Easy Prey

De: Chris Parker
Escúchala gratis

  • Resumen

  • Chris Parker, the founder of WhatIsMyIPAddress.com, interviews guests and tells real-life stories about topics to open your eyes to the danger and traps lurking in the real world, ranging from online scams and frauds to everyday situations where people are trying to take advantage of you—for their gain and your loss. Our goal is to educate and equip you, so you learn how to spot the warning signs of trouble, take quick action, and lower the risk of becoming a victim.
    Más Menos
Crímenes Reales Política y Gobierno
Más Menos
Episodios
  • DDoS Attacks

    DDoS Attacks
    Apr 30 2025

    Scammers are getting smarter, understanding the psychology behind social engineering and the challenges companies face every day can help keep networks secure. This episode will show how to anticipate these threats and secure networks against ever-changing vulnerabilities. We’ll focus on practical, real-world solutions to protect data and trust.

    Dr. Jared Smith joins us to share his insights from his role leading research and development at SecurityScorecard. He also co-founded UnCat, a B2B accounting technology company serving thousands of customers and teaches as an adjunct professor at the University of Tennessee, Knoxville and NYU. His experience shows why social engineering is so effective and how companies can adapt to a world where attackers are always refining their techniques.

    This episode shows how even small oversights or minor issues can lead to big breaches. Dr. Smith shares concrete steps to strengthen defenses, and why we need both technical solutions and employee awareness. By looking at the psychology behind the attacks, he’ll show that staying one step ahead depends on using smart security tools and a culture that recognizes vigilance at every level.

    Show Notes:
    • [01:19] Jared is a distinguished thought researcher at SecurityScorecard. He's built systems and helps vendors monitor and secure their networks. He also has a PHD in computer science. He focuses on Border Gateway Protocol or BGP.
    • [02:16] He was also a high clearance government national security researcher.
    • [03:02] Jared shares a story about how sophisticated phishing scams are becoming.
    • [08:43] How large language models are making more sophisticated social engineering possible.
    • [10:26] The importance of thinking about cybersecurity needed in the next 10 years.
    • [11:02] BGP is like the plumbing of the internet. BGP poisoning breaks the typical internet traffic route. It's very nuanced traffic engineering that uses the Border Gateway Protocol.
    • [13:34] BGP is also useful when you have multiple internet connections and one goes down.
    • [14:20] The most sophisticated DDoS works are called link flooding attacks, where they identify links that have a certain amount of bandwidth, and they flood that specific border gateway protocol link, effectively segmenting the internet in those places.
    • [15:39] Managing DDOS attacks and where the traffic comes from.
    • [16:02] Being aware of botnets, because they are what's rented out or being used for these attacks.
    • [17:32] Lizard Squad launched DDoS as a service.
    • [21:00] Attackers try to get the actual IP addresses from behind a CDN.
    • [23:41] How AWS has the ability to manage large amounts of traffic.
    • [25:24] There are some DDoS that just require sending enough traffic to fill up the buffers on the other side of the application.
    • [28:15] The size of a botnet for DDoS to take down a big network like X. We explore potential paths for these attacks.
    • [32:21] We talk about the uptick on attacks during tax season. A large accounting firm with a lot of clients could be spoofed.
    • [36:50] The predominant attacks are coming from organized cybercrime groups and ransomware groups.
    • [45:40] The vast majority of large networks taken out are usually a result of user error.

    Thanks for joining us on Easy Prey. Be sure to subscribe to our podcast on iTunes and leave a nice review.

    Links and Resources:
    • Podcast Web Page
    • Facebook Page
    • whatismyipaddress.com
    • Easy Prey on Instagram
    • Easy Prey on Twitter
    • Easy Prey on LinkedIn
    • Easy Prey on YouTube
    • Easy Prey on Pinterest
    • Jared M. Smith
    • Dr. Jared Smith - SecurityScorecard
    • Dr. Jared Smith - LinkedIn
    • Uncat
    • Evasive AI
    • Jared Smith - X
    Más Menos
    50 m
  • Safe AI Implementation

    Safe AI Implementation
    Apr 23 2025
    Red models associated with AI technologies highlight real-world vulnerabilities and the importance of proactive security measures. It is vital to educate users about how to explore the challenges and keep AI systems secure. Today’s guest is Dr. Aditya Sood. Dr. Sood is the VP of Security Engineering and AI Strategy at Aryaka and is a security practitioner, researcher, and consultant with more than 16 years of experience. He obtained his PhD in computer science from Michigan State University and has authored several papers for various magazines and journals. In this conversation, he will shed light on AI-driven threats, supply chain risks, and practical ways organizations can stay protected in an ever-changing environment. Get ready to learn how the latest innovations and evolving attack surfaces affect everyone from large companies to everyday users, and why a proactive mindset is key to staying ahead. Show Notes: [01:02] Dr. Sood has been working in the security industry for the last 17 years. He has a PhD from Michigan State University. Prior to Aryaka, he was a Senior Director of Threat Research and Security Strategy for the Office of the CTO at F5.[02:57] We discuss how security issues with AI are on the rise because of the recent popularity and increased use of AI.[04:18] The large amounts of data are convoluting how things are understood, the complexity is rising, and the threat model is changing.[05:14] We talk about the different AI attacks that are being encountered and how AI can be used to defend against these attacks.[06:00] Pre-trained models can contain vulnerabilities.[07:01] AI drift or model or concept drift is when data in the training sets is not updated. The data can be used in a different way. AI hallucinations also can create false output.[08:46] Dr. Sood explains several types of attacks that malicious actors are using.[10:07] Prompt injections are also a risk.[12:13] We learn about the injection mapping strategy.[13:54] We discuss the possibilities of using AI as a tool to bypass its own guardrails.[15:18] It's an arms race using AI to attack Ai and using AI to secure AI.[16:01] We discuss AI workload analysis. This helps to understand the way AI processes. This helps see the authorization boundary and the security controls that need to be enforced.[17:48] Being aware of the shadow AI running in the background.[19:38] Challenges around corporations having the right security people in place to understand and fight vulnerabilities.[20:55] There is risk with the data going to the cloud through the LLM interface.[21:47] Dr. Sood breaks down the concept of shadow AI.[23:50] There are also risks for consumers using AI.[29:39] The concept of Black Box AI models and bias being built into the particular AI.[33:45] The issue of the ground set of truth and how the models are trained.[37:09] It's a balancing act when thinking about the ground set of truth for data.[39:08] Dr. Sood shares an example from when he was researching for his book.[39:51] Using the push and pretend technique to trick AI into bypassing guardrails.[42:51] We talk about the dangers of using APIs that aren't secure.[43:58] The importance of understanding the entire AI ecosystem. Thanks for joining us on Easy Prey. Be sure to subscribe to our podcast on iTunes and leave a nice review. Links and Resources: Podcast Web PageFacebook Pagewhatismyipaddress.comEasy Prey on InstagramEasy Prey on TwitterEasy Prey on LinkedInEasy Prey on YouTubeEasy Prey on PinterestAditya K SoodAditya K Sood - LinkedInAditya K Sood - XAryaka COMBATING CYBERATTACKS TARGETING THE AI ECOSYSTEM: Assessing Threats, Risks, and Vulnerabilities Empirical Cloud Security: Practical Intelligence to Evaluate Risks and Attacks Empirical Cloud Security: Practical Intelligence to Evaluate Risks and Attacks
    Más Menos
    47 m
  • The Art of Espionage

    The Art of Espionage
    Apr 16 2025

    What makes someone betray their country? It’s rarely just about money. In this episode, you’ll hear from a retired CIA officer who spent 25 years recruiting foreign spies by tapping into something deeper than greed. Jim Lawler shares real stories from his career in human intelligence, where persuasion was built on empathy, trust, and understanding what truly drives people.

    From failed pitches to high-stakes successes, he explains the psychology behind espionage, how personal stress becomes a powerful leverage point, and why most people who commit treason believe they’ve been betrayed first.

    Whether you’re curious about spycraft or just want a better grasp of human behavior, this conversation pulls back the curtain on how people can be influenced to cross the line.

    Show Notes:
    • [00:50] Jim was a CIA operations officer. His job was to recruit foreign spies for the CIA.
    • [01:21] Most of his career was about battling weapons of mass destruction. His specialty was human intelligence and recruiting foreign spies was the backbone of that.
    • [02:32] He's now a speaker and a teacher. He's also written three spy novels.
    • [03:02] MICE Framework: Money, Ideology, Coercion, and Ego.
    • [05:11] Jim shares a story from one of his first recruitment pitches. He also found out that revenge is a driving force for espionage.
    • [11:58] Polygraph tests are stress detectors.
    • [15:16] Divorce is one of the most psychologically tumultuous times in a person's life. When recruiting, Jim would become their best friend because he never once recruited a happy person.
    • [16:07] He would study the crack system like a rock climber. He was a keen listener and very curious.
    • [17:33] Empathy and patience were everything when recruiting spies.
    • [20:21] Jim talks about the metaphysics, which is like a neural link where he would put out what he would envision as an invisible link to the brain of his recruits.
    • [22:11] If something is too good to be true it is.
    • [23:45] As a recruiter, he had to manipulate, exploit, and subvert people to get them to do what he wanted them to do.
    • [27:58] Jim believes in treating people the way he would like to be treated. He was sincere with his actions.
    • [28:35] He believes in using his powers of persuasion for good.
    • [32:43] Over 90% of the people he pitched became assets.
    • [33:48] Jim explains what a cold pitch is and the objective to get the second meeting.
    • [36:58] His novels are thinly based on operations he did. A lot of his stories are based on things that he has done or things that his colleagues have done.

    Thanks for joining us on Easy Prey. Be sure to subscribe to our podcast on iTunes and leave a nice review.

    Links and Resources:
    • Podcast Web Page
    • Facebook Page
    • whatismyipaddress.com
    • Easy Prey on Instagram
    • Easy Prey on Twitter
    • Easy Prey on LinkedIn
    • Easy Prey on YouTube
    • Easy Prey on Pinterest
    • Jim Lawler - SPYEX
    • The Traitor's Tale (The Guild Series Book 3)
    • In the Twinkling of an Eye: A Novel of Biological Terror and Espionage (The Guild Series Book 2)
    • Living Lies: A Novel of the Iranian Nuclear Weapons Program (The Guild Series Book 1)
    • Soulcatcher: James Lawler Discusses The Motivations For Espionage
    Más Menos
    43 m
adbl_web_global_use_to_activate_webcro805_stickypopup

Lo que los oyentes dicen sobre Easy Prey

Calificaciones medias de los clientes

Reseñas - Selecciona las pestañas a continuación para cambiar el origen de las reseñas.

Reseñas de Audible.com

Opiniones de Amazon
No hay comentarios disponibles