<description>&lt;p&gt;What happens when a healthcare giant’s legal threats ignite a Streisand Effect wildfire… while a ransomware gang appears to ditch the dark web for postage stamps?&lt;/p&gt;&lt;p&gt;Find out about this, and more, in the latest edition of the "Smashing Security" podcast by cybersecurity veterans Graham Cluley and Carole Theriault.&lt;/p&gt;&lt;p&gt;Warning: This podcast may contain nuts, adult themes, and rude language.&lt;/p&gt;&lt;p&gt;&lt;strong&gt;Episode links:&lt;/strong&gt;&lt;/p&gt;&lt;ul&gt;&lt;li&gt;&lt;a href="https://timesofmalta.com/article/we-wanted-help-students-arrested-exposing-freehour-security-flaw.1024757" rel="noopener noreferrer" target="_blank"&gt;'We wanted to help': Students arrested after exposing FreeHour security flaw&lt;/a&gt; - Times of Malta.&lt;/li&gt;&lt;li&gt;&lt;a href="https://databreaches.net/2025/02/20/medusa-ransomware-gang-demands-2m-from-uk-private-health-services-provider/" rel="noopener noreferrer" target="_blank"&gt;Medusa ransomware gang demands $2M from UK private health services provider&lt;/a&gt; - DataBreaches.net.&lt;/li&gt;&lt;li&gt;&lt;a href="https://databreaches.net/2025/02/26/medusa-unveils-another-50tb-of-stolen-data-from-hcrg-care-group-giving-greater-insight-into-the-scope-of-the-breach/" rel="noopener noreferrer" target="_blank"&gt;Medusa Unveils Another 50TB of Stolen Data from HCRG Care Group, Giving Greater Insight Into the Scope of the Breach&lt;/a&gt; - DataBreaches.net.&lt;/li&gt;&lt;li&gt;&lt;a href="https://databreaches.net/2025/03/05/hcrg-cares-lawyers-claimed-an-injunction-issued-in-a-private-hearing-required-us-to-remove-two-posts-we-didnt-comply/" rel="noopener noreferrer" target="_blank"&gt;HCRG Care’s lawyers claimed an injunction issued in a “private” hearing required us to remove two posts. We didn’t comply&lt;/a&gt; - DataBreaches.net.&lt;/li&gt;&lt;li&gt;&lt;a href="https://grahamcluley.com/security-firm-five-billion-records-exposed-unsecured-database/" rel="noopener noreferrer" target="_blank"&gt;Security firm leaves more than five billion records exposed on unsecured database&lt;/a&gt; - Graham Cluley.&lt;/li&gt;&lt;li&gt;&lt;a href="https://grahamcluley.com/keepnet-labs-statement-data-breach/" rel="noopener noreferrer" target="_blank"&gt;After threatening me with legal action, Keepnet Labs finally issues statement over data breach&lt;/a&gt; - Graham Cluley.&lt;/li&gt;&lt;li&gt;&lt;a href="https://www.theregister.com/2007/05/30/sophos_versus_edugeeks/" rel="noopener noreferrer" target="_blank"&gt;Sophos apologises for going legal on school techies&lt;/a&gt; - The Register.&lt;/li&gt;&lt;li&gt;&lt;a href="https://www.ic3.gov/PSA/2025/PSA250306-2" rel="noopener noreferrer" target="_blank"&gt;Mail Scam Targeting Corporate Executives Claims Ties to Ransomware&lt;/a&gt; - IC3.&lt;/li&gt;&lt;li&gt;&lt;a href="https://www.techradar.com/pro/security/one-of-the-nastiest-ransomware-groups-around-may-have-a-whole-new-way-of-doing-things" rel="noopener noreferrer" target="_blank"&gt;One of the nastiest ransomware groups around may have a whole new way of doing things&lt;/a&gt; - TechRadar.&lt;/li&gt;&lt;li&gt;&lt;a href="https://www.guidepointsecurity.com/blog/snail-mail-fail-fake-ransom-note-campaign-preys-on-fear/" rel="noopener noreferrer" target="_blank"&gt;Snail Mail Fail: Fake Ransom Note Campaign Preys on Fear&lt;/a&gt; - GuidePoint Security.&lt;/li&gt;&lt;li&gt;&lt;a href="https://tv.apple.com/us/show/severance/umc.cmc.1srk2goyh2q2zdxcx605w8vtx" rel="noopener noreferrer" target="_blank"&gt;Severance&lt;/a&gt; - Apple TV+.&lt;/li&gt;&lt;li&gt;&lt;a href="https://www.smashingsecurity.com/store/" rel="noopener noreferrer" target="_blank"&gt;Smashing Security merchandise (t-shirts, mugs, stickers and stuff)&lt;/a&gt;&lt;/li&gt;&lt;/ul&gt;&lt;br/&gt;&lt;p&gt;&lt;br&gt;&lt;/p&gt;&lt;p&gt;&lt;br&gt;&lt;/p&gt;&lt;p&gt;&lt;strong&gt;Sponsored by:&lt;/strong&gt;&lt;/p&gt;&lt;ul&gt;&lt;li&gt;&lt;a href="https://www.1password.com/smashing" rel="noopener noreferrer" target="_blank"&gt;1Password Extended Access Management&lt;/a&gt; – Secure every sign-in for every app on every device.&lt;/li&gt;&lt;li&gt;&lt;a href="https://smashingsecurity.com/unit42" rel="noopener noreferrer" target="_blank"&gt;Palo Alto Networks&lt;/a&gt; - Get the 2025 Unit 42 Global Incident Response report to discover emerging threat trends, attacker tactics and expert recommendations to safeguard your business.&lt;/li&gt;&lt;li&gt;&lt;a...</description>

Smashing Security

Graham Cluley & Carole Theriault

A gag order backfires, and a snail mail ransom demand

MAR 12, 202532 MIN
Smashing Security

A gag order backfires, and a snail mail ransom demand

MAR 12, 202532 MIN

Description

What happens when a healthcare giant’s legal threats ignite a Streisand Effect wildfire… while a ransomware gang appears to ditch the dark web for postage stamps?

Find out about this, and more, in the latest edition of the "Smashing Security" podcast by cybersecurity veterans Graham Cluley and Carole Theriault.

Warning: This podcast may contain nuts, adult themes, and rude language.

Episode links:




Sponsored by:

  • 1Password Extended Access Management – Secure every sign-in for every app on every device.
  • Palo Alto Networks - Get the 2025 Unit 42 Global Incident Response report to discover emerging threat trends, attacker tactics and expert recommendations to safeguard your business.
  • Tripwire Enterprise - Set up a demo of Tripwire Enterprise to see how you can simultaneously harden your systems and automate compliance.


SUPPORT THE SHOW:

Tell your friends and colleagues about “Smashing Security”, and leave us a review on Apple Podcasts or Podchaser.

Become a supporter via Patreon or Apple Podcasts for ad-free episodes and our early-release feed!


FOLLOW US:

Follow us on Bluesky or Mastodon, or on the Smashing Security subreddit, and visit our website for more episodes.


THANKS:

Theme tune: "Vinyl Memories" by Mikael Manvelyan.

Assorted sound effects: AudioBlocks.



This podcast uses the following third-party services for analysis:

OP3 - https://op3.dev/privacy