The Social-Engineer Podcast

This is a special edition of Social-Engineer's Human Element Series Podcast. Chris Hadnagy will discuss Covid-19 testing site scams, and how you can protect yourself against them. [January 14, 2022] 00:00 – Intro social-engineer.com/ social-engineer.org/ innocentlivesfoundation.org/ 00:21 – Covid-19 Testing Site Physical Scams 05:46 – Other types of scams during Covid-19 06:44 – Outro http://www.social-engineer.com/ https://social-engineering-hq.slack.com/ssb http://www.pro-rock.com/ http://www.innocentlivesfoundation.org/

This month Chris Hadnagy is joined by the fascinating Amy Herman. Amy is a lawyer and an art historian who uses works of art to sharpen observation, analysis, and communication skills. She developed her Art of Perception seminar in 2000 and since then has worked with the New York City Police Department, the FBI, Department of Defense, Fortune 500 companies and more. She is also a TED speaker and an author of 2 books. Her latest book, "Fixed: How to Perfect the Fine Art of Problem-Solving was just released in December of 2021. She is also going to be bringing her fascinating training seminar to the Human Behavior Conference this March! [January 10, 2022] 00:00 – Intro Social-Engineer.com - http://www.social-engineer.com/ Managed Voice Phishing - https://www.social-engineer.com/services/vishing-service/ Managed Email Phishing - https://www.social-engineer.com/services/se-phishing-service/ Adversarial Simulations - https://www.social-engineer.com/services/social-engineering-penetration-test/ Social-Engineer channel on SLACK - https://social-engineering-hq.slack.com/ssb CLUTCH - http://www.pro-rock.com/ innocentlivesfoundation.org - http://www.innocentlivesfoundation.org/ Human Behavior Conference – https://humanbehaviorcon.com/ 02:39 - Amy Herman Intro 04:17 – Tell us how you got to where you are today 07:12 – How did you get to the conclusion where two different people from the same class have different needs? 10:00 – Is there an equation or secret about how an every day person can use that skill? 13:33 – Amy's new book, "Fixed" 15:00 – How did you come up with the concept of this book? 18:00 – What is the hope you want for people who read this? 19:52 – How has the past 18 months changed the concepts of visual intelligence? 25:55 – Are you going to keep virtual training? 29:50 – Being more empathetic and finding common ground 32:31 – Can you explain "pertinent negative" from your book? 35:34 – Tell the story about your book cover 40:36 – Besides yours what are some of your favorite books? (Amy's book) Fixed.: How To Perfect The Fine Art of Problem Solving (Amy's book) Visual Intelligence: Sharpen Your Perception, Change Your Life The Boys In The Boat – Nine Americans and Their Quest for the Gold - by Daniel James Brown 43:27 – Who is your greatest mentor? Angela Merkel 45:15 – Guest Wrap Up Website: www.artfulperception.com Twitter: www.twitter.com/AmyhermanAOP Instagram: @AmyHermanAOP

This month, Chris Hadnagy and Ryan MacDougall are joined by Adam Levin. Adam is a nationally recognized expert on cybersecurity, privacy, identity theft, fraud, and personal finance and has distinguished himself as a fierce consumer advocate for the past 50 years. Adam is the former Director of the New Jersey Division of Consumer Affairs, and currently is the founder of CyberScout and co-founder of Credit.com. He is also author of the critically acclaimed book Swiped: How to Protect Yourself in a World Full of Scammers, Phishers, and Identity Thieves. Adam is also the host of the podcast What the Hack with Adam Levin, where they talk to fascinating people about the most terrifying things that ever happened to them in cyberspace. December 20, 2021 00:00 – Intro Social-Engineer.com - http://www.social-engineer.com/ Managed Voice Phishing - https://www.social-engineer.com/services/vishing-service/ Managed Email Phishing - https://www.social-engineer.com/services/se-phishing-service/ Adversarial Simulations - https://www.social-engineer.com/services/social-engineering-penetration-test/ Social-Engineer channel on SLACK - https://social-engineering-hq.slack.com/ssb CLUTCH - http://www.pro-rock.com/ innocentlivesfoundation.org - http://www.innocentlivesfoundation.org/ Human Behavior Conference – https://humanbehaviorcon.com/ 03:26 - Adam Levin Intro 04:37 – How did you get started in the industry? 07:42 – What has the shift been like in the types of attacks from the 90s until now? 09:53 – How does the recent Robinhood breach tie into what we're discussing? 12:00 – What should people be focusing on when they hear stories like this? 14:28 – Do these simplistic solutions really work? 18:45 – What type of advice would you give to companies that have public facing employees? 20:22 – You said something interesting earlier, "the company has to deal with it empathetically". What does that mean to you? 24:51 – Empathy, continued 30:22 – What do you see coming in the near future, what types of scams will become popular? 33:53 – What are some things people can look out for to avoid scams? 38:20 – Do you find that catastrophe and the emotional factor is used to get people to fall for scams? 41:39 – Finding Adam on the web: www.adamlevin.com https://adamlevin.com/what-the-hack/ 42:57 – What are some action steps corporations can take to protect themselves? 45:13 – Who is your greatest mentor? Virginia Long, director of Consumer Affairs Ian Cohen – CEO of Lokker, a privacy company Bill Tait – Vice Chairman at Humana Jennifer Leuer – came from Experian 47:40 – Book Recommendations Condor – TV Show Spy novels (none specifically suggested) authors: Tom Clancy, Brad Thor, Vince Flynn Yellowstone – TV Show series FBI series and all spinoffs 49:16 – Outro www.innocentlivesfoundation.org www.social-engineer.com www.pro-rock.com

This month Chris Hadnagy is joined by our good friend, Anne-Maartje Oud. For 20 years Anne-Maartje has been a behavioral advisor, consultant, chairwoman, and keynote speaker. On top of that she is the CEO and founder of The Behavior Company based in Amsterdam where she helps customize personal development programs for companies and organizations worldwide. Anne-Maartje is also a trainer who gives lectures and training at several universities in the Netherlands. She is also going to be a trainer at the Human Behavior Conference in March 2022. [December 13, 2021] 00:00 – Intro Social-Engineer.com - http://www.social-engineer.com/ Managed Voice Phishing - https://www.social-engineer.com/services/vishing-service/ Managed Email Phishing - https://www.social-engineer.com/services/se-phishing-service/ Adversarial Simulations - https://www.social-engineer.com/services/social-engineering-penetration-test/ Social-Engineer channel on SLACK - https://social-engineering-hq.slack.com/ssb CLUTCH - http://www.pro-rock.com/ innocentlivesfoundation.org - http://www.innocentlivesfoundation.org/ Human Behavior Conference – https://humanbehaviorcon.com/ 03:12 – Anne-Maartje intro 04:22 – What got you started in conflict resolution? 06:23 – Can you teach people to control behavior that's based on emotion? 08:53 – Before words come out, what would you tell someone to do to not react and show that emotion? 12:30 – How do you start a conversation that leads to some benefit? 15:35 – What if that doesn't work? 17:41 – How do you instruct people to remember it all? 19:51 – How important is understanding for managers and leaders? 20:52 - How would you instruct managers to go about learning this? 22:27 – Do you find that companies that have upper level management that focus on behavioral analysis have less conflict down the ladder? 27:01 – HuBe Con – what will you do there? 29:24 – Joe Navarro co session – what is that session all about? 36:51 – Finding Anne Maartje on the web: www.twitter.com/BehaviourC www.twitter.com/annemaartjeoud https://www.linkedin.com/in/annemaartjeoud/ www.behaviourcompany.eu 37:39 – Book Recommendations: Shakespeare's Plays – favorite is Hamlet 39:24 – Who would you consider your biggest mentors? Joe Navarro 41:09 – Outro www.humanbehaviorcon.com www.innocentlivesfoundation.org www.pro-rock.com

This month, Chris Hadnagy and Ryan MacDougall are joined by Paul Asadoorian. Paul is the founder of Security Weekly, a security podcast network. Paul spends time "in the trenches" coding in Python, testing security products and evaluating and implementing open-source software. Paul's career began by implementing security programs for a lottery company and then a large university. As Product Evangelist for Tenable Network Security, Paul also built a library of materials on the topic of vulnerability management. When not hacking IoT devices, web applications or Linux, Paul can be found researching his next set of headphones, devices for smoking meat, and e-bikes. November 15, 2021. 00:00 – Intro Social-Engineer.com Managed Voice Phishing Managed Email Phishing Adversarial Simulations Social-Engineer channel on SLACK CLUTCH innocentlivesfoundation.org Human Behavior Conference 03:34 – Paul Asadoorian Intro 05:08 – How did you get started in infosec? 13:19 – When did you decide you were going to start a podcast? 24:26 – What have you learned from the guests you've had on your podcasts over all of these years? 27:00 – What is your perspective on the shifting of hacking culture in the community? 34:53 – What are the best qualities someone could have to be attractive to a potential employer in this industry? 37:14 – How do we get the younger generation to have the qualities we are not seeing? 41:38 – Who is your greatest mentor? Laurie Baker Stephen Northcutt @ SANS Ed Skoudis @ SANS 46:00 – Book Recommendations Code Girls The Phoenix Project The Unicorn Project Countdown to Zero Day The Cuckoo's Egg Cyberpunk 51:00 – Guest Wrap Up https://securityweekly.com www.twitter.com/securityweekly 53:31 – Outro innocentlivesfoundation.org

This month, Chris Hadnagy is joined by Marilise de Villiers. Marilise is a mindset and performance coach, a TEDX speaker, and a cybersecurity awareness, culture, and talent expert. While at one time she was a female executive in a Big Four consulting firm she is now the founder and CEO of her own company, ROAR! Coaching and Consulting, which helps people find their purpose, their power, and gives people the courage to speak their truth. November 8, 2021 00:00 – Intro Social-Engineer.com Managed Voice Phishing Managed Email Phishing Adversarial Simulations Social-Engineer channel on SLACK CLUTCH innocentlivesfoundation.org Human Behavior Conference 04:35 – What made you leave an amazing corporate company and forge a path for yourself? 08:09 – How did you escape the bad things in your life and turn into a person who helps other people find their strength? 10:47 – How did you get out of the cycle of abuse? 14:42 – Figuring out the role you play and taking back the power 17:06 – Finding a hobby 21:00 – How did you come upon this trifecta of things to better yourself? 25:10 –What have you found is the overwhelmingly common problem that people have when you first start working with them on bettering themselves? 27:56 – Changing your "self" view 30:32 – What would be a suggestion to give someone to "start today"? 34:35 – How do you suggest people find balance when most of us have spent most of our lives being imbalanced? 37:20 – How has this life change for you affected your kids? 38:55 – Who do you consider your greatest mentors? Family: Mom, dad, grandmother, grandfather Brendon Burchard Tony Robbins Dean Graziosi Maya Camerota 41:05 – What books would you recommend to our listeners? Marilise's Book – Roar!: How To Tame The Bully Inside and Out Radical Compassion – Tara Brach Think And Grow Rich – Napoleon Hill How To Break The Habit Of Being Yourself – Joe Dispenza Unbound – Kasia Urbaniak -- 43:15 – How to find Marilise https://www.marilise-de-villiers.com https://www.linkedin.com/in/marilise-de-villiers-9184521a https://www.marilise-de-villiers.com/podcasts/roar-marilise-de-villiers 44:40 – Outro Social-Engineer.org Social-Engineer.com The Innocent Lives Foundation

This month Chris Hadnagy and Ryan MacDougall are joined by Les Correia, who leads the evangelization of Estee Lauders Application Security. In his position Les wears many hats, but they are all worn with the mission of protecting Estee Lauders critical assets from the risk of a security breach. Prior to this, Les held Senior and Advisory roles providing thought leadership at companies such as AT&T and Lucent. Les also holds an MSc in Cyber Security as well as an exhaustive list of certifications. In his free time, Les pilots small aircraft and drives racecars. October 18, 2021 00:00 – Intro www.social-engineer.com Managed Voice Phishing Managed Email Phishing Adversarial Simulations Social-Engineer channel on SLACK CLUTCH www.innocentlivesfoundation.org Human Behavior Conference – website coming soon 05:10 – Les Correia Intro 09:15 – How did you get into this industry? 12:05 – How are you trying to be proactive in stopping breaches? 14:00 – How important has top level support been? 15:03 – How do you get other business units to give you time for what you're doing? 16:30 – Understanding the business like a business consultant helps them know you care about that business unit 20:19 Whisky 24:08 – What kind of attacks have you seen in the wild that people need to be aware of? 26:10 – How do we get people that may not think they can be a victim to understand these threats can still be against them? 27:55 – Being a worldwide company, how do you translate your security processes through all those different cultures? 32:01 – How important is it to have hobbies outside of your work? 34:41 – How do you help your team deal with burnout when you have so much work on your plate? 37:56 – Has there anyone you could consider your greatest mentor? Dr. Tafar INS (International Network Services) Dr. Patarsh Dr. Menamen – NYU 39:32 – Book Recommendations Thinking Fast and Slow Seven Habits of Highly Effective People Good To Great Chris' Books 41:57 – Guest Wrap Up 42:20 – Reaching Les on social media: QvittlbBgZseL100xP0S linkedin.com/in/les-correia 43:12 – Outro www.social-engineer.org www.social-engineer.com www.innocentlivesfoundation.org QvittlbBgZseL100xP0S QvittlbBgZseL100xP0S QvittlbBgZseL100xP0S

This month Chris Hadnagy is joined by Dr. Jessica Barker. Jessica is an award-winning global leader in the human side of cyber security. She is Co-Founder and co-CEO of Cygenta, where she follows her passion of positively influencing cyber security awareness, behaviour and culture in organisations around the world. Jessica was also named one of the top 20 most influential women in cyber security in the UK and is the former Chair of ClubCISO. She is the author of the best-selling book Confident Cyber Security: how to get started in cyber security and futureproof your career AND co-author of Cybersecurity ABCs: delivering awareness, behaviours and culture change. October 11, 2021. 00:00 – Intro www.social-engineer.com Managed Voice Phishing Managed Email Phishing Adversarial Simulations Social-Engineer channel on SLACK CLUTCH www.innocentlivesfoundation.org 04:21 - How did you get into cyber security? 06:48 – What were you researching before all that? 08:30 – How does human behavior influence technology? 10:00 – How has Covid-19 and the world scene impacted us when it comes to security? 14:26 – When we look on the internet at how aggressive people have gotten, and the anonymity has enabled people to be more terrible to each other, have you seen this aggression over the last 18 months affect security? 17:20 - Bullying 22:05 – Why is it looked at as "bad" to use bonuses when training people? 28:00 – What are the most positive ways to do it right? 32:37 – How would you suggest a company chooses the right "champion"? 36:26 – Finding Jessica on the web: Twitter: @drjessicabarker LinkedIn: https://www.linkedin.com/in/jessica-barker/ Instagram: @drjessicabarker www.cygenta.co.uk 37:20 – Who is your greatest mentor? Jane Frankland – business leader in cyber security https://jane-frankland.com/in-security/ 39:37 - Favorite Books Confident Cyber Security: How to Get Started in Cyber Security and Futureproof Your Career Cybersecurity ABCs: Delivering awareness, behaviours and culture change Human Hacking – Chris Hadnagy Crime Dot Com – Geoff White The Optimism Bias – Tali Sharot Black Box Thinking – Matthew Syed 43:26 – Outro

In this episode, Chris Hadnagy and Ryan MacDougall are joined by Ed Skoudis. Ed is a SANS Institute Fellow, Instructor, and Director of Cyber Ranges. He is the founder of Counter Hack, an innovative cyber security company that works as trusted information security advisors to government, military, and commercial enterprises by providing in-depth security architecture, penetration testing, red teaming, incident response, and digital forensics expertise. Ed frequently presents industry keynotes based on the latest attack vectors he identifies during his team's penetration testing projects, expert witness work on large-scale breaches, security research into late-breaking malware and exploits, and incident response engagements. Over his career, Ed has taught over 20,000 students in computer incident response and penetration testing. Ed and his team are also the creators of the SANS Holiday Hack Challenge, a free gift to the community every December challenging tens of thousands of people to build their cyber security skills in a fun, quirky adventure to save the holiday season. September 20, 2021 00:00 – Intro www.social-engineer.com Managed Voice Phishing Managed Email Phishing Adversarial Simulations Social-Engineer channel on SLACK CLUTCH www.innocentlivesfoundation.org 03:26 – Ed Skoudis Intro 05:26 – How did you get started, how did you get into this field? 09:18 – What do you looking for when building your team? 10:47 – How long will you observe a person to determine if they have the integrity or skill that you want? 12:44 – What advice would you give for companies to find people with the skill and integrity they need more quickly than observing them for 2-4 years? 22:00 – "Nothing new" in social engineering vs infosec, which is constantly changing 23:45 – Why do you feel experience like participating in CTF's are so valuable for people in this community? 28:57 – What is your advice for people on how to find quality CTF's? www.holidayhackchallenge.com www.ctftime.org www.wechall.net https://opentoallctf.github.io/ 32:04 – How long does it take your team to construct these challenges? 35:54 – If someone wants to sponsor this event, where can they go? www.holidayhackchallenge.com 36:42 – Who are the colleagues or mentors that have been most influential to you, people you wouldn't be where you are today if not for them? Ed's Nana – Evelyn Hiddings Manager at Bellcore - Miriam Hernandez Cagle SANS instructor, founder of In Guardians - Mike Poor Security Expert - Johnny Long SANS founder – Alan Paller 40:30 – What are some action steps corporations should start doing right now based on the advice you gave today to build a great team? Have a good corporate culture and leadership Be thoughtful and meaningful, make it fun, and challenge them Take input from your team and empower them 43:09 – Do you have any advice for employees dealing with burnout, how to practice self-care, or other coping mechanisms? Monthly meeting with state of the business, business reflections Rituals – Get a bagel and call mom on Saturdays, morning walk, calling friends out of the blue Gratefulness – when stressed, pause and think about what you're grateful for Get off social media for a few days 50:27 – Book Recommendation The Code Book by Simon Singh 51:53 – Outro www.innocentlivesfoundation.org www.social-engineer.com

In this episode, Chris Hadnagy is joined by Dr. Cortney Warren. Dr. Warren is a Board-Certified Clinical Psychologist and former tenured Associate Professor of Psychology at the University of Nevada, Las Vegas (UNLV). She is an expert on addictions, self-deception, eating pathology, and the practice of psychotherapy from a cross-cultural perspective. In addition to publishing in some of the field's top scientific, peer-reviewed journals, Dr. Warren is passionate about bringing theoretically grounded, empirically-supported psychological research to the general public. So, in addition to her academic work, Dr. Warren is a research consultant, keynote speaker, and writes a blog for Psychology Today. September 13, 2021 00:00 – Intro www.social-engineer.com Managed Voice Phishing Managed Email Phishing Adversarial Simulations Social-Engineer channel on SLACK CLUTCH www.innocentlivesfoundation.org 02:10 – Cortney Warren Intro 03:35 – How did you get started? 07:28 – Why is it so hard to be honest with ourselves? 10:01 – What gets the person from "it's easy to lie to myself" to "I'm readily open to admit this" 13:25 – Admitting the truth is just the first step 13:20 – There are certain ways humans lie to themselves. One of them is "The Specialness Fallacy" 17:43 – How do people make the change in someone who doesn't want to make the change, they're not at that point yet? 21:45 – Is self-deception the same in every culture? 25:47 – Is there a particular culture that is more honest with themselves than others? 28:12 – Why is bringing research to the public such a mission for you? 31:41 – How do we make the change out of self-deception? 41:30 – Have you helped people in abusive relationships with your methods? 44:31 – When does your book come out? 44:47 – How to reach Cortney: www.choosehonesty.com Email: cortneywarren@choosehonesty.com Facebook: https://www.facebook.com/CortneySWarren Twitter: https://twitter.com/DrCortneyWarren LinkedIn: https://www.linkedin.com/in/dr-cortney-s-warren-phd-abpp-a4188772/ YouTube: https://www.youtube.com/playlist?list=PLQGXD7Ms5oR3GzsPZl3Tjl_9qj71MezHj Instagram: https://www.instagram.com/cortneywarren/ 45:37 – Who is your greatest mentor? My mother, Karen J Warren 48:25 – Favorite Books: Victor Frankl –Man's Search for Meaning 50:16 – Outro www.innocentlivesfoundation.org www.social-engineer.com