The Social-Engineer Podcast

Today we will be talking with Abbie Maroño, a nonverbal communications and social influence coach. Abbie published her first paper in nonverbal communication at 19 years old, going on to do her PhD in behavior analysis and become a university lecturer at 23. She now directs a research group, BRINC, alongside her coaching and teaching. [May 9, 2022]  00:00 – Intro  Social-Engineer.com  Managed Voice Phishing Managed Email Phishing Adversarial Simulations -  Social-Engineer channel on SLACK CLUTCH  innocentlivesfoundation.org  02:52 – Abbie Maroño intro  04:47 – At what point in your life did you want to become a Nonverbal expert?  06:56 – The reality of getting to where you want to be  08:39 – What kept you going after rejections?  11:15 – How does a person learn to find their passion?  14:06 – How did you decide to make Nonverbal Communications a career?  17:53 – How important is Open VS Closed Body Language?  23:00 – What is orientation and why does it matter?  27:49 – The role of body language in a virtual setting  33:30 – The "perception" of eye-contact in a video call  35:31 – Find Abbie Maroño on the web  Website link: abbiemarono.com  Twitter: @abbiejmarono  LinkedIn: linkedin.com/in/abbie-maroño-35ab2611a   36:05 – New Job Announcement  38:16 – Who would you consider your biggest mentors?  Dr David Keatley   Joe Navarro  41:16 – Book Recommendations:  The Body Keeps the Score - Bessel van der Kolk  What Every BODY is Saying – Joe Navarro  Unmasking the Social Engineer - Christopher J. Hadnagy  The Code of Trust - Robin Dreeke  The Timeline Toolkit - David Keatley  The Polyvagal Theory - Stephen Porges  43:47 – Guest Wrap Up  44:17 – Outro  www.social-engineer.com  www.innocentlivesfoundation.org 

This month, Chris Hadnagy and Ryan MacDougall are joined by Patrick Laverty. Patrick is the Senior Team Lead at Social Engineer, LLC, working with an incredible team of professional social engineers. He was previously a senior penetration tester at Rapid7 and a member of the CSIRT at Akamai. He is a co-organizer of the Layer 8 Conference and is the host of the Layer 8 Podcast on social engineering and OSINT. He lives in Rhode Island with his daughter, dog and two cats. [April 18, 2022]  00:00 – Intro  00:50 – Patrick Laverty intro  https://layer8conference.com  02:19 – Intro Links  Social-Engineer.com Managed Voice Phishing  Managed Email Phishing Adversarial Simulations  Social-Engineer channel on SLACK  CLUTCH  innocentlivesfoundation.org  04:38 – Security Awareness in the world today  05:25 – Malicious Domain Registrations  06:58 – Protecting yourself from false domains  11:24 – CISA Alert / Shields Up  12:36 – Lowering Reporting Thresholds  13:33 – Empowering Security Information Officers  16:50 – Tabletop Exercises  19:20 – Planning for Continuity  21:09 – Beyond the Financial Effects of Ransomware  24:29 – Trying to protect the Healthcare Sector  25:27 – Backup & Recovery Process  28:38 – The source of Ransomware  30:03 – Planning for a Ransomware attack  31:51 – Why your site will be attacked  33:41 – 3 Actionable Tips  35:30 – Book Recommendations  Thinking, Fast and Slow– Daniel Kahneman How to Win Friends & Influence People– Dale Carnegie Delivered from Distraction – John Ratey Fixed – Amy Herman Going Pro – Dr Tony Kern 38:20 – Wrap Up   39:18 – Outro  www.social-engineer.com  www.innocentlivesfoundation.org 

Today we will be talking with Vanessa Bohns. Vanessa is a social psychologist and professor of organizational behavior at Cornell University. She holds a PhD from Columbia University and an AB from Brown University. Her writing has appeared in the New York Times, Wall Street Journal, and Harvard Business Review, and her research has been widely featured in the media, including The Wall Street Journal, The New York Times, The Atlantic, The Economist, and on NPR’s Hidden Brain. Her first book, You Have More Influence Than You Think, was just published in September 2021. [April 11, 2022] 00:00 – Intro Social-Engineer.com Managed Voice Phishing Managed Email Phishing Adversarial Simulations Social-Engineer channel on SLACK CLUTCH innocentlivesfoundation.org 01:53 – Vanessa Bohns intro 02:43 – How did you make Social Influence your field? 05:48 – Why do we assume people will be negative when we make a request? 08:01 – The surprising results of asking for things 11:12 – We are wired to be agreeable 13:34 – What are the security implications of our default attitudes? 16:59 – What are the consequences of underestimating your own influence? 19:32 – Understanding how the situation can influence ethics 21:05 – What would you say is your favorite find? 21:48 – Enlisting someone to influence their ethics 24:00 – Paying attention to the human side of security 25:04 – What is your next study? 27:11 – The importance of a predefined script 28:54 – Will "keywords" change a person’s sense of agreeability? 30:10 – Recognizing your own influence 31:41 – Who would you consider some of your biggest mentors? Frank Flynn – Professor Father 33:39 – Book Recommendations: Bird by Bird – Anne Lamott An Astronaut's Guide to Life on Earth – Chris Hadfield (Vanessa’s Book) You Have More Influence Than You Think – Vanessa Bohns 35:47 – Guest Wrap Up 36:17 – Find Vanessa Bohns on the web Website link: vanessabohns.com Twitter: @profbohns Instagram: @profbohns LinkedIn: https://www.linkedin.com/in/vanessa-bohns-33219710/ 36:49 – Outro social-engineer.com innocentlivesfoundation.org  

This month we are joined by Dr. Camille Preston, who is the CEO and founder of AIM Leadership. Since founding AIM Leadership in 2004, she has worked with leaders across sectors and the capital stack. As a business psychologist, Camille brings research and insights from psychology, neuroscience, and business to her work. Whether supporting Fortune 500 leaders, startup founders, or C-suite executives in healthcare, Camille's sweet spot is helping uncover hidden barriers to increase the capacity to optimize, innovate, and manage change.    In addition to working as a coach and business psychologist, Camille is author of two books, a regular contributor to several established publications in the business and psychology fields, and the author of a growing library of actionable resource tools.   A life-long challenge seeker, Camille has lived on four continents, worked on six, and traveled extensively. [March 14, 2022]    00:00 – Intro  Social-Engineer.com - http://www.social-engineer.com/  Managed Voice Phishing - https://www.social-engineer.com/services/vishing-service/  Managed Email Phishing - https://www.social-engineer.com/services/se-phishing-service/  Adversarial Simulations - https://www.social-engineer.com/services/social-engineering-penetration-test/  Social-Engineer channel on SLACK - https://social-engineering-hq.slack.com/ssb  CLUTCH - http://www.pro-rock.com/  innocentlivesfoundation.org - http://www.innocentlivesfoundation.org/  01:25 – Dr. Camille Preston Intro  02:43 – How did you get into this?  05:02 – The Journey to Awareness & Mindfulness  06:39 – Building Mindfulness  08:32 – Horizontal VS Vertical Development  10:00 – Gateways of Vertical Development  11:41 – Owning Mistakes  14:02 – Planning For Problem Solving   15:12 – Building Trust  16:21 – Authentic Connections in a Virtual World  19:24 – Mental Health Pandemic  21:25 – The Importance of Great Leadership  22:41 – Integrating Head and Heart  23:53 – What makes someone “all heart”?  26:51 – The Importance of Leaving Your Country  29:45 – Who are your greatest mentors?  33:36 – Book Recommendations:  Sogyal Rinpoche – The Tibetan Book of Living and Dying - https://amzn.to/3sV7nxq  Steven Kotler – https://amzn.to/3IZRStD  Dave Asprey – Game Changers - https://amzn.to/3IZ1zZg  Naomi McDougall Jones – The Wrong Kind of Women - https://amzn.to/3KrLVWP  (Camille’s Book) Camille Preston – Create More Flow - https://amzn.to/3sVRDKB  (Camille’s Book) Camille Preston – Rewired - https://amzn.to/3pQvCuM  35:21 – Guest Wrap Up  Twitter: http://twitter.com/CamilleP   LinkedIn: https://www.linkedin.com/in/camillepreston/   AIM Leadership: https://aimleadership.com/  35:37 – Outro 

This month Chris Hadnagy and Ryan MacDougall are joined by Kathleen (Kate) Mullin. Kate is an influential information security practitioner with over 30 years of experience. Kate currently is CISO with Cancer Treatment Centers of America.  Kate has been CISO at various organizations including start-ups, publicly traded, private equity, not-for-profit, and governmental entities. Throughout her career, Kate has volunteered and participated in maturing information security as a profession. She volunteers with ISC(2) and ISACA and has been a member of the ISACA CGEIT Certification and Credentials Committee and a chapter president. Kate serves as a featured international speaker and panelist. She has a BSBA from St Joseph’s College and an MBA from Florida Metropolitan University. Kate is also certified as a Master Level Social Engineer. [February 21, 2022]  00:00 – Intro  Social-Engineer.com Managed Voice Phishing Managed Email Phishing  Adversarial Simulations  Social-Engineer channel on SLACK CLUTCH innocentlivesfoundation.org  Human Behavior Conference 03:09 – Kathleen Mullin intro  04:25 – How did you get started in Information Security?  06:39 – What are some indicators that tells you something is ineffective?  10:21 – Do you think the “cookie cutter” type of training is a reflection on the security awareness team itself?  12:16 – How can you offer the more personalized training to a company that is spread out all over the U.S. or the globe?  16:31 – Is having someone in this position who is focused on the people and the results the way to go about having the program be successful?  18:09 – What are your major security concerns being in the healthcare industry, and how are you dealing with those?  21:08 – We are seeing SMishing attacks becoming more prevalent in general. Are you seeing that happening in your industry?  22:47 – Caring about employees’ security outside of work as well  23:35 – What are some action steps that any company can start doing right now?  Have metrics and measure training effectiveness  Humanize your training  Incremental steps  Care about your users for real  26:11 – Demoralizing phishing techniques  28:15 – Book Recommendations:  Martha Wells - Murderbot Diaries series  Robin Dreeke – Code of Trust  Textbook - Enterprise Security Architecture   30:13 – Who would you consider your greatest mentor?  Father, Naval pilot/engineer  Chris Hadnagy  Michele Fincher  David Lynus from the SABSA Institute 34:27 – Finding Kate on the web:  https://www.linkedin.com/in/katemullin/  35:17 – Guest Wrap Up  36:00 – Outro  www.social-engineer.com  www.innocentlivesfoundation.org 

This month Chris Hadnagy and Ryan MacDougall are joined by John Strand from Black Hills Information Security. John has both consulted and taught hundreds of organizations in the areas of security, regulatory compliance, and penetration testing.  He is a coveted speaker and much-loved SANS teacher. John is a contributor to the industry-shaping Penetration Testing Execution Standard and 20 Critical Controls frameworks.  He enjoys mountain biking, getting hurt mountain biking, sucking at surfing, and heavy music. January 17th 2022  00:00 – Intro  Social-Engineer.com - http://www.social-engineer.com/  Managed Voice Phishing - https://www.social-engineer.com/services/vishing-service/  Managed Email Phishing - https://www.social-engineer.com/services/se-phishing-service/  Adversarial Simulations - https://www.social-engineer.com/services/social-engineering-penetration-test/  Social-Engineer channel on SLACK - https://social-engineering-hq.slack.com/ssb  CLUTCH - http://www.pro-rock.com/  innocentlivesfoundation.org - http://www.innocentlivesfoundation.org/  Human Behavior Conference – https://humanbehaviorcon.com/    02:40 – John Strand Info  03:31 - ILF  04:51 - Ryan intro  06:30 – Chat about Chris getting his company started  08:21 - How did you get started with your own company?  12:17 - Cows  14:56 – The idea of travel and never seeing your family  15:57 - What was the point where you started to feel “this company is going to work”  18:35 – Creating company loyalty  22:06 - “Pay What You Can” training  30:22 – More on how the pandemic changed workflow  34:03 – More on pay-what-you-can training – management of 5,000 people  41:41 – How can someone take action right now?  44:59 – Favorite Books  Dune  All the Birds In The Sky – Charlie Jane Anders - https://amzn.to/3I9lu75  We - Yevgeny Zamyatin - https://amzn.to/3Ihoy1b  The Master and Margarita – Mikhail Bulgakov - https://amzn.to/3Kl6t3R  The Mistborn Series – Brandon Sanderson - https://amzn.to/33qcnQH  The Way of The Kings – Brandon Sanderson - https://amzn.to/3tuF1uJ  47:55 – Who is your biggest mentor  Ed Skoudis  51:34 – Guest Wrap-Up  52:30 - Outro     

This is a special edition of Social-Engineer's Human Element Series Podcast.  Chris Hadnagy will discuss Covid-19 testing site scams, and how you can protect yourself against them. [January 14, 2022]   00:00 – Intro social-engineer.com/ social-engineer.org/ innocentlivesfoundation.org/ 00:21 – Covid-19 Testing Site Physical Scams 05:46 – Other types of scams during Covid-19 06:44 – Outro http://www.social-engineer.com/ https://social-engineering-hq.slack.com/ssb http://www.pro-rock.com/ http://www.innocentlivesfoundation.org/  

This month Chris Hadnagy is joined by the fascinating Amy Herman. Amy is a lawyer and an art historian who uses works of art to sharpen observation, analysis, and communication skills. She developed her Art of Perception seminar in 2000 and since then has worked with the New York City Police Department, the FBI, Department of Defense, Fortune 500 companies and more. She is also a TED speaker and an author of 2 books. Her latest book, “Fixed: How to Perfect the Fine Art of Problem-Solving was just released in December of 2021. She is also going to be bringing her fascinating training seminar to the Human Behavior Conference this March! [January 10, 2022]    00:00 – Intro  Social-Engineer.com - http://www.social-engineer.com/  Managed Voice Phishing - https://www.social-engineer.com/services/vishing-service/  Managed Email Phishing - https://www.social-engineer.com/services/se-phishing-service/  Adversarial Simulations - https://www.social-engineer.com/services/social-engineering-penetration-test/  Social-Engineer channel on SLACK - https://social-engineering-hq.slack.com/ssb  CLUTCH - http://www.pro-rock.com/  innocentlivesfoundation.org - http://www.innocentlivesfoundation.org/  Human Behavior Conference – https://humanbehaviorcon.com/  02:39 -  Amy Herman Intro  04:17 – Tell us how you got to where you are today  07:12 – How did you get to the conclusion where two different people from the same class have different needs?  10:00 – Is there an equation or secret about how an every day person can use that skill?  13:33 – Amy's new book, “Fixed” 15:00 – How did you come up with the concept of this book?  18:00 – What is the hope you want for people who read this?  19:52 – How has the past 18 months changed the concepts of visual intelligence?  25:55 – Are you going to keep virtual training?  29:50 – Being more empathetic and finding common ground  32:31 – Can you explain “pertinent negative” from your book?  35:34 – Tell the story about your book cover  40:36 – Besides yours what are some of your favorite books?  (Amy’s book) Fixed.: How To Perfect The Fine Art of Problem Solving  (Amy’s book) Visual Intelligence: Sharpen Your Perception, Change Your Life  The Boys In The Boat – Nine Americans and Their Quest for the Gold - by Daniel James Brown  43:27 – Who is your greatest mentor?  Angela Merkel  45:15 – Guest Wrap Up  Website:  www.artfulperception.com  Twitter:  www.twitter.com/AmyhermanAOP  Instagram: @AmyHermanAOP 

This month, Chris Hadnagy and Ryan MacDougall are joined by Adam Levin.  Adam is a nationally recognized expert on cybersecurity, privacy, identity theft, fraud, and personal finance and has distinguished himself as a fierce consumer advocate for the past 50 years. Adam is the former Director of the New Jersey Division of Consumer Affairs, and currently is the founder of CyberScout and co-founder of Credit.com. He is also author of the critically acclaimed book Swiped: How to Protect Yourself in a World Full of Scammers, Phishers, and Identity Thieves. Adam is also the host of the podcast What the Hack with Adam Levin, where they talk to fascinating people about the most terrifying things that ever happened to them in cyberspace. December 20, 2021 00:00 – Intro  Social-Engineer.com - http://www.social-engineer.com/  Managed Voice Phishing - https://www.social-engineer.com/services/vishing-service/  Managed Email Phishing - https://www.social-engineer.com/services/se-phishing-service/  Adversarial Simulations - https://www.social-engineer.com/services/social-engineering-penetration-test/  Social-Engineer channel on SLACK - https://social-engineering-hq.slack.com/ssb  CLUTCH - http://www.pro-rock.com/  innocentlivesfoundation.org - http://www.innocentlivesfoundation.org/  Human Behavior Conference – https://humanbehaviorcon.com/  03:26 - Adam Levin Intro  04:37 – How did you get started in the industry?  07:42 – What has the shift been like in the types of attacks from the 90s until now?  09:53 – How does the recent Robinhood breach tie into what we’re discussing?  12:00 – What should people be focusing on when they hear stories like this?  14:28 – Do these simplistic solutions really work?  18:45 – What type of advice would you give to companies that have public facing employees?  20:22 – You said something interesting earlier, “the company has to deal with it empathetically”.  What does that mean to you?  24:51 – Empathy, continued  30:22 – What do you see coming in the near future, what types of scams will become popular?  33:53 – What are some things people can look out for to avoid scams?  38:20 – Do you find that catastrophe and the emotional factor is used to get people to fall for scams?  41:39 – Finding Adam on the web:  www.adamlevin.com  https://adamlevin.com/what-the-hack/  42:57 – What are some action steps corporations can take to protect themselves?  45:13 – Who is your greatest mentor?  Virginia Long, director of Consumer Affairs  Ian Cohen – CEO of Lokker, a privacy company  Bill Tait – Vice Chairman at Humana  Jennifer Leuer – came from Experian  47:40 – Book Recommendations  Condor – TV Show  Spy novels (none specifically suggested) authors: Tom Clancy, Brad Thor, Vince Flynn  Yellowstone – TV Show series  FBI series and all spinoffs  49:16 – Outro  www.innocentlivesfoundation.org  www.social-engineer.com  www.pro-rock.com 

This month Chris Hadnagy is joined by our good friend, Anne-Maartje Oud. For 20 years Anne-Maartje has been a behavioral advisor, consultant, chairwoman, and keynote speaker. On top of that she is the CEO and founder of The Behavior Company based in Amsterdam where she helps customize personal development programs for companies and organizations worldwide.   Anne-Maartje is also a trainer who gives lectures and training at several universities in the Netherlands. She is also going to be a trainer at the Human Behavior Conference in March 2022.   [December 13, 2021]  00:00 – Intro  Social-Engineer.com - http://www.social-engineer.com/  Managed Voice Phishing - https://www.social-engineer.com/services/vishing-service/  Managed Email Phishing - https://www.social-engineer.com/services/se-phishing-service/  Adversarial Simulations - https://www.social-engineer.com/services/social-engineering-penetration-test/  Social-Engineer channel on SLACK - https://social-engineering-hq.slack.com/ssb  CLUTCH - http://www.pro-rock.com/  innocentlivesfoundation.org - http://www.innocentlivesfoundation.org/  Human Behavior Conference – https://humanbehaviorcon.com/  03:12 – Anne-Maartje intro  04:22 – What got you started in conflict resolution?  06:23 – Can you teach people to control behavior that’s based on emotion?  08:53 – Before words come out, what would you tell someone to do to not react and show that emotion?  12:30 – How do you start a conversation that leads to some benefit?  15:35 – What if that doesn’t work?  17:41 – How do you instruct people to remember it all?  19:51 – How important is understanding for managers and leaders?  20:52 - How would you instruct managers to go about learning this?  22:27 – Do you find that companies that have upper level management that focus on behavioral analysis have less conflict down the ladder?  27:01 – HuBe Con – what will you do there?  29:24 – Joe Navarro co session – what is that session all about?  36:51 – Finding Anne Maartje on the web:  www.twitter.com/BehaviourC  www.twitter.com/annemaartjeoud  https://www.linkedin.com/in/annemaartjeoud/  www.behaviourcompany.eu  37:39 – Book Recommendations:  Shakespeare’s Plays – favorite is Hamlet  39:24 – Who would you consider your biggest mentors?  Joe Navarro  41:09 – Outro  www.humanbehaviorcon.com  www.innocentlivesfoundation.org  www.pro-rock.com