Rachel Tobac is a social engineer. In this episode we hear how she got started doing this and a few stories of how she hacked people and places using her voice and charm. Learn more about Rachel by following her on Twitter https://twitter.com/RachelTobac or by visiting https://www.socialproofsecurity.com/ Daniel Miessler also chimes in to talk about AI. Find out more about him at https://danielmiessler.com/. Sponsors Support for this show comes from Varonis. Do you wonder what your company’s ransomware blast radius is? Varonis does a free cyber resilience assessment that tells you how many important files a compromised user could steal, whether anything would beep if they did, and a whole lot more. They actually do all the work – show you where your data is too open, if anyone is using it, and what you can lock down before attackers get inside. They also can detect behavior that looks like ransomware and stop it automatically. To learn more visit www.varonis.com/darknet. Support for this show comes from Axonius. The Axonius solution correlates asset data from your existing IT and security solutions to provide an always up-to-date inventory of all devices, users, cloud instances, and SaaS apps, so you can easily identify coverage gaps and automate response actions. Axonius gives IT and security teams the confidence to control complexity by mitigating threats, navigating risk, decreasing incidents, and informing business-level strategy — all while eliminating manual, repetitive tasks. Visit axonius.com/darknet to learn more and try it free. Support for this show comes from ThreatLocker®. ThreatLocker® is a Zero Trust Endpoint Protection Platform that strengthens your infrastructure from the ground up. With ThreatLocker® Allowlisting and Ringfencing™, you gain a more secure approach to blocking exploits of known and unknown vulnerabilities. ThreatLocker® provides Zero Trust control at the kernel level that enables you to allow everything you need and block everything else, including ransomware! Learn more at www.threatlocker.com.
When I was in college, a scammer called me up.
He's like, look, I'm not selling you anything or even telling you what to do.
I just have information about a stock and I wanted to share it with someone.
And you were just like the lucky guy I found in the phone book.
Listen, stock Z is gonna go up next week.
That's all.
I'll call you back next week to prove it.
I was like, alright, that was a strange call, whatever.
And yeah, he calls me back in a week and sure enough, the stock he told me about went way up.
He was spot on, he was all excited about how much money he made.
But I told him he just got lucky and he should cash out and take a trip somewhere.
He's like, no, no, no, it's not luck.
There's an algorithm that can accurately predict this.
And he said he knew which stock was gonna go up next.
I was like all right, so which one's gonna go up next?
And he tells me and says to keep an eye on it and he's gonna call me back next week to prove he was right.
So yeah, another week goes by and the same guy calls me back and he's like, boom, you see what I mean?
And he was all excited again and I was like, I don't see what you mean, but let me check the price.
And I checked the price and again he was right.
And I was like, dang, good job, but I think you got lucky again.