Hacking Humans

Psychology and scams.

May 16, 2024

Maria Varmazis, host of the N2K daily space show, T-Minus, discusses the evolving tactics of ransomware attackers towards psychological manipulation. The podcast also covers bank scammers using genuine push notifications, North Korean social engineering attacks through email security loopholes, and a listener's experience with a fake email from the U.S. Social Security Department.

43:55

Creator website

Episode guests

Maria Varmazis

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

Ransomware attacks evolving to psychological tactics for payments.

Scammers using genuine push notifications for bank scams and exploiting email security loopholes for social engineering attacks.

Deep dives

DMARC Policy Enforcement and Email Spoofing

DMARC, SPF, and DKIM are key technologies used to prevent email spoofing and unauthorized sending of emails. These tools allow domain owners to specify authorized sending servers, digitally sign messages, and set policies for email validation. Improperly configured DMARC records can lead to successful email spoofing attacks by malicious actors like the North Korean group Kim Suki targeting policy analysts.

Introduction

3min

Deceptive Scam Tactics by Phone Call Fraudsters

17min

Threats, Security Measures, and Executive Precautions Discussed

5min

Enhancing Email Security with SPF, DKIM, and DMARC

10min

Uncovering a Fake Social Security Number Scam

4min

Humorous Banter about Abandoned Homes and Staying Ahead of the Law

4min

This week we are joined by Maria Varmazis, host of the N2K daily space show, T-Minus. Maria shares an interesting story about how ransomware infections are beginning to change to form a more psychological attack against victims' organizations, as criminals are using personal and aggressive tactics to force them to pay. Dave and Joe share some listener follow up, from Bob, who writes in to share how he shares stories with his family members, and mentions one specifically on a Best Buy Geek Squad scam. Dave share's a story on bank scams, and how scammers are using genuine push notifications to trick their victims. Joe shares a story regarding email security loopholes, and how these loopholes are the latest path for North Korean social engineering attacks. Our catch of the day is from our follow up listener Bob, as he shares the story of trying to figure out the difference between a real email from the U.S social security department and a fake one.

Please take a moment to fill out an audience survey! Let us know how we are doing!

Links to the stories:

You can hear more from the T-Minus space daily show here.

Have a Catch of the Day you'd like to share? Email it to us at hackinghumans@thecyberwire.com.

Remember Everything You Learn from Podcasts

Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.

Hacking Humans

Psychology and scams.

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

DMARC Policy Enforcement and Email Spoofing

False Social Security Number Suspension Scam

Inconsistent Claims and Government Agency Misrepresentation

Attempted Email Scam with Legal Intimidation Tactics

Remember Everything You Learn from Podcasts