POPULARITY
“Understanding the ways humans make decisions is integral in everything we do from maintaining security to communicating with the people in your life. Social engineering skills, when used properly, can make your life so much better.” – Chris Hadnagy Welcome back to Turmeric & Tequila with your host, Kristen Olson, where we dive into the delicate balance of disruption and dialogue in pursuit of a better way. In this episode, we're thrilled to have Chris Hadnagy, a distinguished leader in the field of social engineering. Kristen and Chris explore the complexities of human behavior, uncovering the motives behind our actions and the profound influence of ethical social engineering. From Chris's diverse career path to his work in cybersecurity and his nonprofit organization, the Innocent Lives Foundation, this conversation is rich with insights on communication, ethical influence, and the intersection of human connection with modern technology. Tune in as we discuss the importance of emotional intelligence, the evolving landscape of AI, and the ways we can use social engineering practices for the greater good. If you're passionate about understanding and improving human interactions, this episode is a must-listen. Time Stamps: 00:00 Sponsors Shoutout and Highlights 05:48 Ethical Hacking Framework Development 09:22 Creative Pretexts for Infiltration 11:01 Cybersecurity: Protecting, Educating, Enhancing Lives 14:47 Geolocating Dark Web Exploiters 17:22 Addressing Digital Sextortion Challenges 19:54 Supportive Parenting Through Mistakes 23:09 Instant Gratification's Hidden Costs 28:28 Podcaster on Human Stories & Challenges 30:48 Workshops on Elicitation and Non-verbals 34:12 Parental Safety Advice Scenario 36:28 Apologizing Builds Respect 40:00 AI: A Double-Edged Sword 43:30 Connect with Me on LinkedIn 47:10 Family Over Fortune 49:39 "Life Skills Through Sports" Chris Hadnagy: Chris Hadnagy is the Founder and CEO of Social-Engineer, LLC. During Chris' 19 years in information security, he created the world's first social engineering framework and newsletter. He has also hosted the first social engineering-based podcast. Chris is the Founder, Executive Director, and Board Member, for the Innocent Lives Foundation, a nonprofit organization that identifies anonymous child predators and helps bring them to justice. Having written five books on social engineering, Chris is also a well-known author. His most recent book, “Human Hacking: Win Friends, Influence People and Leave Them Better Off for Having Met You,” was released January 5, 2021. Chris leads the way in educating people about social engineering. He created the world's first Social Engineering Capture the Flag (SECTF) to raise awareness of this serious threat. Chris is also an Adjunct Professor of Social Engineering for the University of Arizona's NSA designated Center of Academic Excellence in Cyber Operations (CAE-CO). And he also lectures and teaches about social engineering around the globe. Moreover, he was invited to speak at the Pentagon and other high-security facilities. Chris works with some of the world's leaders in scientific research for the purpose of acquiring a deeper understanding of social engineering. Notably, Chris authored a book with Dr. Paul Ekman regarding the use of nonverbal communication by social engineers. Chris is certified as an Offensive Security Certified Professional (OSCP), as well as an Offensive Security Wireless Professional (OSWP). He is also the creator of the Social Engineering Pentest Professional (SEPP), Certified Ethical Social Engineer (CESE), and Master's Level Social Engineering (MLSE), certifications. Chris' published books include: – Social Engineering: The Art of Human Hacking – Unmasking the Social Engineer: The Human Element of Security – Phishing Dark Waters: The Offensive and Defensive Sides of Malicious E-mails – Social Engineering: The Science of Human Hacking 2nd Edition – Human Hacking: Win Friends, Influence People, and Leave Them Better Off for Having Met You https://www.facebook.com/socialengineerllc/ https://www.instagram.com/socialengineerllc https://www.linkedin.com/in/christopherhadnagy/ Connect with T&T: IG: @TurmericTequila Facebook: @TurmericAndTequila Website: www.TurmericAndTequila.com Host: Kristen Olson IG: @Madonnashero Tik Tok: @Madonnashero Website: www.KOAlliance.com WATCH HERE MORE LIKE THIS: https://youtu.be/ZCFQSpFoAgI?si=Erg8_2eH8uyEgYZF https://youtu.be/piCU9JboWuY?si=qLdhFKCGdBzuAeuI https://youtu.be/9Vs2JDzJJXk?si=dpjV31GDqTroUKWH
“I realized that we can use human hacking skills in a positive way. How do you use it as a partner, employer, employee, a parent or as a child? How can you use these skills to get things you want out of life, while leaving people feeling better for having met you, and not being a malicious person?” - Chris Hadnagy If you’ve ever wondered how you can show up so that the person you are talking to is more receptive to what you have to say, while leaving the other person better off for your interaction with them, you’re going to love this episode. Today on Brave By Design I’m scratching my human behavior itch with one of the most renowned experts in the field of social engineering, as we talk human hacking, empathy, and influence, to name just some of the topics we cover. Chris Hadnagy is a global security expert and master hacker. He is the founder and CEO of Social-Engineer, LLC, the creator of the popular Social Engineer Podcast, website, and newsletter, and designed “Advanced Practical Social Engineering,” the first hands-on social engineering training course and certification for law enforcement, military, and private sector professionals. He is the bestselling author of four technical books for security professionals: Social Engineering: The Art of Human Hacking; Unmasking the Social Engineer: The Human Element of Security; Phishing Dark Waters: The Offensive and Defensive Sides of Malicious Emails; and Social Engineering: The Science of Human Hacking, which is now in its second edition. He is also the founder, executive director, and board member of the Innocent Lives Foundation, a nonprofit that fights the sexual abuse of children.By shifting your approach to difficult conversations and making a conscious effort to practice empathy towards the other person, you will see more great things come to you in your life. Try it, and let Chris and I know how well these techniques work for you! Connect with Chris: https://humanhackingbook.com/ Remember to hit SUBSCRIBE wherever you listen to podcasts!Are you a service-based business who wants to build your brand and get booked solid? Learn how podcasting helped Laura do that over at: podcastbrandlab.comWhat You’ll Hear In This Episode: How Chris got into the type of work he does today, and the unique occupations he’s held along the way [2:21]The way he discovered the power of social engineering and what motivated him to begin writing books on the subject [6:07]Why human hacking is so important for people to learn about [8:11]What are the key differences between influence and manipulation, and a fascinating experiment from Chris’ own life that demonstrates this [10:24]How we can begin to genuinely build more rapport with others, and what not to do [18:59]What he means when he says that we can elicit emotions in others by expressing those same emotions in ourselves [22:50]The approach Chris recommends taking when engaging someone in a difficult conversation [26:50]His thoughts on “cancel culture” and the only way that we can move forward from it [38:43]Support the show (https://www.paypal.me/bravebydesign)
Lisa interviews Chris Hadnagy, founder and CEO of Social-Engineer LLC, aka “The Human Hacker”. This week on Rebooting... •Tales of how social engineering is used in corporate/industrial espionage. • The hazards of being a social engineer and how some pretexts fail in very unexpected ways. • Hear about how his daughter once described his career. •The new wave of romance frauds hitting the world. • His new non-profit hunting online predators for law enforcement. • Much much more.. Like and subscribe to ensure you don't miss an episode ►►►SUBSCRIBE! ►►► https://www.youtube.com/channel/UCaj1V0ptRrMDucohq41LDmg?sub_confirmation=1 ►►Get it as a PODCAST ►► https://anchor.fm/rebooting https://podcasts.apple.com/gb/podcast/rebooting-with-lisa-forte/id1520180332 ►►https://www.social-engineer.com/ ►►https://www.innocentlivesfoundation.org/ ►►https://twitter.com/humanhacker ►►https://www.linkedin.com/in/christopherhadnagy/ ►►Books: Chris is also the best-selling author of four books; Social Engineering: The Art of Human Hacking, Unmasking the Social Engineer: The Human Element of Security, Phishing Dark Waters: The Offensive and Defensive Sides of Malicious Emails, and Social Engineering: The Science of Human Hacking, 2nd Edition. https://www.amazon.co.uk/Christopher-Hadnagy/e/B004D1T9F4/ref=dp_byline_cont_pop_book_1
Christopher Hadnagy je jedan od pionira socijalnog inženjeringa – skupa metoda i alata koji su razvijeni specifično da potaknu ljude da naprave nešto što inače ne bi, bilo u dobre ili loše svrhe. Specifično, ovo područje je nastalo iz računalne (informatičke) sigurnosti, gdje su rani hakeri kao Christopher iskorištavali nove mogućnosti u komunikaciji elektroničkim sredstvima, te povjerenje i nesnalaženje u istima od strane korisnika, da bi dolazili do inače povjerljivih informacija ili lokacija. Kasnije se ovo područje razvilo u cjelokupan set usluga i alata koji se u pozitivne svrhe koristi kada korporacije žele testirati koliko su otporne na napade koji uključuju iskorištavenje njihovih djelatnika. Christopher je kreirao prvu zaokruženu edukaciju o ovome, autor je knjiga Social-Engineering: The Art of Human Hacking, Unmasking the Social Engineer: The Human Element of Security, Phishing Dark Waters, te Social Engineering: The Science of Human Hacking. Uz lektiru možete pogledati ili poslušati podcast epizodu s Christopherom Hadnagyem: https://www.youtube.com/watch?v=BN4W90IrYKQ&t=9s Povezani sadržaj: E039 – Alen Delić – Certificirani društveni inženjer E095 – Christopher Hadnagy – Chief human hacker E096 – Saša i Ivan – Specijalna epizoda – SAD, planovi, nove ideje L001 – Surove Strasti lektira: Utjecajnost // Robert Cialdini L011 – Surove Strasti lektira: Predictably Irrational // Dan Ariely L028 – Lektira: Never Split the Difference // Chris Voss Sve lektire Surovih Strasti nalaze se OVDJE. Pišite feedback, Saša Tenodi PREPORUKE ZA LAKŠE I UGODNIJE SLUŠANJE SUROVIH STRASTI: Tri načina kako slušati podcastKako slušati podcast u autu koji nema Mp3 playerTop lista najslušanijih epizoda
Hrvatski: Christopher Hadnagy je jedan od pionira socijalnog inženjeringa - skupa metoda i alata koji su razvijeni specifično da potaknu ljude da naprave nešto što inače ne bi, bilo u dobre ili loše svrhe. Specifično, ovo područje je nastalo iz računalne (informatičke) sigurnosti, gdje su rani hakeri kao Christopher iskorištavali nove mogućnosti u komunikaciji elektroničkim sredstvima, te povjerenje i nesnalaženje u istima od strane korisnika, da bi dolazili do inače povjerljivih informacija ili lokacija. Kasnije se ovo područje razvilo u cjel0kupan set usluga i alata koji se u pozitivne svrhe koristi kada korporacije žele testirati koliko su otporne na napade koji uključuju iskorištavenje njihovih djelatnika. Christopher je kreirao prvu zaokruženu edukaciju o ovome, autor je knjiga Social-Engineering: The Art of Human Hacking, Unmasking the Social Engineer: The Human Element of Security, Phishing Dark Waters, te Social Engineering: The Science of Human Hacking. S gostom ove epizode je razgovarao Saša dok je polazio upravo opisanu edukaciju u SAD-u. English: Christopher Hadnagy is one of social engineering pioneers. This is a set of methods and tools developed specifically to induce people into doing an action they otherwise wouldn't - for better or for worse. Specifically, this field is an offshoot of IT security, where early hackers such as Christopher have exploited new opportunities in electronic communications technologies, the combination of users' trust and confusion with them, to gain access to confidential information and locations. Social engineering has later been developed into a comprehensive set of services and tools which are being used by the good guys when corporations wish to test their resilience to security attacks which involve exploiting their workforce. Christopher is the creator of the first all-around training course on the subject, and has authored several books: Social-Engineering: The Art of Human Hacking, Unmasking the Social Engineer: The Human Element of Security, Phishing Dark Waters, te Social Engineering: The Science of Human Hacking. This interview was conducted by Sascha while attending the Advanced Practical Social Engineering Training course with Christopher in Orlando, Florida. https://www.youtube.com/watch?v=BN4W90IrYKQ Teme razgovora: 00:45 - Saša: Chris likes me! 01:15 - Chris is a famous name in social engineering 02:00 - When did the term 'social engineering' come to you 03:20 - I have a specific set of skills... 05:00 - 'Well... I'll run your business for you!' 07:30 - A weird path led me to figure out what my skills are 08:20 - I get bored really fast. When there is no more challenge or opportunity to learn - I'm done. 10:51 - Everything is learnable if you have the right motivation and a right teacher 12:30 - Little goals in conversations with people in everyday life 13:25 - Is social engineering good or bad? 14:30 - I focus my business on influence 16:30 - Where does the term 'social engineering' come from? 17:30 - Emotions disables the rational centres - and this is when I try to make an influence 19:00 - Access the network through the building and through the people 20:45 - It feels good when you change someone's perception and they feel good and proud about it 22:15 - Experiences with writing books 24:30 - There is always going to be people that love you and there is always going to be people that hate you - interact with both and take most out of it 27:00 - Someone does something amazing even though they are nervous with it every time 28:50 - If I find people falling for phishing emails, the company must agree in advance not to fire them 30:30 - It's better to praise the good ones and train the bad ones than it is to shame the bad ones and do nothing for the good ones 31:30 - There must be ethics in social engineering 33:30 - We build relationships with our clients
Chris Hadnagy specializes in understanding how malicious attackers exploit human communication and trust to obtain access to information and resources through manipulation and deceit. His goal is to secure companies by educating them on the methods used by attackers, identifying vulnerabilities, and mitigating issues through appropriate levels of awareness and security. Chris, is the founder and CEO of Social-Engineer. Chris possesses over 16 years experience as a practitioner and researcher in the security field. His efforts in training, education, and awareness have helped to expose social engineering as the top threat to the security of organizations today. What I found fascinating from Chris' bio is that he is a certified Expert Level graduate of Dr. Paul Ekman's Micro Expressions courses, having made the study of non-verbal behaviors one of his specialties. He established the world's first social engineering penetration testing framework at www.social-engineer.org, providing an invaluable repository of information for security professionals and enthusiasts. That site grew into a dynamic web resource including a podcast and newsletter, which have become staples in the security industry and are referenced by large organizations around the world. Chris also created the first hands-on social engineering training course and certification, Advanced Practical Social Engineering. A sought-after writer and speaker, Chris has spoken and trained at events such as RSA, Black Hat, and various presentations for corporate and government clients. Chris is also the best-selling author of three books My favorite was - Phishing Dark Waters: The Offensive and Defensive Sides of Malicious Emails, which is his latest that I read. You can access all the link to his books, website, etc. at www.redzonetech.net/podcasts Major take – aways from this episode are: Reminder: you can download the transcript of the entire interview at redzonetech.net/podcast. A classic story of a Social Engineering hack that Chris did is at the 12 minute mark; it is a great example that will remind you of what you need to do to train employees. The importance of the brain and amygdala as it relates to IT Security. The importance of the psychology of security. The importance of non-verbal facial expression and body language. How to trigger empathy and compassion in a target which really shows how this method is so effective. The role of mirror neurons. You will understand the brain and how it reacts to fear, emotion, and danger in relation to social engineering hacks. @ 35 minutes learn about What is a BEC Scam – Business Email Compromise and how to avoid it. The difference between Whaling, Vishing, and Phishing. I have linked up all the show notes on redzonetech.net/podcast when you can get access to Chris Hadnagy's books and publications. Read full transcript here. How to get in touch with Chris Hadnagy Linkedin Twitter Blog Website Website: Social-engineer.com Social-engineer.org Podcast: Social Engineer Podcast Blog: Social Engineer Blog Books/Publications/ Videos: Phishing Dark Waters: The Offensive and Defensive Sides of Malicious Emails Unmasking the Social Engineer: The Human Element of Security Social Engineering: The Art of Human Hacking Published Articles Videos Resources Mentioned: Paul Ekman, Emotions Revealed and other books Daniel Goldman Amy Cuddy, Presence Dr. Ellen Langer, On Becoming An Artist Verizon DBI Report APWG.org This episode is sponsored by the CIO Scoreboard, a powerful tool that helps you communicate the status of your IT Security program visually in just a few minutes. Credits: * Outro music provided by Ben's Sound Other Ways To Listen to the Podcast iTunes | Libsyn | Soundcloud | RSS | LinkedIn Leave a Review If you enjoyed this episode, then please consider leaving an iTunes review here Click here for instructions on how to leave an iTunes review if you're doing this for the first time. About Bill Murphy Bill Murphy is a world renowned IT Security Expert dedicated to your success as an IT business leader. Follow Bill on LinkedIn and Twitter.
Chris Hadnagy specializes in understanding how malicious attackers exploit human communication and trust to obtain access to information and resources through manipulation and deceit. His goal is to secure companies by educating them on the methods used by attackers, identifying vulnerabilities, and mitigating issues through appropriate levels of awareness and security. Chris, is the founder and CEO of Social-Engineer. Chris possesses over 16 years experience as a practitioner and researcher in the security field. His efforts in training, education, and awareness have helped to expose social engineering as the top threat to the security of organizations today. What I found fascinating from Chris' bio is that he is a certified Expert Level graduate of Dr. Paul Ekman's Micro Expressions courses, having made the study of non-verbal behaviors one of his specialties. He established the world's first social engineering penetration testing framework at www.social-engineer.org, providing an invaluable repository of information for security professionals and enthusiasts. That site grew into a dynamic web resource including a podcast and newsletter, which have become staples in the security industry and are referenced by large organizations around the world. Chris also created the first hands-on social engineering training course and certification, Advanced Practical Social Engineering. A sought-after writer and speaker, Chris has spoken and trained at events such as RSA, Black Hat, and various presentations for corporate and government clients. Chris is also the best-selling author of three books My favorite was - Phishing Dark Waters: The Offensive and Defensive Sides of Malicious Emails, which is his latest that I read. You can access all the link to his books, website, etc. at www.redzonetech.net/podcasts Major take – aways from this episode are: Reminder: you can download the transcript of the entire interview at redzonetech.net/podcast. A classic story of a Social Engineering hack that Chris did is at the 12 minute mark; it is a great example that will remind you of what you need to do to train employees. The importance of the brain and amygdala as it relates to IT Security. The importance of the psychology of security. The importance of non-verbal facial expression and body language. How to trigger empathy and compassion in a target which really shows how this method is so effective. The role of mirror neurons. You will understand the brain and how it reacts to fear, emotion, and danger in relation to social engineering hacks. @ 35 minutes learn about What is a BEC Scam – Business Email Compromise and how to avoid it. The difference between Whaling, Vishing, and Phishing. I have linked up all the show notes on redzonetech.net/podcast when you can get access to Chris Hadnagy’s books and publications. Read full transcript here. How to get in touch with Chris Hadnagy Linkedin Twitter Blog Website Website: Social-engineer.com Social-engineer.org Podcast: Social Engineer Podcast Blog: Social Engineer Blog Books/Publications/ Videos: Phishing Dark Waters: The Offensive and Defensive Sides of Malicious Emails Unmasking the Social Engineer: The Human Element of Security Social Engineering: The Art of Human Hacking Published Articles Videos Resources Mentioned: Paul Ekman, Emotions Revealed and other books Daniel Goldman Amy Cuddy, Presence Dr. Ellen Langer, On Becoming An Artist Verizon DBI Report APWG.org This episode is sponsored by the CIO Scoreboard, a powerful tool that helps you communicate the status of your IT Security program visually in just a few minutes. Credits: * Outro music provided by Ben’s Sound Other Ways To Listen to the Podcast iTunes | Libsyn | Soundcloud | RSS | LinkedIn Leave a Review If you enjoyed this episode, then please consider leaving an iTunes review here Click here for instructions on how to leave an iTunes review if you're doing this for the first time. About Bill Murphy Bill Murphy is a world renowned IT Security Expert dedicated to your success as an IT business leader. Follow Bill on LinkedIn and Twitter.
In this episode We revisit the 'human' side of hacking Chris tells us all about the Defcon CTF his team has hosted We discuss the role human nature plays in social engineering, or "Why the bad guys always win" Chris gives us his tips for making it harder for social engineers Michael and Chris talk metrics and measuring "getting better" Guest Chris Hadnagy ( @HumanHacker ) - Chris Hadnagy (author of Social-Engineering: The Art of Human Hacking and Unmasking the Social Engineer: The Human Element of Security) is a speaker, teacher, pentester, and recognized expert in the field of social engineering and security.Chris Hadnagy is the President and CEO of Social-Engineer, Inc. He has spent the last 16 years in security and technology, specializing in understanding the ways in which malicious attackers are able to exploit human weaknesses to obtain access to information and resources through manipulation and deceit.Chris is a graduate of Dr. Paul Ekman’s courses in Microexpressions, having passed the certification requirements with an “Expert Level” grade. He also has significant experience in training and educating students in non-verbal communications. He hold certifications as an Offensive Security Certified Professional (OSCP) and an Offensive Security Wireless Professional (OSWP).Finally, Chris has launched a line of professional social engineering training and penetration testing services at Social-Engineer.Com. His goal is to assist companies in remaining secure by educating them on the methods used by malicious attackers. He accomplishes this by analyzing, studying, dissecting, then performing the very same attacks used during some of the most recent incidents (i.e. Sony, HB Gary, LockHeed Martin, Target, etc), Chris is able to help companies understand their vulnerabilities, mitigate issues, and maintain appropriate levels of education and security.Chris has developed one of the web’s most successful security podcasts, The Social-Engineer.Org Podcast, and the equally-popular SEORG Newsletter. Over the years, both have become a staple in most serious security practices and are used by Fortune 500 companies around the world to educate their staff.You can find Chris's articles for local, national, and international publications and journals, including Pentest Mag, EthicalHacker.net, and local and national Business Journals. Links: Social Engineer Org - Your one-stop place for podcast, newsletter, and all things social engineering from Chris's team - http://www.social-engineer.org/ SECTF Report - http://www.social-engineer.org/ctf/social-engineer-inc-releases-annual-report-def-con-22-social-engineering-capture-flag-sectf-contest/ Social Engineer, Chris's company - http://www.social-engineer.com/