Ep. 164 - Security Awareness Series - Metrics and Empathy the Answer To Cyber Breaches with Kate Mullin

Welcome to the Social-Engineer Podcast: The Doctor Is In Series – where we will discuss understandings and developments in the field of psychology. In today's episode, Chris and Abbie are discussing the psychology of Learned Helplessness. What it is, who's most at risk, and ways to cope with it. [Aug 7, 2023] 00:00 - Intro 00:20 - Dr. Abbie Maroño Intro 01:02 - Intro Links - Social-Engineer.com - http://www.social-engineer.com/ - Managed Voice Phishing - https://www.social-engineer.com/services/vishing-service/ - Managed Email Phishing - https://www.social-engineer.com/services/se-phishing-service/ - Adversarial Simulations - https://www.social-engineer.com/services/social-engineering-penetration-test/ - Social-Engineer channel on SLACK - https://social-engineering-hq.slack.com/ssb - CLUTCH - http://www.pro-rock.com/ - innocentlivesfoundation.org - http://www.innocentlivesfoundation.org/ 05:45 - The Topic of the Day: Learned Helplessness 06:40 - Negative Conditioning 11:12 - The Most Vulnerable 13:59 - Starting the Cycle 15:17 - Function of Survival 17:56 - Some, Not All 19:48 - Locus of Control 22:23 - False Sense of Control 25:27 - Effects on the Brain 28:31 - How to Heal 34:14 - Open Dialogues 35:58 - Wrap Up 36:15 - Next Month: Con Artists 36:41 - Outro - www.social-engineer.com - www.innocentlivesfoundation.org Find us online: - Twitter: https://twitter.com/abbiejmarono - LinkedIn: linkedin.com/in/dr-abbie-maroño-phd-35ab2611a - Twitter: https://twitter.com/humanhacker - LinkedIn: linkedin.com/in/christopherhadnagy References: Greenwood, B. N., & Fleshner, M. (2008). Exercise, learned helplessness, and the stress-resistant brain. Neuromolecular medicine, 10, 81-98. Overmier, J. B. (2002). On learned helplessness. Integrative Physiological & Behavioral Science, 37, 4-8. Seligman, M. E. (1972). Learned helplessness. Annual review of medicine, 23(1), 407-412. Maier, S. F., & Seligman, M. E. (1976). Learned helplessness: theory and evidence. Journal of experimental psychology: general, 105(1), 3. Peterson, C., Maier, S. F., & Seligman, M. E. (1993). Learned helplessness: A theory for the age of personal control. Oxford University Press, USA. Miller, W. R., & Seligman, M. E. (1975). Depression and learned helplessness in man. Journal of abnormal psychology, 84(3), 228. Hiroto, D. S. (1974). Locus of control and learned helplessness. Journal of experimental psychology, 102(2), 187. Trindade, I. A., Mendes, A. L., & Ferreira, N. B. (2020). The moderating effect of psychological flexibility on the link between learned helplessness and depression symptomatology: A preliminary study. Journal of Contextual Behavioral Science, 15, 68-72. Filippello, P., Buzzai, C., Costa, S., Orecchio, S., & Sorrenti, L. (2020). Teaching style and academic achievement: The mediating role of learned helplessness and mastery orientation. Psychology in the Schools, 57(1), 5-16. Bargai, N., Ben-Shakhar, G., & Shalev, A. Y. (2007). Posttraumatic stress disorder and depression in battered women: The mediating role of learned helplessness. Journal of Family Violence, 22, 267-275. Xie, C., Li, L., & Li, Y. (2022). Learned helplessness in renal dialysis patients: concept analysis with an evolutionary approach. Patient preference and adherence, 2301-2312. Burland, J. P., Lepley, A. S., Cormier, M., DiStefano, L. J., Arciero, R., & Lepley, L. K. (2019). Learned helplessness after anterior cruciate ligament reconstruction: an altered neurocognitive state?. Sports Medicine, 49, 647-657. Brewin, C. R., & Furnham, A. (1986). Attributional versus preattributional variables in self-esteem and depression: A comparison and test of learned helplessness theory. Journal of personality and social psychology, 50(5), 1013.

7 Aug 202337min

(Original Air Date: July 11, 2022) Today Chris is talking with Laurie Segall. Laurie is the founder of Dot Dot Dot, a media company focused on onboarding the mainstream into a new era of the internet, Web3. Laurie is an award-winning journalist who has interviewed the world's most influential tech leaders including Mark Zuckerberg and Tim Cook. Prior, she was CNN's senior tech correspondent, covering technology and culture for a decade and a former reporter for 60 Minutes. 00:00 - Intro - Social-Engineer.com - http://www.social-engineer.com/ - Managed Voice Phishing - https://www.social-engineer.com/services/vishing-service/ - Managed Email Phishing - https://www.social-engineer.com/services/se-phishing-service/ - Adversarial Simulations - https://www.social-engineer.com/services/social-engineering-penetration-test/ - Social-Engineer channel on SLACK - https://social-engineering-hq.slack.com/ssb - CLUTCH - http://www.pro-rock.com/ - innocentlivesfoundation.org - http://www.innocentlivesfoundation.org/ 03:23 - Laurie Segall intro 04:20 - Starting your career in the "wee hours" 07:54 - Was journalism always the goal? 12:31 - Navigating chaos 15:57 - Taking on Revenge Porn 21:20 - What motivated you to write about your life so early? 24:46 – Writing during the pandemic 29:50 - How lobsters grow 35:44 - Building a company 38:40 - Wearing 2 hats 40:54 - Who would you consider your biggest mentors? - CNN Digital – Susan Grant 43:38 - Book Recommendations: - Slouching Towards Bethlehem - Joan Didion - (Laurie's book) Special Characters - Laurie Segall 45:56 - Find Laurie Segall online - Website link: https://www.d3network.io/ - Instagram: @LaurieSegall & @d3_network - Twitter: @LaurieSegall & @d3_network 48:32 - Guest Wrap Up & Outro - www.social-engineer.com - www.innocentlivesfoundation.org

31 Juli 202349min

Welcome to the Social-Engineer Podcast: The SE Etc. Series. This series will be hosted by Chris Hadnagy, CEO of Social-Engineer LLC, and The Innocent Lives Foundation, as well as Social-Engineer.Org and The Institute for Social Engineering. Chris will be joined by his co-host Patrick Laverty as they discuss topics pertaining to the world of Social Engineering. [July 24, 2023] 00:00 - Intro 00:18 - Patrick Laverty Intro 00:53 - Intro Links - Social-Engineer.com - http://www.social-engineer.com/ - Managed Voice Phishing - https://www.social-engineer.com/services/vishing-service/ - Managed Email Phishing - https://www.social-engineer.com/services/se-phishing-service/ - Adversarial Simulations - https://www.social-engineer.com/services/social-engineering-penetration-test/ - Social-Engineer channel on SLACK - https://social-engineering-hq.slack.com/ssb - CLUTCH - http://www.pro-rock.com/ - innocentlivesfoundation.org - http://www.innocentlivesfoundation.org/ 12:40 - Todays Topic: Social Engineering in Everyday Life 14:09 - A Controversial Definition 18:30 - Purpose in Practice 24:24 - Time for Tea 28:16 – Dealers & Servers 35:00 - The Power of Cookies 36:49 - The Power of Trust 38:21 - Another Principle of Influence 39:03 - The Parent Trap 40:00 - Next Month: ??? 40:17 - Wrap Up & Outro - www.social-engineer.com - www.innocentlivesfoundation.org Find us online - Chris Hadnagy - Twitter: @humanhacker - LinkedIn: linkedin.com/in/christopherhadnagy - Patrick Laverty - Twitter: @plaverty9 - LinkedIn: linkedin.com/in/plaverty9

24 Juli 202340min

Today on the Social-Engineer Podcast: The Security Awareness Series, Ryan and Chris are joined by Ganesh Krishnan, a cybersecurity superhero with over 25 years of experience protecting the digital world from cyber threats. As a two-time founder with a track record of success at some of the world's top tech companies, he's earned a reputation as a thought leader at the forefront of cybersecurity. Now at the helm of Anzenna, his latest security startup, he's out to revolutionize the industry by making cybersecurity accessible to every employee, not just the security team. [July 17, 2023] 00:00 - Intro 01:01 - Intro Links: - Social-Engineer.com - http://www.social-engineer.com/ - Managed Voice Phishing - https://www.social-engineer.com/services/vishing-service/ - Managed Email Phishing - https://www.social-engineer.com/services/se-phishing-service/ - Adversarial Simulations - https://www.social-engineer.com/services/social-engineering-penetration-test/ - Social-Engineer channel on SLACK - https://social-engineering-hq.slack.com/ssb - CLUTCH - http://www.pro-rock.com/ - innocentlivesfoundation.org - http://www.innocentlivesfoundation.org/ 04:13 - Ganesh Krishnan Intro 05:34 - Starting on the Path Towards History 10:57 - The Importance of Trust 14:17 - Breaking into an Establishment 17:37 - Make It Personal 18:58 - Changing Minds 22:05 - Getting the Top on Board 25:03 - Omnidirectional Communication 27:38 - Be Visible 29:48 - Mentors - Wife 31:17 - Book Recommendations - Think Like a Rocket Scientist - Ozan Varol 32:03 - Find Ganesh Krishnan online - LinkedIn: linkedin.com/in/ganeshkrishnanlinkedin/ - Twitter: twitter.com/gkparanoid - Website: https://www.anzenna.ai/ 32:32 - Explaining Anzenna 35:35 - Wrap Up & Outro - www.social-engineer.com - www.innocentlivesfoundation.org

17 Juli 202336min

Today we are joined by Patrick McAndrew. As the Founder & CEO of HARA, Patrick focuses on developing the whole person, knowing that high performance is determined by how you live – not just how you work. Patrick helps develop habits of mind to thrive in competitive environments. He has trained leaders and high-performing teams to bring more structure into their lives for greater: Focus; Energy; Productivity; Mental Resilience & Life Balance. With a background in corporate law, Patrick moved into sales, leading the expansion of BriteVenue across North America, the #1 venue software for weddings and events. In 2018, Patrick worked with Iris as a high performance coach and instructor to Hedge Funds, Investment Banks and MBA programs at Ivy League Universities. During the same period Patrick launched his first business - an audio marketing business which launched Spotify's first global audio marketing campaign to brands and agencies. In 2019, Patrick launched Momentum Mind, which would become HARA to help organizations develop the whole human. [July 10, 2023] 00:00 - Intro 00:17 - Intro Links - Social-Engineer.com - http://www.social-engineer.com/ - Managed Voice Phishing - https://www.social-engineer.com/services/vishing-service/ - Managed Email Phishing - https://www.social-engineer.com/services/se-phishing-service/ - Adversarial Simulations - https://www.social-engineer.com/services/social-engineering-penetration-test/ - Social-Engineer channel on SLACK - https://social-engineering-hq.slack.com/ssb - CLUTCH - http://www.pro-rock.com/ - innocentlivesfoundation.org - http://www.innocentlivesfoundation.org/ 03:03 - Patrick McAndrew Intro 04:43 - Making Sense of the Path 08:41 - Your Attention is All You Have 14:31 - Our Issues with Paradox 20:37 - Gaining Control of Our Attention 24:29 - Trading Impact for Activity 27:22 - Being Led by Values 31:11 - Value-Driven Results 32:57 - Making Space 36:13 - A Break Needs to be a Break 41:46 – Mentors: - Mother - Marshall McLuhan - John O'Donohue - L.M. Sacasas 43:26 - Book Recommendations - Ancient Futures - Helena Norberg-Hodge - Stand Out of Our Light - James Williams - The Boy Who Was Raised as a Dog - Bruce D. Perry 46:41 - Find Patrick McAndrew online - LinkedIn: in/patrickmcandrewonline/ - Substack: theinnerlandscape.substack.com - Website: hara.co - Website: patrickmcandrew.co 47:38 - Guest Wrap Up & Outro - www.social-engineer.com - www.innocentlivesfoundation.org

10 Juli 202348min

Welcome to the Social-Engineer Podcast: The Doctor Is In Series – where we will discuss understandings and developments in the field of psychology. In today's episode, Chris and Abbie are discussing: Deception Detection. While there are many misconceptions about this topic, we are not completely in the dark; we are just not as good as we think. [July 3, 2023] 00:00 - Intro 00:18 - Dr. Abbie Maroño Intro 01:18 - Intro Links - Social-Engineer.com - http://www.social-engineer.com/ - Managed Voice Phishing - https://www.social-engineer.com/services/vishing-service/ - Managed Email Phishing - https://www.social-engineer.com/services/se-phishing-service/ - Adversarial Simulations - https://www.social-engineer.com/services/social-engineering-penetration-test/ - Social-Engineer channel on SLACK - https://social-engineering-hq.slack.com/ssb - CLUTCH - http://www.pro-rock.com/ - innocentlivesfoundation.org - http://www.innocentlivesfoundation.org/ 04:44 - The Topic of the Day: Deception Detection 06:15 - Lying About Lying 09:20 - The Dangers of Being Wrong 11:09 - The "What" is NOT the "Why" 13:41 - The False Narrative of NLP 18:37 - We Love a Myth 21:33 - Mythbusters 24:50 - That's Entertainment! 26:17 - It's Not Deception, It's Stress 31:40 - "We need to talk" 33:11 - Lying in Order 37:23 - Information is Key 38:46 - The Need for a Big-Picture Approach 41:00 - Shameless Plugs 42:27 - Wrap Up 43:21 - Next Month: Learned Helplessness 44:35 - Outro - www.social-engineer.com - www.innocentlivesfoundation.org Find us online: - Twitter: https://twitter.com/abbiejmarono - LinkedIn: linkedin.com/in/dr-abbie-maroño-phd-35ab2611a - Twitter: https://twitter.com/humanhacker - LinkedIn: linkedin.com/in/christopherhadnagy References: Vrij, A. (2019). Deception and truth detection when analyzing nonverbal and verbal cues. Applied Cognitive Psychology, 33(2), 160-167. Vrij, A., Granhag, P. A., & Porter, S. (2010). Pitfalls and opportunities in nonverbal and verbal lie detection. Psychological science in the public interest, 11(3), 89-121. Vrij, A., Hartwig, M., & Granhag, P. A. (2019). Reading lies: Nonverbal communication and deception. Annual review of psychology, 70, 295-317. DePaulo, B.M. (2004). The many faces of lies. In A.G. Miller (Ed.), The social psychology of good and evil (pp. 303–236). New York: Guilford Press. DePaulo, B.M., Blank, A.L., Swaim, G.W., & Hairfield, J.G. (1992). Expressiveness and expressive control. Personality and Social Psychology Bulletin, 18, 276–285. DePaulo, B.M., Charlton, K., Cooper, H., Lindsay, J. L., & Muhlenbruck, L. (1997). The accuracy–confidence correlation in the detection of deception. Personality and Social Psychology Review, 1, 346–357. Ekman, P. (2001). Telling lies: Clues to deceit in the marketplace, pol[1]itics and marriage. New York: Norton. (Original work published 1985). Ekman, P., & Friesen, W.V. (1969). Nonverbal leakage and clues to deception. Psychiatry, 32, 88–106. Julia Hirschberg, Stefan Benus, Jason M. Brenier, Frank Enos, Sarah Friedman, Sarah Gilman, Cynthia Girand, Martin Graciarena, Andreas Kathol, Laura Michaelis, et al. 2005. Distinguishing deceptive from non-deceptive speech. In In Proceedings of In[1]terspeech 2005 - Eurospeech, pages 1833–1836. Tsikerdekis, M., & Zeadally, S. (2014). Multiple account identity deception detection in social media using nonverbal behavior. IEEE Transactions on Information Forensics and Security, 9(8), 1311-1321. O'Sullivan, M. (2005). Emotional intelligence and deception detection: Why most people can't "read" others, but a few can. Applications of nonverbal communication, 215-253.

3 Juli 202345min

Welcome to the Social-Engineer Podcast: The SE Etc. Series. This series will be hosted by Chris Hadnagy, CEO of Social-Engineer LLC, and The Innocent Lives Foundation, as well as Social-Engineer.Org and The Institute for Social Engineering. Chris will be joined by his co-host Patrick Laverty as they discuss topics pertaining to the world of Social Engineering. [June 26, 2023] 00:00 - Intro 00:19 - Patrick Laverty Intro 00:58 - Practical Application for Social Engineering 02:37 - Intro Links - Social-Engineer.com - http://www.social-engineer.com/ - Managed Voice Phishing - https://www.social-engineer.com/services/vishing-service/ - Managed Email Phishing - https://www.social-engineer.com/services/se-phishing-service/ - Adversarial Simulations - https://www.social-engineer.com/services/social-engineering-penetration-test/ - Social-Engineer channel on SLACK - https://social-engineering-hq.slack.com/ssb - CLUTCH - http://www.pro-rock.com/ - innocentlivesfoundation.org - http://www.innocentlivesfoundation.org/ 04:53 - ILF News 06:32 - Todays Topic: Acting Your Way in Social Engineering 08:32 - Rosa Rowles & Curt Klump Intro 09:52 - Dressing the Part 14:22 - A Background Made for SE 19:46 - Getting Out of Your Own Head 20:46 - Alter Ego 22:32 - Using Real Life as a Tool 25:49 - When Your Alias is Real 29:51 - Breaking Bad 36:02 - Security Isn't Convenient 37:57 - Keeping It Fresh 42:43 - Being Helpful Helps 45:15 - In the Classroom 46:45 - Wrap Up 47:28 - Next Month: Subscribe to Find Out 48:05 - Outro - www.social-engineer.com - www.innocentlivesfoundation.org Find us online - Chris Hadnagy - Twitter: @humanhacker - LinkedIn: linkedin.com/in/christopherhadnagy - Patrick Laverty - Twitter: @plaverty9 - LinkedIn: linkedin.com/in/plaverty9

26 Juni 202348min

Today on the Social-Engineer Podcast: The Security Awareness Series, Ryan and I are joined by Jason Rebholz. Jason is the Chief Information Security Officer at Corvus Insurance. He has over a decade of experience performing forensic investigations into sophisticated cyber attacks and helping organizations build secure and resilient environments. As Corvus's CISO, Jason leverages his incident response, security, and infrastructure expertise to drive security strategy and reduce the risk of security threats internally at Corvus and for Corvus's policyholders. Prior to joining Corvus, Jason held leadership roles at Mandiant, The Crypsis Group, Gigamon, and MOXFIVE [June 19, 2023] 00:00 - Intro 01:03 - Intro Links: - Social-Engineer.com - http://www.social-engineer.com/ - Managed Voice Phishing - https://www.social-engineer.com/services/vishing-service/ - Managed Email Phishing - https://www.social-engineer.com/services/se-phishing-service/ - Adversarial Simulations - https://www.social-engineer.com/services/social-engineering-penetration-test/ - Social-Engineer channel on SLACK - https://social-engineering-hq.slack.com/ssb - CLUTCH - http://www.pro-rock.com/ - innocentlivesfoundation.org - http://www.innocentlivesfoundation.org/ 05:04 - Jason Rebholz Intro 05:47 - How did you get to where you are? 11:32 - Eating the Elephant 12:53 - The Gospel of Ryan 15:39 - Back to Basics 16:49 - Finding the Right Alleyway 20:32 - You're Allowed to Change Your Mind 23:14 - The Right Tools for the Job 24:58 - Maximizing ROI 25:54 - The City of No 27:11 - What's Bad MFA? 29:41 - 3-2-1...1 32:52 - Quality Fishing 36:32 - Holistic Security Program 39:07 - Realistic Expectations 41:31 - Mentors - Steve Surdu 42:58 - Book Recommendations - Atomic Habits – James Clear 45:16 - Wrap Up - LinkedIn: www.linkedin.com/in/jrebholz/ - Youtube: www.youtube.com/@teachmecyber - Website: www.corvusinsurance.com/ 46:07 - Outro - www.social-engineer.com - www.innocentlivesfoundation.org

19 Juni 202346min