different usernames.
Trying to obfuscate, needle in the haystack stuff.
Yes.
Yeah, yeah.
Yes, exactly. Creating a cloud of confusion so people wouldn't notice. Because he realised he'd slipped up. But it didn't deter Alison Nixon and her researchers.
She says, "We put some time into this investigation during the year. We're basically half of the reason he has now been identified. We have had his name for months.
We've been waiting for his arrest." So—
She says, "We put some time into this investigation during the year. We're basically half of the reason he has now been identified. We have had his name for months.
We've been waiting for his arrest." So—
Well, you missed your opening line. It should have been, "Hell hath no fury like a woman scorned." Like a researcher scorned.
Yes, exactly. So there are other Snowflake hackers who have been tracked down as well. It wasn't just this Waifu guy.
Someone else of interest is someone called KyberPhantom with a K at the beginning and a zero halfway through.
He also uses a number of other aliases, including Reverse Shell and Buttholio. And I imagine that's someone who's very religious.
Some researchers believe he might be or may have been a US Army soldier stationed in South Korea. I suspect Allison Nixon is looking into him as well.
When she was asked, she said no comment at the moment as to whether she knows his identity. So maybe she's also waiting for law enforcement to feel his collar too.
But as you said, don't piss off the cybersecurity researchers, especially if they're not already investigating you, because it may be your undoing.
Someone else of interest is someone called KyberPhantom with a K at the beginning and a zero halfway through.
He also uses a number of other aliases, including Reverse Shell and Buttholio. And I imagine that's someone who's very religious.
Some researchers believe he might be or may have been a US Army soldier stationed in South Korea. I suspect Allison Nixon is looking into him as well.
When she was asked, she said no comment at the moment as to whether she knows his identity. So maybe she's also waiting for law enforcement to feel his collar too.
But as you said, don't piss off the cybersecurity researchers, especially if they're not already investigating you, because it may be your undoing.
Or just maybe don't do bad stuff.
Well, you know, and even better, even better way to live your life, Carole. Excellent advice. And turn on multifactor authentication if you've got a cloud bucket.
That's my advice for businesses. So what's gonna happen now? He's in the clink, this Waifu guy. He's obviously gonna be appearing in court. There's extradition proceedings against him.
And it appears how the case will unfold from this point onwards rather depends on whether Alexander Muca is allowed access to the internet while he's being held.
Because if he can access his cryptocurrency to pay for decent lawyers, that potentially could unlock a large amount of money for him.
That's my advice for businesses. So what's gonna happen now? He's in the clink, this Waifu guy. He's obviously gonna be appearing in court. There's extradition proceedings against him.
And it appears how the case will unfold from this point onwards rather depends on whether Alexander Muca is allowed access to the internet while he's being held.
Because if he can access his cryptocurrency to pay for decent lawyers, that potentially could unlock a large amount of money for him.
Granddad, granddad, hey, I'm gonna read out a number, okay? It's long. I gotta read a passcode. Get your pen.
Hang on, let me find my pen. I gotta turn on the computer, son? What are you talking about? Yeah. People don't talk like that in kitchens. No, they don't talk like that.
No, no.
Carole, what's your topic this week?
Okay, let's pivot. I want you, Graham, to meet our Aussie influencer, Andre Zachary Rebelo.
Okay.
He's in his 20s.
Right.
And he's found himself in a bit of a pickle. But we have to go back. We're going to go back a few years, back to 2020.
And at this time, Andre, a supermarket delivery driver turned cryptocurrency day trader—
And at this time, Andre, a supermarket delivery driver turned cryptocurrency day trader—
Okay.
—is doing pretty well for himself. Right. He is what I would call a crypto stud. A crypto stud?
Yeah. You mean a bit sexy?
Well, certainly he thinks so. Will you tell me? Oh, hello.
Oh, I've seen pictures of him here with a young lady. Right. Okay, he's very buff in that kind of bronzed sort of Australian way, you know, sunshine.
And yes, he's a bit too attractive for me. I am uncomfortable. Yeah.
And yes, he's a bit too attractive for me. I am uncomfortable. Yeah.
But yeah, he does have a very photogenic, beautiful girlfriend, his baby mama, in fact. And I think he must have thought, why don't I share my fortune with the world?
So he hits the world of social media influencing. And he does well at this, right? The 20-something Andre amasses 1 million-plus followers on the Instas. Wow.
And it's he's publishing, it's a lifestyle channel of sorts where Andre and his partner Grace are living, you know, the best life. One that's carefree, full of riches, luxury.
So he hits the world of social media influencing. And he does well at this, right? The 20-something Andre amasses 1 million-plus followers on the Instas. Wow.
And it's he's publishing, it's a lifestyle channel of sorts where Andre and his partner Grace are living, you know, the best life. One that's carefree, full of riches, luxury.
I hate them already.
I hate them. Maybe let's channel that, right? So let's imagine you are Andre, right? You got 1 million followers. You are running a lifestyle Insta channel. I pretty much am.
Yes. Okay. Yeah, I can imagine that.
Let's say you're doing that. So what would you do to entertain this curated audience of yours? This is obviously a very important audience because it leads to sponsorship, right?
So you want to keep them happy. And they're all people who are impressed by luxury items.
They seem to be. That's what you've been posting so far. And they love—
Well, that would be great.
So maybe I'd contact some luxury brands of things I could include on the channel, maybe some cars, or maybe some technology, or beautiful clothing, or hotels.
I could travel around the world going to stay at luxury resorts. That sounds gorgeous.
So maybe I'd contact some luxury brands of things I could include on the channel, maybe some cars, or maybe some technology, or beautiful clothing, or hotels.
I could travel around the world going to stay at luxury resorts. That sounds gorgeous.
Yes. Yes, exactly. And opulent digs, all that stuff.
And what would you say if your kid, for example, or a kid you liked said, you know, this was their complete dream to become one of these influencers, these lifestyle influencers?
And what would you say if your kid, for example, or a kid you liked said, you know, this was their complete dream to become one of these influencers, these lifestyle influencers?
Well, I think this is not the norm. It's not all young people want. That's the only job they want, isn't it?
Is to be influencers, because that's what they see on their TikToks and on their Snapchats.
Is to be influencers, because that's what they see on their TikToks and on their Snapchats.
Somehow it doesn't sit okay with me, but I think that's probably because I'm of an older generation. Yeah, we're fuddy-duddies. Yeah, we— No, no, no, no, no, no, no.
We are not fuddy-duddies. You might be a fuddy-duddy. I am Gen X, proud. Proud. You are what, a boomer?
We are not fuddy-duddies. You might be a fuddy-duddy. I am Gen X, proud. Proud. You are what, a boomer?
I don't know. What, what, what, what's the age? What years? I never know. 1969? I was born in 1969. What does that make me?
Boomer.
Oh, for God's sake.
Anyway, yeah, I know certainly people of my more mature generation than yours, we always think, you know, you should become a doctor or an engineer or, you know, become a solicitor or yes, you know, sort of professional job would be the thing you'd aspire to.
Anyway, yeah, I know certainly people of my more mature generation than yours, we always think, you know, you should become a doctor or an engineer or, you know, become a solicitor or yes, you know, sort of professional job would be the thing you'd aspire to.
Not this plastic fantastic promoter. I saw that expression somewhere. That's what these— I love that, plastic fantastic.
You know, it wasn't invented in our day, was it? So we can't imagine that would be our job. You also find it hard to believe that it'd be a long-term job.
It might be a little bit like being a footballer or an athlete or something.
It may be just for a short time before you become a little bit too craggy and wrinkly and chubby to continue? I don't know.
It might be a little bit like being a footballer or an athlete or something.
It may be just for a short time before you become a little bit too craggy and wrinkly and chubby to continue? I don't know.
Oh, really? The market, Graham, is booming. Is it? For the boomers? It was worth an estimated $16.4 billion in 2022, and it's expected to grow to a whopping $143 billion by 2030.
So, ka-ching!
So, ka-ching!
It's insane. It's insane.
Almost two-thirds of Gen Z and millennials say they trust their social media influencers.
And maybe the glue, the reason this works for younger generations and not us, is that anyone could theoretically be an influencer.
It's not like, you know, you have to go study to be a doctor, a lawyer, all these things, right?
So teens and young kids can look dreamily at their phones and aspire to this carefree, almost kid-like existence.
And maybe the glue, the reason this works for younger generations and not us, is that anyone could theoretically be an influencer.
It's not like, you know, you have to go study to be a doctor, a lawyer, all these things, right?
So teens and young kids can look dreamily at their phones and aspire to this carefree, almost kid-like existence.
Well, it's only people who already have the luxury of having a phone and I think you need some luxury in your life already to kick it off. Oh, I see what you mean.
Yes, I would agree. Let's go back to Andre and Grace here, the influencer duo living in the lap of luxury, and generously sharing their highlights with their followers.
But Graham, there is a growing problem in their digital heaven. Do you want to take a stab at what it might be? Acne?
But Graham, there is a growing problem in their digital heaven. Do you want to take a stab at what it might be? Acne?
No, that's a good one. No? You've kind of already hit on it. They don't have their social media accounts properly protected, so a hacker could come in and steal their audience?
No, that would align way too closely with the ethos of this show. No.
It's all a lie. It's all a lie. He doesn't have millions.
Yes, exactly. Andre is having trouble paying for his proverbial snakeskin boots. While living the life, they are diving deeper into debt to the tune of $120K in Aussie dollars.
So this is a sticky pickle, right? Your job is to promote wealth and luxury. And what do you do to keep your followers and your sponsors on? You can't just hit up TK Maxx, right?
So this is a sticky pickle, right? Your job is to promote wealth and luxury. And what do you do to keep your followers and your sponsors on? You can't just hit up TK Maxx, right?
Oh, I know what I'd do. I'd buy a green screen. And then I could pretend to be anywhere in the world, couldn't I? I could fake it. But you'd have to buy a green screen.
They're not cheap.
Yeah, well, all right. Or buy a pot of green paint. You know, you—
That's right. Or a green sheet. Yeah, yeah.
It's not, I mean, that isn't that much, you know. You could share it around with your mates as well. You could all be doing it.
And with free tools on the internet, you could Photoshop your images to make them look more convincing, maybe. Here we are on the Amalfi Coast.
Or maybe you could use AI as well to deepfake some of this. To make it look like you're doing things. I mean, it's—
And with free tools on the internet, you could Photoshop your images to make them look more convincing, maybe. Here we are on the Amalfi Coast.
Or maybe you could use AI as well to deepfake some of this. To make it look like you're doing things. I mean, it's—
Extraordinary. Interesting you say that. Interesting you say that, right? Because things get worse for Andre.
Things get worse because while he's struggling to figure out how he can pay for his debts and keep all the balls in the air that he's got spinning— plates, balls, I don't know.
Things get worse because while he's struggling to figure out how he can pay for his debts and keep all the balls in the air that he's got spinning— plates, balls, I don't know.
Okay. Uncomfortable. Yes.
His mom is found dead by his youngest brother. Otherwise a very healthy woman. She's apparently fallen in the shower. So it's like, oh my God. So he's dealing with this debt.
He's dealing with his mom's debt.
But there is a silver lining, and that's that thankfully his mom had life insurance policies, and they would award Andre with upwards of $1 million Australian dollars.
He's dealing with his mom's debt.
But there is a silver lining, and that's that thankfully his mom had life insurance policies, and they would award Andre with upwards of $1 million Australian dollars.
Now, sometimes you've accused me of being a little bit cynical, Carole. So, I do have a thought going through my head.
I don't want to appear unkind or unsympathetic to this poor chap who's lost his mother.
I don't want to appear unkind or unsympathetic to this poor chap who's lost his mother.
Why don't you just keep it in your pocket for now? And then if you say, I knew it. All right. But we all believe that you know it.
Okay. My lips are sealed for now.
Okay. Your lips are sealed for now. So remember this was way back in 2020. This was COVID times, right?
So let's fast forward a few years and now we have an employee who we're going to call Joni. And Joni works at an insurance company. And she picks up a claim.
And Joni gets a whiff of foul play. Something's not smelling right.
And the thing is, is that it seems that Andre took out 3 separate life insurances with a total of just over $1 million Australian dollars against his mother.
He did this in the week before she died. Are you with me, Columbo?
So let's fast forward a few years and now we have an employee who we're going to call Joni. And Joni works at an insurance company. And she picks up a claim.
And Joni gets a whiff of foul play. Something's not smelling right.
And the thing is, is that it seems that Andre took out 3 separate life insurances with a total of just over $1 million Australian dollars against his mother.
He did this in the week before she died. Are you with me, Columbo?
I'm with you. I'm also wondering if you also bought some extra bars of soap and left them lying around in the shower tray. That's awful.
Okay, well, interesting, interesting. Also, he has a twin sister, right? Another sibling, and he is named as the sole beneficiary.
And then just days after his mother's death, Andre started apparently hounding the insurance companies to pay out their policies.
And in his pursuit of the money, it seems that Andre provided the insurers with fake records about his mother's health and death, phony copies of her medical records and a coroner's report, and get this, left the insurers a voicemail using an AI voice generator to impersonate his mother's psychologist.
And then just days after his mother's death, Andre started apparently hounding the insurance companies to pay out their policies.
And in his pursuit of the money, it seems that Andre provided the insurers with fake records about his mother's health and death, phony copies of her medical records and a coroner's report, and get this, left the insurers a voicemail using an AI voice generator to impersonate his mother's psychologist.
Hello, it is Carole Theriault, the psychologist.
So no surprise this gave the authorities enough to arrest him.
And he has been found in front of a jury of his peers where he's eventually pleaded guilty to the fraud, but denies killing his mother. I don't know.
Anyway, the jury deliberated for almost two days before finding him guilty. And he's been remanded in custody following this week's verdict and will be sentenced in April 2025.
And he has been found in front of a jury of his peers where he's eventually pleaded guilty to the fraud, but denies killing his mother. I don't know.
Anyway, the jury deliberated for almost two days before finding him guilty. And he's been remanded in custody following this week's verdict and will be sentenced in April 2025.
So chances are he's gonna get locked up.
Chances are he's gonna get locked up.
Anyone likely to give him a pot of green paint for his cell? Is he gonna redecorate the walls? I don't think he wants that.
I think he wants a Lamborghini. Right? He wants a Lamborghini and a Rolex. That is what stressed him out.
How many followers did you say he had on social media? A million-plus.
Presumably, he could sell his account to somebody else who could take on the reins and have all those followers.
I'm not offering to pay that much for it, but I'm just— Yeah, but come on, come on, come on.
Presumably, he could sell his account to somebody else who could take on the reins and have all those followers.
I'm not offering to pay that much for it, but I'm just— Yeah, but come on, come on, come on.
I think there's a Netflix story here. This guy's not building a boring curriculum vitae here.
You know, a supermarket delivery driver turned cryptocurrency trader turned Insta influencer turned criminal turned accused murderer.
You know, a supermarket delivery driver turned cryptocurrency trader turned Insta influencer turned criminal turned accused murderer.
Turned public speaker. He'll be out as soon as he gets out. He'll be on the circuit. He'll be writing a book. You're right. He'll probably have his own reality TV show.
Well, he won't write a book.
Well, he won't write a book.
He'll have AI to do it.
BigID helps you uncover dark data, identify and reduce risk, take action through remediation, and scale your data security strategy through seamless integration with your existing tech stack.
Start protecting your sensitive data wherever your data lives by visiting bigid.com/smashing.
Get a free demo to see how BigID can help your organization reduce data risk and accelerate the adoption of generative AI.
Also, there's a free new report that provides valuable insights and key trends on AI adoption challenges, and the overall impact of GenAI across organizations.
So go visit bigid.com/smashing, and thanks to the folks at BigID for sponsoring the show.
Start protecting your sensitive data wherever your data lives by visiting bigid.com/smashing.
Get a free demo to see how BigID can help your organization reduce data risk and accelerate the adoption of generative AI.
Also, there's a free new report that provides valuable insights and key trends on AI adoption challenges, and the overall impact of GenAI across organizations.
So go visit bigid.com/smashing, and thanks to the folks at BigID for sponsoring the show.
Do zero-day exploits and supply chain attacks keep you up at night? Worry no more. You can harden your security with ThreatLocker.
Imagine taking a proactive deny-by-default approach to cybersecurity, blocking every action, process, and user unless specifically authorized by your team.
ThreatLocker helps you do this and provides a full audit of every action for risk management and compliance.
Onboarding and operation is fully supported by their US-based support team.
Stop the exploitation of trusted applications within your organization to keep you running efficiently and securely.
Worldwide companies like JetBlue trust ThreatLocker to secure their data and keep their business operations flying high.
To learn more about how ThreatLocker can mitigate unknown threats and ensure compliance for your organization, visit smashingsecurity.com/threatlocker.
That's smashingsecurity.com/threatlocker. And thank you to ThreatLocker for sponsoring the show.
Imagine taking a proactive deny-by-default approach to cybersecurity, blocking every action, process, and user unless specifically authorized by your team.
ThreatLocker helps you do this and provides a full audit of every action for risk management and compliance.
Onboarding and operation is fully supported by their US-based support team.
Stop the exploitation of trusted applications within your organization to keep you running efficiently and securely.
Worldwide companies like JetBlue trust ThreatLocker to secure their data and keep their business operations flying high.
To learn more about how ThreatLocker can mitigate unknown threats and ensure compliance for your organization, visit smashingsecurity.com/threatlocker.
That's smashingsecurity.com/threatlocker. And thank you to ThreatLocker for sponsoring the show.
Quick question: do your end users always, and I mean always without exception, work on company-owned devices and IT-approved apps? I didn't think so.
So my next question is, how do you keep your company's data safe when it's sitting on all of those unmanaged apps and devices?
Well, 1Password has an answer to this question, and it's called Extended Access Management.
1Password Extended Access Management helps you secure every sign-in for every app on every device because it solves the problems traditional IAM and MDM can't touch.
Go and check it out for yourself at 1password.com/smashing. That's 1password.com/smashing. And thanks to the folks at 1Password for supporting the show.
And welcome back, and you join us for our favorite part of the show, the part of the show that we like to call Pick of the Week.
So my next question is, how do you keep your company's data safe when it's sitting on all of those unmanaged apps and devices?
Well, 1Password has an answer to this question, and it's called Extended Access Management.
1Password Extended Access Management helps you secure every sign-in for every app on every device because it solves the problems traditional IAM and MDM can't touch.
Go and check it out for yourself at 1password.com/smashing. That's 1password.com/smashing. And thanks to the folks at 1Password for supporting the show.
And welcome back, and you join us for our favorite part of the show, the part of the show that we like to call Pick of the Week.
Pick of the Week. Pick of the Week.
Pick of the Week is the part of the show where everyone chooses something they like.
Could be a funny story, a book that they've read, a TV show, a movie, a record, a podcast, a website, or an app. Whatever they like.
It doesn't have to be security-related necessarily. Well, my pick of the week this week is not security related. My pick of the week is a movie, not a new movie.
It's been out for a few years, but I've only just seen it and I thought it was quite good. It's a movie by Spike Lee. Have you ever seen any Spike Lee movies, Carole?
Could be a funny story, a book that they've read, a TV show, a movie, a record, a podcast, a website, or an app. Whatever they like.
It doesn't have to be security-related necessarily. Well, my pick of the week this week is not security related. My pick of the week is a movie, not a new movie.
It's been out for a few years, but I've only just seen it and I thought it was quite good. It's a movie by Spike Lee. Have you ever seen any Spike Lee movies, Carole?
I have seen Spike Lee movies, but please don't ask me to name them. I'll know if you say it. I'll have to go look it up and I'll go, yeah, I've seen it. No, I haven't.
This one's got a very unusual name. And it's kind of hard to look up on streaming services because of the way it's spelled. So don't let that dissuade you too much.
It's BlacKkKlansman.
It's BlacKkKlansman.
Oh, I have not seen that.
And between the words black and Klansman is another K. So it's 3 Ks in the middle, which does give you a little bit of a clue as to what it's about.
Mm-hmm. And it's a Spike Lee movie, so, you know.
And it's about the Ku Klux Klan, of course. And it's loosely based on the true story of Ron Stallworth. He was a detective in the 1970s in the Colorado Springs Police Department.
And he's trying to build up a name for himself, and he sets out to infiltrate the local Ku Klux Klan chapter to expose what they're up to.
And that is not an easy job for him because Ron is Black. And as you can imagine, not simple. So this movie stars John David Washington. He's the son of Denzel Washington.
He was in Tenet. If you saw Tenet.
And he's trying to build up a name for himself, and he sets out to infiltrate the local Ku Klux Klan chapter to expose what they're up to.
And that is not an easy job for him because Ron is Black. And as you can imagine, not simple. So this movie stars John David Washington. He's the son of Denzel Washington.
He was in Tenet. If you saw Tenet.
I was.
It was quite confusing, but quite good. There's also Adam Driver in it. He's excellent.
He plays Kylo Ren from Star Wars, and that's probably what he's most famous for, but he's been in lots of things.
He is Ron's stand-in when he has in-person meetings with the KKK, because of course the KKK, not a big fan of Black people. Also not a huge fan of Jewish people.
And Adam Driver's character in the movie is a Jewish detective. So again, a little bit awkward there. The movie's great. It's sometimes darkly funny, it's often frightening.
I saw it on Netflix. It's also got some things to say about today and some of the goings-on in the US of A. So I would really recommend it.
I thought it was a great movie, and I can't believe I'd waited until now to see it. So that is my Pick of the Week: BlacKkKlansman by Spike Lee. Carole, what's your pick of the week?
He plays Kylo Ren from Star Wars, and that's probably what he's most famous for, but he's been in lots of things.
He is Ron's stand-in when he has in-person meetings with the KKK, because of course the KKK, not a big fan of Black people. Also not a huge fan of Jewish people.
And Adam Driver's character in the movie is a Jewish detective. So again, a little bit awkward there. The movie's great. It's sometimes darkly funny, it's often frightening.
I saw it on Netflix. It's also got some things to say about today and some of the goings-on in the US of A. So I would really recommend it.
I thought it was a great movie, and I can't believe I'd waited until now to see it. So that is my Pick of the Week: BlacKkKlansman by Spike Lee. Carole, what's your pick of the week?
We're coming to the end of a pretty climactic year. You know, there's a lot of turmoil going on politically and natural disasters.
Plus, turns out doomscrolling might not be good for you. And apparently we're all brushing our teeth incorrectly.
So you know, all this over the everyday stuff we all have to face has turned a lot of us into stressed out, worried, fearful little humans, which is not good. So what to do?
Well, I asked my therapist and one of the answers is self-care. What's that? I said, self what? So basically it's apparently taking time to chill out.
CTFD, as we used to say, Graham, in the office.
Plus, turns out doomscrolling might not be good for you. And apparently we're all brushing our teeth incorrectly.
So you know, all this over the everyday stuff we all have to face has turned a lot of us into stressed out, worried, fearful little humans, which is not good. So what to do?
Well, I asked my therapist and one of the answers is self-care. What's that? I said, self what? So basically it's apparently taking time to chill out.
CTFD, as we used to say, Graham, in the office.
Oh yes. Calm the flip.
Now, as many of you know, I'm an audiophile, so I listen to stuff all the time, books, podcasts, music.
What if I took time to listen to something that was very chill without a beat or a storyline? And so let me present A Soft Murmur.
There's a link in the show notes, Graham, and listeners. So you can go have a little play around while I explain it.
So on this app or website, so you go to A Soft Murmur, murmur.com, you can design a relaxing background soundscape, such as crackling fire and crashing waves or winter birds, and you can even mash them together and put them at different volumes.
This is great.
What if I took time to listen to something that was very chill without a beat or a storyline? And so let me present A Soft Murmur.
There's a link in the show notes, Graham, and listeners. So you can go have a little play around while I explain it.
So on this app or website, so you go to A Soft Murmur, murmur.com, you can design a relaxing background soundscape, such as crackling fire and crashing waves or winter birds, and you can even mash them together and put them at different volumes.
This is great.
This is like a sound desk where you can sort of, you can put up the faders on different kinds of sound effects. I've got a bit of waves, a bit of wind.
And you can combine them all together. And there's lots here, aren't there?
And you can combine them all together. And there's lots here, aren't there?
I researched and wrote today's story having a crackling fire in the background. Loved it.
You did check, presumably, that it wasn't for real happening behind you. It wasn't your house burning down, because that's not relaxing, Carole.
And you can send them a few bucks and get even more ambient sounds. So thank you to Mashable for the tip. I think it's very sweet, and I do think it's important just to unplug.
And the holidays are coming, what better excuse? My pick of the week is A Soft Murmur to keep the stress under control.
And the holidays are coming, what better excuse? My pick of the week is A Soft Murmur to keep the stress under control.
Well, what a lovely way to end the episode. That just about wraps up the show for this week.
You can find Smashing Security on Bluesky, unlike Twitter, which wouldn't let us have a G. And don't forget to ensure you never miss another episode.
Follow Smashing Security in your favorite podcast app, such as Apple Podcasts, Spotify, and Pocket Casts.
You can find Smashing Security on Bluesky, unlike Twitter, which wouldn't let us have a G. And don't forget to ensure you never miss another episode.
Follow Smashing Security in your favorite podcast app, such as Apple Podcasts, Spotify, and Pocket Casts.
And thank you to our episode sponsors, 1Password, ThreatLocker, and BigID. And of course, to our wonderful Patreon community. It's thanks to them all that this show is free.
For episode show notes, sponsorship info, guest lists, and the entire back catalog of more than 396 episodes, check out SmashingSecurity.com.
For episode show notes, sponsorship info, guest lists, and the entire back catalog of more than 396 episodes, check out SmashingSecurity.com.
Until next time, cheerio. Bye-bye. Bye.
Hosts:
Graham Cluley:
@grahamcluley.com
@
/ grahamcluley
Carole Theriault:
Episode links:
- Accused Kitchener hacker unmasked after threatening woman online – The Waterloo Region Record.
- Canadian Man Arrested in Snowflake Data Extortions – Krebs on Security.
- Who wants to be next? – Bluesky post by Allison Nixon.
- Crypto Trader Kills His Mum For £500k After Going Into Debt To Maintain ‘Perfect Lifestyle’ – IB Times.
- Autopsy reveals injuries on body of Colleen Rebelo’s body after alleged murder – Australia News.
- Influencer Marketing Statistics 2024 – Artios.
- BLACKkKLANSMAN trailer – YouTube.
- A Soft Murmur.
- Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
Sponsored by:
- 1Password Extended Access Management – Secure every sign-in for every app on every device.
- BigID – Start protecting your sensitive data wherever it lives with BigID. Get a free demo to how your organization can reduce data risk and accelerate the adoption of generative AI.
- ThreatLocker – the Zero Trust endpoint protection platform that provides enterprise-level cybersecurity to organizations globally. Start your 30-day free trial today!
Support the show:
You can help the podcast by telling your friends and colleagues about “Smashing Security”, and leaving us a review on Apple Podcasts or Podchaser.
Become a Patreon supporter for ad-free episodes and our early-release feed!
Follow us:
Follow the show on Bluesky, or join us on the Smashing Security subreddit, or visit our website for more episodes.
Thanks:
Theme tune: “Vinyl Memories” by Mikael Manvelyan.
Assorted sound effects: AudioBlocks.
