Security Boulevard

JUNE 17, 2021

Ira Winkler, CISO at Skyline Technology Solutions, recounts his amazing journey from wannabe astronaut to NSA intelligence analyst, social engineer, systems hacker and author, and some of the crazy things that happened along the way - check it out. The post CISO Stories Podcast: So You Want to be a Cyber Spy?

CISO 94

CISO Social Engineering Engineering Technology 94

Security Boulevard

JUNE 5, 2022

The post DuckDuckGo Browser Allows Microsoft Trackers, Stolen Verizon Employee Database, Attacking Powered Off iPhones appeared first on The Shared Security Show.

Social Engineering 115

Social Engineering Mobile Engineering Data breaches 115

Security Through Education

JANUARY 18, 2023

The truth is technology has grown at an exponential rate and so has cybercrime. Most if not, all social engineering attacks will attempt to trigger some emotion such as urgency, fear, greed, or curiosity. At Social-Engineer LLC, our purpose is to bring education and awareness to all users of technology.

Cybersecurity 98

Cybersecurity Social Engineering Scams IoT 98

Security Through Education

FEBRUARY 3, 2021

I am currently a full-time social engineering pentesting professional with Social-Engineer, LLC (SECOM). The Social Engineering Framework defines vishing as the “practice of eliciting information or attempting to influence action over the telephone.” I’m not originally from the InfoSec world.

Social Engineering 98

Social Engineering Engineering InfoSec Education 98

Security Boulevard

MAY 19, 2024

In episode 330 Tom, Scott, and Kevin discuss the new features for iPhones and Android phones designed to warn users about secret trackers, possibly aiding in identifying stalkers.

Data breaches 64

Data breaches Technology Social Engineering Data privacy 64

Security Through Education

DECEMBER 7, 2022

Many people assume that as professional social engineers (SE) we use EVERY method possible to achieve our objective. Are ethics and social engineering compatible? The Social Engineering Code of Ethics Accomplishes Important Goals. Provides guidance on how to conduct a social engineering business.

Social Engineering 64

Social Engineering Engineering Education Phishing 64

Herjavec Group

MAY 19, 2022

Conduct regular social engineering tests on your employees to actively demonstrate where improvements need to be made. Implement the right tools, processes, and technology – based on the needs of your organization. Segment your internal corporate networks to isolate any malware infections that may arise.

Penetration Testing 98

Penetration Testing Social Engineering Cybercrime InfoSec 98

eSecurity Planet

APRIL 23, 2021

It requires some baseline industry knowledge, but it’s a great way to stay on top of InfoSec current events. Since 2007 (before podcasting in general had really taken off), Patrick Gray and his co-host Adam Boileau have covered a wide range of InfoSec topics with insight from fellow industry leaders. Malicious Life.

Cybersecurity 144

Cybersecurity InfoSec Cybercrime Hacking 144

CyberSecurity Insiders

DECEMBER 4, 2021

Of the 13 engineers who commented for this publication, none felt that the marketing associated with the products they were working on was completely accurate with respect to advertised capabilities. The paper explores those areas as well as malicious uses of ML and DL, specifically in social engineering and phishing.

Cybersecurity 52

Cybersecurity Artificial Intelligence Education Engineering 52

SC Magazine

JUNE 16, 2021

While being “classic” and “timeless” might work in other industries, information security (Infosec) must constantly guard against resting on laurels when it comes to strategies and solutions. The question is whether the concept is still relevant, or if a new one is needed that better matches today’s technological capabilities.

Artificial Intelligence 53

Artificial Intelligence Technology Social Engineering Cybercrime 53

SC Magazine

MAY 17, 2021

5G is among the technologies that researchers predict will have a big impact on the security landscape in the next decade. The Project assumes that consumers will access information with technologies designed for more and more immediacy, and less and less effort. AI could impact more than just social engineering.

Manufacturing 95

Manufacturing IoT Artificial Intelligence Technology 95

Security Boulevard

NOVEMBER 14, 2021

Details on the Robinhood data breach (apparently caused by a social engineering attack) affecting approximately 7 million customers, and a discussion about surveillance and privacy concerns from a 600-hour leak of Dallas Police Department helicopter footage. ** Links mentioned on the show ** Robinhood Trading App Suffers Data Breach Exposing 7 Million (..)

Data breaches 59

Data breaches Social Engineering Surveillance Engineering 59

SC Magazine

MAY 1, 2021

Brian Levine is senior director of product security at Axway, a global security engineering organization delivering training, tools, processes and DevSecOps practices for secure applications and cloud services to the enterprise market. John Bruggeman is chief technology officer at Hebrew Union College – Jewish Institute of Religion.

Computers and Electronics 126

Computers and Electronics Technology Education Information Security 126

SC Magazine

MAY 20, 2021

Social engineering, phishing scams, ransomware, DDoS attacks , and software vulnerabilities are just some of the threats facing overloaded security professionals with limited budgets. Bear in mind that SOAR requires a mix of technologies and tools that deliver the capabilities the infosec team requires.

Social Engineering 73

Social Engineering Internet Internet InfoSec 73

SecureWorld News

OCTOBER 19, 2023

Too many folks focus on the technology as opposed to the people or process. Economic effects, including inflationary pressures, have had a broad impact across the InfoSec landscape," Smeaton said. Reanna Schultz is a cybersecurity professional and frequent SecureWorld speaker whose day job is as Team Leader of InfoSec at Garmin.

Cybersecurity 81

Cybersecurity CISO Education Phishing 81

Javvad Malik

NOVEMBER 12, 2021

We only had Infosec Europe and the most we got out of there was some free USB sticks… If we were lucky they would be 500 megs. It’s so easy to manipulate anyone that works in infosec. Forget complex social engineering techniques – just go up to a guy, and ask him if he’s been working out?

Passwords 113

Passwords InfoSec Encryption Accountability 113

Security Boulevard

APRIL 7, 2024

Episode 324 features discussions on a significant AT&T data breach affecting 73 million customers and a sophisticated thread jacking attack targeting a journalist.

Data breaches 69

Data breaches Accountability Social Engineering Data privacy 69

Herjavec Group

DECEMBER 15, 2021

Threat actors have developed social engineering approaches that leverage the uncertainty and chaos of the pandemic in order to deliver their malicious software. When it comes to cyber risks, the most up-to-date cybersecurity technology or regimented program doesn’t make an organization immune to an attack.

Cybersecurity 52

Cybersecurity Digital transformation Ransomware Cyber Risk 52

Security Boulevard

JANUARY 21, 2024

Then they switch to the best practices to prevent social media account takeovers, highlighting […] The post The World of Scambaiting, Preventing Social Media Account Takeovers, Network Wrenches Hacked appeared first on Shared Security Podcast.

Media 78

Media Accountability Hacking Scams 78

ForAllSecure

APRIL 7, 2021

You’d think that having an amazing resume, a couple of bug bounties, or a CTF win would land you that dream infosec job. There's a serious shortage of InfoSec professionals. I've mentioned before but InfoSec Twitter is a valuable resource. For many, though, that isn’t true.

Hacking 40

Hacking InfoSec Cybersecurity Engineering 40

ForAllSecure

APRIL 7, 2021

You’d think that having an amazing resume, a couple of bug bounties, or a CTF win would land you that dream infosec job. There's a serious shortage of InfoSec professionals. I've mentioned before but InfoSec Twitter is a valuable resource. For many, though, that isn’t true.

Hacking 40

Hacking InfoSec Cybersecurity Engineering 40

eSecurity Planet

DECEMBER 3, 2021

Brian Krebs is an independent investigative reporter known for his coverage of technology, malware , data breaches , and cybercrime developments. Longtime network and system administrator Jack Daniel is a technology community activist, mentor, and storyteller. Markstedter actively contributes to filling the infosec education gap.

Accountability 139

Accountability Cybersecurity Penetration Testing InfoSec 139

Security Boulevard

SEPTEMBER 10, 2023

In this episode we discuss the FBI’s remarkable takedown of the Qakbot botnet, a saga involving ransomware, cryptocurrency, and the FBI pushing an uninstaller to thousands of victim PCs. Next, we explore how a major U.S. energy organization fell victim to a QR code phishing attack, highlighting the ever-evolving tactics used by attackers.

Phishing 75

Phishing Cryptocurrency Ransomware Social Engineering 75

Security Boulevard

NOVEMBER 26, 2023

In this episode, Tom shows off AI generated images of a “Lonely and Sad Security Awareness Manager in a Dog Pound” and the humorous outcomes. The conversation shifts to Apple’s upcoming support for Rich Communication Services (RCS) and the potential security implications.

Scams 59

Scams Security Awareness Social Engineering Data privacy 59

Security Boulevard

JANUARY 10, 2022

A phone scam targeting psychologists reveals that even professionals can become victims, stolen multi-million-dollar NFT’s results in a “all my apes gone” plea for help, and details on a skimmer supply chain attack on more than 100 real estate websites. ** Links mentioned on the show ** The Phone Scam That Targets Psychologists [link] Thieves […].

Scams 104

Scams Social Engineering Engineering Technology 104

Security Boulevard

APRIL 10, 2022

Scott and Tom explain why privacy isn’t dead, why should everyone should care about their privacy, and how you should respond to someone that says “I don’t care about privacy, I have nothing to hide!”. Plus, details on a new attack using fake shopping apps and how a new malware toolkit called “Borat RAT” is […].

Malware 98

Malware Social Engineering Scams Engineering 98

Security Boulevard

MARCH 27, 2022

The LAPSUS$ hacking group has claimed to have hacked both Microsoft and Okta, details about a novel phishing technique called a browser-in-the-browser (BitB) attack, and how a popular software package that has 1.1

Phishing 98

Phishing Software Hacking Social Engineering 98

Security Boulevard

JULY 25, 2022

In this episode learn all about the world of corporate spying from someone who was a corporate spy and actually wrote a book on it! Robert Kerbeck author of “RUSE: Lying the American Dream from Hollywood to Wall Street” joins us to discuss his fascinating career as a corporate spy, life as a struggling actor, […].

Social Engineering 80

Social Engineering Data privacy Engineering Technology 80

eSecurity Planet

DECEMBER 19, 2023

AI Use Danger As with any emerging technology, many organizations should expect errors and growing pains as teams learn the nuances of applying the technology. Some attacks will be aided by technology, while others will be more strategic in nature as companies strengthen cyberdefense against older attacks.

Cybersecurity 140

Cybersecurity CISO Government Technology 140

Security Boulevard

AUGUST 28, 2022

Janet Jackson’s “Rhythm Nation” has been recognized as an exploit for a vulnerability after Microsoft reported it can crash the hard drives of certain old laptop computers, phishing attacks that compromise credentials using brand impersonation are on the rise, and details about a new privacy focused phone carrier that doesn’t track your location or (..)

Phishing 52

Phishing Social Engineering Surveillance Data privacy 52

Duo's Security Blog

OCTOBER 6, 2023

Threat actors have dramatically escalated their attacks – targeting security controls like multi-factor authentication (MFA), conducting wily social engineering attacks and extorting businesses large and small with ransomware. Since then, teams have had years to adjust to this new reality, yet the attackers have as well.

Authentication 123

Authentication Risk Social Engineering InfoSec 123

Security Boulevard

MARCH 20, 2022

This week we discuss the top 3 location tracking apps in the Apple App Store and Google Play and which ones sell your data. Plus, details about recent fake Chick-fil-A and Olive Garden vouchers on Facebook. ** Links mentioned on the show ** #1 Phone Tracker by Number [link] [link] – Android [link] – iOS […].

Social Engineering 52

Social Engineering Engineering Scams Technology 52

Security Boulevard

AUGUST 1, 2021

Why rebooting your smartphone is good security hygiene, the FBI reveals top targeted vulnerabilities in the last two years, and details on how a nation state used a “flirty” aerobics instructor to steal data from defense contractors. ** Links mentioned on the show ** Turn off, turn on: Simple step can thwart top phone hackers […].

Accountability 52

Accountability Social Engineering Engineering Technology 52

Krebs on Security

DECEMBER 29, 2022

I seem to be doing most of that activity now on Mastodon , which appears to have absorbed most of the infosec refugees from Twitter, and in any case is proving to be a far more useful, civil and constructive place to post such things. For a variety of reasons, I will no longer be sharing these updates on Twitter.

Cryptocurrency 238

Cryptocurrency Cybercrime Computers and Electronics Scams 238

The Falcon's View

AUGUST 29, 2017

For those unfamiliar with Fogg's work, he started out doing research on Persuasive Technology back in the 90s, which has become the basis for most modern uses of technology to influence people (for example, use of Facebook user data to influence the 2016 US Presidential Election). Well, low-and-behold, it already exists!

Information Security 45

Information Security InfoSec Social Engineering Security Awareness 45

Malwarebytes

DECEMBER 11, 2022

Whether those compromises specifically were via some additional form of social engineering, we’ll likely never know. Amazon decided to trial ad technology which displays ads in Twitch streams, but the ads are only visible to certain people. Invisible ads for thee but not for me.

Scams 83

Scams Social Engineering Engineering Accountability 83

ForAllSecure

NOVEMBER 13, 2020

Fortunately I was covering security for ZDNet from day one, and eventually got pretty good at explaining infosec to others. No infosec Twitter or Discord. See other zero-days Mayhem, a ForAllSecure fuzz testing technology, has found. Vamosi: Like a lot of us, information security wasn’t necessarily our first line of work.

Hacking 40

Hacking InfoSec Internet Internet 40