Easy Prey

Chris Parker, the founder of WhatIsMyIPAddress.com, interviews guests and tells real-life stories about topics to open your eyes to the danger and traps lurking in the real world, ranging from online scams and frauds to everyday situations where people are trying to take advantage of you—for their gain and your loss. Our goal is to educate and equip you, so you learn how to spot the warning signs of trouble, take quick action, and lower the risk of becoming a victim.

Past, Present, and Future of AI agents 12/24/2025

Past, Present, and Future of AI agents The intersection of AI and cybersecurity is changing faster than anyone expected, and that pace is creating both incredible innovation and brand-new risks we’re only beginning to understand. From deepfake ads that fool even seasoned security professionals to autonomous agents capable of acting on our behalf, the threat landscape looks very different than it did even a year ago. To explore what this evolution means for everyday people and for enterprises trying to keep up, I’m joined by Chris Kirschke, Field CISO at Tuskira and a security leader with more than two decades of experience navigating complex cyber environments. Chris talks about his unconventional path into the industry, how much harder it is for new professionals to enter cybersecurity today, and the surprising story of how he recently fell for a fake Facebook ad that showcased just how convincing AI-powered scams have become. He breaks down the four major waves of InfoSec from the rise of the web, through mobile and cloud, to the sudden, uncontrollable arrival of generative AI. He then explains why this fourth wave caught companies completely off guard. GenAI wasn’t something organizations adopted thoughtfully; it appeared overnight, with thousands of employees using it long before security teams understood its impact. That forced long-ignored issues like data classification, permissions cleanup, and internal hygiene to the forefront. We also dive into the world of agentic AI which is AI that doesn’t just analyze but actually acts and the incredible opportunities and dangers that come with it. Chris shares how low-code orchestration, continuous penetration testing, context engineering, and security “mesh” architectures are reshaping modern InfoSec. Chris spends a lot of time talking about the human side of all this and why guardrails matter, how easy it is to over-automate, and the simple truth that AI still struggles with the soft skills security teams rely on every day. He also shares what companies should think about before diving into AI, starting with understanding their data, looping in legal and privacy teams early, and giving themselves room to experiment without turning everything over to an agent on day one. Show Notes: [00:00] Chris Kirschke, Field CISO at Tuskira, is here to explore how AI is reshaping cybersecurity and why modern threats look so different today. [03:05] Chris shares his unexpected path from bartending into IT in the late ’90s, reflecting on how difficult it has become for newcomers to enter cybersecurity today. [06:18] A convincing Facebook scam slips past his defenses, illustrating how AI-enhanced fraud makes traditional red flags far harder to spot. [09:32] GenAI’s sudden arrival in the workplace creates chaos as employees adopt tools faster than security teams can assess risk. [12:08] The conversation shifts to AI-driven penetration testing and how continuous, automated testing is replacing traditional annual reports. [15:23] Agentic AI enters the picture as Chris explains how low-code orchestration and autonomous agents are transforming security workflows. [18:24] He discusses when consumers can safely rely on AI agents and why human-in-the-loop oversight remains essential for anything involving transactions or access. [21:48] AI’s dependence on context becomes clear as organizations move toward context lakes to support more intelligent, adaptive security models. [25:46] He highlights early experiments where AI agents automatically fix vulnerabilities in code, along with the dangers of developers becoming over-reliant on automation. [29:50] AI emerges as a support tool rather than a replacement, with Chris emphasizing that communication, trust, and human judgment remain central to the security profession. [33:35] A mock deposition experience reveals how AI might help individuals prepare for high-stress legal or compliance scenarios. [37:13] Chris outlines practical guardrails for adopting AI—starting with data understanding, legal partnerships, and clear architectural patterns. [40:21] Chatbot failures remind everyone that AI can invent policies or explanations when it lacks guidance, underscoring the need for strong oversight. [41:32] Closing thoughts include where to find more of Chris’s work and continue learning about Tuskira’s approach to AI security. Thanks for joining us on Easy Prey. Be sure to and leave a nice review. Links and Resources: /episode/index/show/easyprey/id/39385130

You Are Traceable with OSINT 12/17/2025

You Are Traceable with OSINT Publicly available data can paint a much clearer picture of our lives than most of us realize, and this episode takes a deeper look at how those tiny digital breadcrumbs like photos, records, searches, even the background of a Zoom call can be pieced together to reveal far more than we ever intended. To help break this down, I’m joined by Cynthia Hetherington, Founder and CEO of The Hetherington Group, a longtime leader in open-source intelligence. She also founded Osmosis, the global association and conference for OSINT professionals, and she oversees OSINT Academy, where her team trains investigators, analysts, and practitioners from all experience levels. Cynthia shares how she started her career as a librarian who loved solving information puzzles and eventually became one of the earliest people applying internet research to real investigative work. She talks about the first wave of cybercrime in the 1990s, how she supported law enforcement before the web was even mainstream, and why publicly accessible data today is more powerful and more revealing than ever. We get into how OSINT actually works in practice, from identifying a location based on a sweatshirt logo to examining background objects in video calls. She also explains why the U.S. has fewer privacy protections than many assume, and how property records, social media posts, and online datasets combine to expose surprising amounts of personal information. We also explore the growing role of AI in intelligence work. Cynthia breaks down how tools like ChatGPT can accelerate analysis but also produce hallucinations that investigators must rigorously verify, especially when the stakes are legal or security-related. She walks through common vulnerabilities people overlook, the low-hanging fruit you can remove online, and why your online exposure often comes from the people living in your home. Cynthia closes by offering practical advice to protect your digital footprint and resources for anyone curious about learning OSINT themselves. This is a fascinating look at how much of your life is already visible, and what you can do to safeguard the parts you’d rather keep private. Show Notes: [01:17] Cynthia Hetherington, Founder & CEO of The Hetherington Group is here to discuss OSINT or Open-Source Intelligence. [02:40] Early cyber investigators began turning to her for help long before online research tools became mainstream. [03:39] Founding The Hetherington Group marks her transition from librarian to private investigator. [04:22] Digital vulnerability takes center stage as online data becomes widely accessible and increasingly revealing. [05:22] We get a clear breakdown of what OSINT actually is and what counts as “publicly available information.” [06:40] A simple trash bin in a photo becomes a lesson in how quickly locations can be narrowed down. [08:03] Cynthia shares the sweatshirt example to show how a tiny image detail can identify a school and possibly a city. [09:32] Background clues seen during COVID video calls demonstrate how unintentional information leaks became routine. [11:12] A news segment with visible passwords highlights how everyday desk clutter can expose sensitive data. [12:14] She describes old threat-assessment techniques that relied on family photos and subtle personal cues. [13:32] Cynthia analyzes the balance and lighting of a Zoom backdrop, pointing out what investigators look for. [15:12] Virtual and real backgrounds each reveal different signals about a person’s environment. [16:02] Reflections on screens become unexpected sources of intelligence as she notices objects outside the camera frame. [16:37] Concerns grow around how easily someone can be profiled using only public information. [17:13] Google emerges as the fastest tool for building a quick, surface-level profile of almost anyone. [18:32] Social media takes priority in search results and becomes a major driver of self-exposed data. [19:40] Cynthia compares AI tools to the early internet, describing how transformative they feel for investigators. [20:58] A poisoning case from the early ’90s demonstrates how online expert communities solved problems before search engines existed. [22:40] She recalls using early listservs to reach forensic experts long before modern digital research tools were available. [23:44] Smarter prompts become essential as AI changes how OSINT professionals gather reliable information. [24:55] Cynthia introduces her C.R.A.W.L. method and explains how it mirrors the traditional intelligence lifecycle. [26:12] Hallucinations from AI responses reinforce the need for human review and verification. [27:48] We learn why repeatable processes are crucial for building trustworthy intelligence outputs. [29:05] Elegant-sounding AI answers illustrate the danger of unverified assumptions. [30:40] An outdated email-header technique becomes a reminder of how quickly OSINT methods evolve. [32:12] Managed attribution—hiding your digital identity—is explained along with when it’s appropriate to use. [33:58] Cynthia unpacks the reality that the U.S. has no constitutional right to privacy. [35:36] The 1996 case that sparked her digital-vulnerability work becomes a turning point in her career. [37:32] Practical opt-out steps give everyday people a way to remove basic personal data from public sites. [38:31] She discusses how indirect prompting of AI tools can still narrow down someone’s likely neighborhood or lifestyle. [39:58] Property and asset records emerge as unavoidable exposure points tied to government databases. [40:52] A high-risk client’s situation shows how family members often create digital vulnerabilities without realizing it. [42:44] Threats that surface too late demonstrate why proactive intelligence work is essential. [44:01] Concerns about government surveillance are contrasted with the broader access private investigators actually have. [45:12] Train tracks become an example of how physical infrastructure now doubles as a modern data network. [46:03] She explains how audio signatures and forensic clues could theoretically identify a train’s path. [47:58] Asset tracking becomes a global operation as valuable cargo moves between ships, trucks, and rail systems. [49:48] Satellite imagery makes monitoring even remote or underwater locations almost effortless. [51:12] Everyday applications of geospatial analysis include environmental changes and shifts within local communities. [52:19] Surveillance is compared to gravity; it's constant, invisible, and always exerting pressure. [52:44] Cynthia shares practical strategies for controlling your environment and keeping conversations private. [54:01] Resources like OSINT Academy, Information Exposed, and the Osmosis Association offer pathways for learning and strengthening personal privacy. [55:32] The episode closes with encouragement to stay aware of what you share and how easily digital clues can be connected. Thanks for joining us on Easy Prey. Be sure to and leave a nice review. Links and Resources: /episode/index/show/easyprey/id/39384895

Anyone Could Walk In 12/10/2025

Anyone Could Walk In Sometimes we forget how much trust we place in the little things around us like a lock on a door or a badge on someone’s shirt. We see those symbols and assume everything behind them is safe, but it doesn’t always work that way. A person with enough confidence, or the right story, can slip through places we think are locked down tight, and most of us never notice it’s happening. My guest today is Deviant Ollam, and he’s one of the rare people who gets invited to break into buildings on purpose. He talks about how he fell into this unusual line of work, the odd moments that shaped his career, and why understanding human behavior matters just as much as understanding locks or alarms. Listening to him describe these situations, where he’s walking through offices, popping doors, or blending in with repair crews, makes you realize how blind we can be to our own surroundings. We also get into the practical side of things: the mistakes companies make, the small fixes that go a long way, and why teaching employees to slow down and ask a few extra questions can make all the difference. It’s an eye-opening conversation, especially if you’ve ever assumed your workplace is more secure than it really is. Show Notes: [03:24] Deviant shares how early adventures, abandoned buildings, and curiosity about locks pulled him toward physical security. [06:20] A story about a law firm reveals how an office “secure” door was bypassed instantly, exposing major hardware flaws. [09:16] Discussion shifts to how the locksmith and safe technician community reacted to his public teaching and how that’s changed over time. [13:28] The topic turns to security theater and the gap between feeling safe and actually being protected. [16:18] An explanation of symbolic locks versus real security products highlights how easily people mix up the two. [19:11] Conversation moves into the lack of clear U.S. lock standards and why European systems make things easier for consumers. [21:51] Layered security comes into focus, emphasizing that the goal is to delay and deter rather than stop every possible attack. [24:35] Monitoring tools, overlooked windows, and forgotten blind spots show how attackers often choose the easiest entry point. [27:38] We look at the politics of penetration tests and why coordinating with building management is essential. [31:28] Escalation testing illustrates how long suspicious behavior can go unnoticed inside an organization. [34:34] The need for simple, obvious reporting channels becomes clear when employees aren’t sure who to alert. [37:00] A breakdown of common cover stories shows why attackers lean on confidence and industry jargon. [39:50] Urgency and pressure tactics surface as key components of social engineering and why “polite paranoia” helps. [41:14] A viral prank underscores how easily an unverified person can be escorted into restricted areas. Thanks for joining us on Easy Prey. Be sure to and leave a nice review. Links and Resources: /episode/index/show/easyprey/id/39256690

The Scam You Never See Coming 12/03/2025

The Scam You Never See Coming Fraud today doesn’t feel anything like it used to. It’s not just about somebody skimming a credit card at a gas pump or stealing a check out of the mail. It has gotten personal, messy, emotional. Scammers are building relationships, earning trust, and studying the little details of our lives so they can strike when we’re tired, distracted, or dealing with something big. And honestly, most people have no idea how far it’s gone. My guest, Ian Mitchell, has spent more than 25 years fighting fraud around the world and leading teams in the financial sector. He’s the founder of The Knoble, a nonprofit bringing banks and industry leaders together to protect vulnerable people from scams, human trafficking, and exploitation. Ian has seen the evolution of fraud firsthand, from the old-school days of stolen cards to the organized global crime networks using technology, AI, and human manipulation to scale at a pace we’ve never experienced before. What stood out to me is Ian’s belief that the strongest defense doesn’t start with fancy tools or tighter security. It starts at home. Real conversations with our kids about safety online. Checking in on aging parents. Talking openly with people we trust so scammers can’t isolate us and break us down. It’s serious work, but Ian is hopeful. He believes there are far more good people than bad, and when we look out for each other, we’re a lot harder to exploit. Show Notes: [00:58] Ian unexpectedly shifted from music and modeling into the world of fraud prevention. [01:19] Founding The Knoble and building a global network to fight human crimes and protect vulnerable populations. [01:49] A look at Follow the Money, the documentary project raising awareness about exploitation and financial crime. [02:19] Why Ian believes crimes of exploitation have moved directly into our homes and daily lives. [03:08] The early moment when Ian uncovered a major fraud ring while working at an internet company. [06:44] How canceling $300,000 in fraudulent orders changed the direction of his career. [08:11] Reflections on the “wild west” early days of online fraud and security. [11:01] How fraud evolved from stolen cards into emotional manipulation and trust-based scams. [12:49] The post-COVID surge in scams and the shift toward targeting individuals instead of systems. [14:03] Why fighting fraud today requires global coordination and an army of trained professionals. [16:38] Scammers coaching victims to distrust banks, friends, and even family members. [17:05] The longest romance-style scam Ian has seen — an eight-year manipulation before money was ever requested. [18:25] Discussion on timing, trust, and why even smart people can be caught off guard. [22:05] Ian shares his own experience dealing with identity theft and the complexity of proving it wasn’t him. [23:22] AI and big data transforming broad scam attempts into precise, personalized attacks. [25:31] The alarming rise of sextortion schemes targeting kids ages 13–16 and why awareness is critical. [26:40] The urgent need for uncomfortable safety conversations within families. [28:09] Why Ian believes the first line of defense isn’t technology — it’s communication at home. [29:30] The emotional impact on scam victims: shame, isolation, and loss of confidence in judgment. [31:13] How AI can be used for good and why the industry must move quickly to fight back. [40:40] Three essential conversations families should start having right now. [41:21] Protecting children through parental controls, boundaries, and digital safety. [42:42] Encouraging open dialogue with aging parents about financial protection and autonomy. [44:19] Finding balance: staying vigilant without living in fear. [47:57] A hopeful reminder that there are far more good people than bad — and collective action matters. [48:30] Where to find Ian, learn more about The Knoble, and connect with his work. Thanks for joining us on Easy Prey. Be sure to and leave a nice review. Links and Resources: /episode/index/show/easyprey/id/39151410

Hacking AI 11/26/2025

Hacking AI AI has brought incredible new capabilities into everyday technology, but it’s also creating security challenges that most people haven’t fully wrapped their heads around yet. As these systems become more capable and more deeply connected to the tools and data we rely on, the risks become harder to predict and much more complicated to manage. My guest today is Rich Smith, who leads offensive research at MindGard and has spent more than twenty years working on the front lines of cybersecurity. Rich has held leadership roles at organizations like Crash Override, Gemini, Duo Security, Cisco, and Etsy, and he’s spent most of his career trying to understand how real attackers think and where systems break under pressure. We talk about how AI is changing the way attacks happen, why the old methods of testing security don’t translate well anymore, and what happens when models behave in ways no one expected. Rich also explains why psychology now plays a surprising role in hacking AI systems, where companies are accidentally creating new openings for exploitation, and what everyday users should keep in mind when trusting AI with personal information. It’s a fascinating look behind the curtain at what’s really going on in AI security right now. Show Notes: [01:00] Rich describes getting into hacking as a kid and bypassing his brother’s disk password. [03:38] He talks about discovering Linux and teaching himself through early online systems. [05:07] Rich explains how offensive security became his career and passion. [08:00] Discussion of curiosity, challenge, and the appeal of breaking systems others built. [09:45] Rich shares surprising real-world vulnerabilities found in large organizations. [11:20] Story about discovering a major security flaw in a banking platform. [12:50] Example of a bot attack against an online game that used his own open-source tool. [16:26] Common security gaps caused by debugging code and staging environments. [17:43] Rich explains how AI has fundamentally changed offensive cybersecurity. [19:30] Why binary vulnerability testing no longer applies to generative AI. [21:00] The role of statistics and repeated prompts in evaluating AI risk and failure. [23:45] Base64 encoding used to bypass filters and trick models. [27:07] Differentiating between model safety and full system security. [30:41] Risks created when AI models are connected to external tools and infrastructure. [32:55] The difficulty of securing Python execution environments used by AI systems. [35:56] How social engineering and psychology are becoming new attack surfaces. [38:00] Building psychological profiles of models to manipulate behavior. [42:14] Ethical considerations and moral questions around AI exploitation. [44:05] Rich discusses consumer fears and hype around AI’s future. [45:54] Advice on privacy and cautious adoption of emerging technology. Thanks for joining us on Easy Prey. Be sure to and leave a nice review. Links and Resources: /episode/index/show/easyprey/id/39150940

The Ransomware War 11/19/2025

The Ransomware War Ransomware isn’t a lone hacker in a hoodie. It’s an entire criminal industry complete with developers, brokers, and money launderers working together like a dark tech startup. And while these groups constantly evolve, so do the tools and partnerships aimed at stopping them before they strike. My guest today is Cynthia Kaiser, former Deputy Assistant Director of the FBI’s Cyber Division and now the Head of the Ransomware Research Center at Halcyon. After two decades investigating global cyber threats and briefing top government leaders, she’s now focused on prevention and building collaborations across government and industry to disrupt ransomware actors at their source. We talk about how ransomware groups operate, why paying a ransom rarely solves the problem, and what layered defense really means for organizations and individuals. Cynthia also shares how AI is reshaping both sides of the cyber arms race and why she believes hope, not fear, is the most powerful tool for defenders. Show Notes: [01:04] Cynthia Kaiser had a 20-year FBI career and has now transitioned from investigation to prevention at Halcyon. [03:58] The true scale of cyber threats is far larger than most people realize, even within the government. [04:19] Nation-state and criminal activity now overlap, making attribution increasingly difficult. [06:45] Cynthia outlines how ransomware spreads through phishing, credential theft, and unpatched systems. [08:08] Ransomware is an ecosystem of specialists including developers, access brokers, money launderers, and infrastructure providers. [09:55] Discussion of how many ransomware groups exist and the estimated cost of attacks worldwide. [11:37] Ransom payments dropped in 2023, but total business recovery costs remain enormous. [12:24] Paying a ransom can mark a company as an easy target and doesn’t guarantee full decryption. [13:11] Example of a decryptor that failed completely and how Halcyon helped a victim recover. [14:35] The so-called “criminal code of ethics” among ransomware gangs has largely disappeared. [16:48] Hospitals continue to be targeted despite claims of moral restraint among attackers. [18:44] Prevention basics still matter including strong passwords, multi-factor authentication, and timely patching. [19:18] Cynthia explains the value of layered defense and incident-response practice drills. [21:22] Even individuals need cyber hygiene like unique passwords, MFA, and updated antivirus protection. [23:32] Deepfakes are becoming a major threat vector, blurring trust in voice and video communications. [25:17] Always verify using a separate communication channel when asked to send money or change payment info. [27:40] Real-world example: credential-stuffing attack against MLB highlights the need for two-factor authentication. [29:55] What to do once ransomware hits includes containment, external counsel, and calling trusted law-enforcement contacts. [32:44] Cynthia recounts being impersonated online and how she responded to protect others from fraud. [34:28] Many victims feel ashamed to report cybercrime, especially among older adults. [36:45] Scams often succeed because they align with real-life timing or emotional triggers. [38:32] Children and everyday users are also at risk from deceptive links and push-fatigue attacks. [39:26] Overview of Halcyon’s Ransomware Research Center and its educational, collaborative goals. [42:15] The importance of public-private partnerships in defending hospitals and critical infrastructure. [43:38] How AI-driven behavioral detection gives defenders a new advantage. [44:48] Cynthia shares optimism that technology can reduce ransomware’s impact. [45:43] Closing advice includes practicing backups, building layered defenses, and staying hopeful. Thanks for joining us on Easy Prey. Be sure to and leave a nice review. Links and Resources: /episode/index/show/easyprey/id/38861320

Opportunistic Crimes 11/12/2025

Opportunistic Crimes Criminals are always adapting. Whether it’s copper wiring stripped from job sites or porch pirates grabbing deliveries in broad daylight, they keep finding new ways to take what isn’t theirs. But maybe prevention isn’t about harsher punishment or more cameras. Maybe it’s about smarter design and understanding what drives people to steal in the first place. My guest today is Dr. Ben Stickle, a professor of criminal justice at Middle Tennessee State University and one of the country’s top researchers on property crime. Before entering academia, he worked in law enforcement, which gives him a rare mix of real-world perspective and research-based insight. His work on metal theft, catalytic converter crime, and package theft sheds light on who’s actually committing these offenses, what motivates them, and which prevention methods truly work. We discuss how fluctuating metal prices influence theft rates, why cameras often fail to stop certain crimes, and how a few simple design changes to your home can make a real difference. Dr. Stickle also shares unexpected examples of modern theft, from stolen pets to disappearing beehives, and explains how communities can act early before small trends turn into national headlines. Show Notes: [01:22] Ben recalls his early years as a police officer and what motivated him to serve. [01:27] The conversation moves into crime scene investigation training and lessons from real-world cases. [03:38] Ben talks about transitioning into teaching and research, guided by a drive to improve policing through knowledge. [05:30] The focus turns to crime prevention and understanding how to stop crimes before they happen. [06:15] Discussion shifts to metal theft, from copper wiring to catalytic converters, and the steep cost of replacing what’s stolen. [10:47] Ben explains how metal theft isn’t new, tracing its roots all the way back to ancient Greece. [14:58] The challenges of balancing better security design with cost and practicality come to light. [17:46] The topic turns to porch piracy and why package theft has become one of the most common crimes in America. [19:43] Ben breaks down how daily routines influence theft risk and how thieves range from organized groups to impulsive opportunists. [25:23] The role of cameras is questioned as Ben explains why surveillance doesn’t always deter crime. [27:00] Practical prevention strategies emerge like delivering to lockers, hiding packages, and using better drop-off options. [28:53] New tech enters the discussion with alarms, GPS tracking, and geofencing tools designed to stop porch pirates. [29:14] Ben explores how rethinking porch layouts could help protect deliveries and reduce crime opportunities. [31:47] The conversation expands to environmental criminology and how physical spaces can influence criminal behavior. [34:00] Ben emphasizes the importance of targeted prevention instead of one-size-fits-all solutions. [38:00] The value of using local crime data, rather than fear-driven news, to make safety decisions is underscored. [40:30] Emerging trends come up, from pet and beehive thefts to crimes tied to the growing sharing economy. [42:00] The episode wraps with takeaways on prevention, awareness, and where listeners can find Ben’s research. Thanks for joining us on Easy Prey. Be sure to and leave a nice review. Links and Resources: /episode/index/show/easyprey/id/38742565

Post Scam Guidebook 11/05/2025

Post Scam Guidebook Fraud usually gets talked about in numbers like how much money was stolen, how many people were affected, how many cases got filed. But behind every one of those numbers is a person who’s been blindsided, manipulated, or left trying to rebuild trust in others and in themselves. This episode shifts the focus back to those human stories and the fight to protect them. My guest, Freddie Massimi, has spent more than a decade helping scam victims find both financial and emotional recovery, bringing empathy and understanding to a field that too often feels cold and procedural. As a certified financial crimes investigator and program manager at The Knoble, Freddie has made it his mission to bridge the gap between institutions and individuals. He shares the heartbreaking and hopeful moments that define his work including one phone call that saved a life. Along with how that experience changed the way he thinks about what true fraud prevention really means. Freddie also opens up about The Knoble’s Post-Scam Victimization Guide, a collaborative, trauma-informed resource designed to help victims regain control of their lives and prevent re-victimization. From crypto scams to romance cons, he explains how these schemes keep evolving, why empathy is still one of the best tools we have, and how every fraud fighter can make a difference simply by listening and responding with humanity. Show Notes: [00:40] Freddie shares his background as a certified financial crimes investigator and program manager at The Knoble. [01:40] A look back at Freddie’s early path into criminal justice and how empathy shaped his fraud-fighting approach. [03:07] The story of a Tennessee widow who lost $300,000 in a pig-butchering crypto scam. [04:30] Freddie’s emotional account of saving a victim’s life and how it reframed his mission to protect others. [07:42] The rise of collaborative fraud-fighter networks and Freddie’s work leading The Knoble’s post-scam initiatives. [08:11] How The Knoble unites financial institutions, law enforcement, and NGOs to address “human crime.” [08:58] Development of the Post-Scam Victimization Guide, a trauma-informed resource for banks and fraud teams. [10:39] How financial crime has evolved from simple check scams to complex digital exploitation and trafficking. [13:01] The need for faster, more transparent information sharing between banks and law enforcement. [14:04] What makes the Post-Scam Guide different including actionable steps, empathy-driven language, and real-world tools. [15:00] Sextortion cases, Gavin’s Law, and how shame and silence compound the harm. [18:30] Practical tools in the guide, including hotline numbers, QR codes, and scripts for supporting victims. [20:20] How to talk to romance scam victims with compassion including using questions that spark reality checks, not judgment. [22:00] Why shame keeps scams underreported and how trauma-informed communication changes outcomes. [23:19] The role of technology in scams: remote access, malware, and how scammers exploit smartphones and computers. [24:36] Shoutout to Kitboga for his cybersecurity tools and awareness campaigns against scam call centers. [25:22] Why elderly victims remain the most vulnerable and how education can empower prevention. [27:24] The double victimization cycle like when scammers return pretending to recover lost money. [30:00] Freddie’s real-world example of helping a victim secure their accounts and recover identity. [32:50] How banks can adjust fraud detection systems to catch hidden patterns of exploitation. [34:30] Spotting red flags in gift card purchases and why speaking up can literally save lives. [36:31] Freddie’s advice for anyone who suspects they’re being scammed: stop all contact and secure your accounts. [37:06] The importance of documenting everything and reporting through IC3.gov and law enforcement. [38:30] Emotional recovery and community support are just as vital as financial recovery. [41:00] The biggest mistake victims make after being scammed is staying silent out of shame or fear. [41:40] Freddie’s story about protecting his own grandmother from IRS and WhatsApp scams. [43:00] Common text-message scams and why you should never reply, even with “wrong number.” [44:48] How to access The Knoble’s free, vetted Post-Scam Victimization Guide. [45:30] Where to connect with Freddie and The Knoble’s wider fraud-fighter network. Thanks for joining us on Easy Prey. Be sure to and leave a nice review. Links and Resources: /episode/index/show/easyprey/id/38725590

Can You Trust Anything Online 10/29/2025

Can You Trust Anything Online You think you’d never fall for a scam until you meet someone like Kitboga. He’s a software engineer who’s turned his curiosity about online fraud into a full-time mission to outsmart scammers and protect the people they target. His YouTube channel, The Kitboga Show, has millions of followers and nearly a billion views, thanks to his mix of humor, empathy, and clever ways of exposing how scams really work. In our conversation, Kit opens up about how this all started, what it’s really like to spend hours pretending to be a scam victim, and how organized crime has turned fraud into a massive global business. He shares what’s changed over the years and why those old “red flags” don’t always work anymore and how new tools like deepfakes and AI have made deception harder to spot than ever. Kit also talks about his newest project, Serif Secure, a free tool he created to help people clean and protect their computers after a scam attempt. He’s honest, thoughtful, and a little funny even when the subject is dark. By the end, you’ll see just how much one person can do to fight back. Show Notes: [01:15] Kit explains how he got into “scam baiting” and why protecting victims became personal. [03:05] He shares how streaming scam calls to friends unexpectedly turned into a viral mission. [06:07] Kit recounts nearly falling for a Discord impersonation scam himself. [09:17] We discuss how deepfakes and AI are changing what a “red flag” looks like online. [11:31] Scammers now use real services like PayPal and DocuSign to appear legitimate. [13:11] Kit explains how long-term investment and “pig-butchering” scams draw people in slowly. [15:51] Fraudsters are now going after 401(k)s and retirement funds instead of small cash grabs. [17:00] We examine how fake phone numbers and online ads make verification harder than ever. [19:56] Kit talks about the emotional toll of scam-baiting and why he sometimes needs a break. [21:51] We reflect on why decades-old scams, like Nigerian letters, still thrive today. [23:57] The scale of organized fraud is compared to global industries worth trillions. [25:41] Kit admits scams will never truly disappear—only evolve with new technology. [26:44] We learn how his team uses automation to detect and map out scam networks. [30:24] Kit describes juggling live streaming with scam calls and the role humor plays in coping. [33:37] He explains why scammers’ aggression still works and what it reveals about victims. [37:00] Kit shares moving stories of victims, including a widower deceived in a romance scam. [40:00] We explore how scams erode self-trust and make victims doubt their own judgment. [42:13] Kit talks about working with law enforcement and the need for stronger collaboration. [44:10] We hear about Serif Secure, his anti-scam software designed to protect users’ devices. [47:04] The software now proactively blocks remote access tools and phishing websites. [48:14] Kit warns about “scam recovery” frauds and the cruel trick that targets victims twice. [49:30] We wrap with practical advice on skepticism, security, and staying a step ahead of scammers. Thanks for joining us on Easy Prey. Be sure to and leave a nice review. Links and Resources: /episode/index/show/easyprey/id/38646315

Real Time Fraud Detection 10/22/2025

Real Time Fraud Detection Everywhere you turn, someone’s trying to fake something like an image, a voice, or even an entire identity. With AI tools now in almost anyone’s hands, it takes minutes, not days, to create a convincing fake. That’s changed the game for both sides. The fraudsters have new weapons, and the rest of us are scrambling to keep up. The real question now isn’t just how to stop scams, but how to know who or what to trust online. My guest today, Bala Kumar, spends his days on the front lines of that battle. He’s the Chief Product and Technology Officer at Jumio, a company working to make digital identity verification faster, smarter, and safer. Bala has more than twenty years in the industry, including leadership roles at TransUnion, and he’s seen firsthand how the race between innovation and exploitation never really ends. It just keeps speeding up. In our conversation, Bala shares how generative AI has supercharged the fraud world, what makes identity such a fragile link in digital trust, and why biometrics may finally offer a way forward. We also dig into the psychology behind online risk, how convenience often wins over caution, and what small habits can help people protect themselves in an age where deception looks more real than ever. Show Notes: [01:04] Bala Kumar has a background in product management and fraud prevention from TransUnion to Jumio. [01:59] He describes how fraudsters constantly evolve, forcing companies to anticipate attacks instead of just reacting. [03:56] The quality of manipulated images has skyrocketed, making real vs. fake nearly indistinguishable. [05:17] Jumio’s systems catch most fake IDs, but Bala admits even advanced systems must keep auditing for missed fraud. [07:16] Regular audits and rapid response cycles help Jumio identify attack spikes within 24–48 hours. [09:40] Generative AI has dramatically increased the speed and volume of fraud attempts across industries. [11:33] Jumio uses cross-transaction risk analysis to detect emerging fraud patterns and shut down attacks quickly. [13:00] Fraudsters move from one platform to another, always searching for weaker defenses and faster wins. [15:10] Bala explains how fraud prevention has expanded beyond banking into gaming, dating, and gig platforms. [16:38] Consumers crave low friction, which ironically makes them more vulnerable to scams. [17:20] Instant gratification culture pressures companies to reduce security steps, fueling greater risk. [19:52] New AI-driven fraud tactics include injected camera feeds and highly realistic deep fakes. [20:12] Old tricks like “send me a selfie with proof” no longer work—deepfakes can now mimic anything. [22:22] Bala sees biometrics as the next major safeguard for digital identity and real-time verification. [23:12] Facial recognition has become mainstream, paving the way for secure and low-friction identity checks. [26:19] Jumio is already deploying biometric check-ins for events and hotel registrations with great success. [27:30] Account recovery and payout systems now use liveness and device checks to confirm identity safely. [30:09] Bala critiques outdated knowledge-based questions like “What’s your favorite food?” as unreliable security. [31:12] Consumers lack visibility into which apps use strong verification or multi-factor authentication. [33:56] He calls for an independent rating system to rank apps based on security and identity protection. [37:53] Bala urges users to question why companies ask for personal data like SSNs or ZIP codes. [39:29] Even a ZIP code and last name can expose personal records, highlighting the need for awareness. Thanks for joining us on Easy Prey. Be sure to and leave a nice review. Links and Resources: /episode/index/show/easyprey/id/38646005

Child Predator Tactics 10/15/2025

Child Predator Tactics Kids spend more time online than ever, and for the most part it feels normal. They’re gaming, watching videos, and chatting with friends. But hidden in those same spaces are adults who know how to pose as kids, build trust, and push conversations into dangerous territory. Parents might think it couldn’t happen to their child, yet detectives see how quickly an “innocent” interaction can turn into grooming or extortion. That’s the world Detective Seth Cockerham works in every day. He’s been in law enforcement in Texas for close to a decade, and the last few years have been dedicated to investigating crimes against children. He talks about these cases with both the eye of an investigator and the heart of a parent, because he knows what it’s like to raise kids in a world where technology isn’t going away. Seth explains how predators move kids off kid-friendly apps into spaces parents can’t easily monitor, what behaviors should make families pay attention, and why kids often keep things to themselves. He also shares what has worked in his own home like parental control tools, early conversations about boundaries, and making sure his daughters know they can come to him about anything. At the end of the day, his message is simple: if your child says something feels wrong, take it seriously. Show Notes: [01:07] Seth explains his path into law enforcement and how he moved into child crime investigations. [02:24] Why drowning and neglect cases motivated him to take a deeper role in protecting kids. [04:05] The personal impact of working child abuse cases and balancing it as a parent. [05:30] How predators go where kids are online, from YouTube to gaming platforms with chat features. [07:00] Grooming tactics predators use, often pretending to be the same age to build trust. [07:40] Grooming can escalate in hours or take weeks, with predators moving kids to apps like Snapchat. [10:39] AI filters sometimes detect inappropriate content, but predators still find ways around it. [11:52] Behavioral changes are often the first signs kids are being exploited or manipulated online. [14:10] Why some kids go to police instead of parents and how Seth builds trust with families. [16:47] Most child abuse cases involve someone the child already knows; online cases are often strangers. [18:20] International predators make prosecutions harder, especially in sextortion cases. [21:08] Managing families’ expectations when investigations take longer than TV shows portray. [23:55] Fastest time Seth has moved from a report to an arrest in an online case. [24:14] Common traits of perpetrators, often highly tech-savvy with strong knowledge of systems. [26:46] The parental control tools Seth uses at home, including the Bark phone for his kids. [29:30] How to reset boundaries with older kids and use resources like NetSmartz for education. [32:37] Seth’s advice to kids: never send selfies to strangers, don’t believe threats, tell a trusted adult. [33:39] His warning about sextortion: paying money never works, it only leads to more demands. [36:20] Resources for victims include counseling through advocacy centers and photo removal tools. [37:20] Seth’s key takeaway: listen to your kids and take their concerns seriously. Thanks for joining us on Easy Prey. Be sure to and leave a nice review. Links and Resources: /episode/index/show/easyprey/id/38445590

Identity Trafficking 10/08/2025

Identity Trafficking Some people are willing to hand over their identities for cash, while organized fraudsters are lining up to buy them. What used to be a matter of stolen credit cards has turned into a global marketplace where personal details fuel large-scale fraud. Now with AI, automation, and deepfakes making impersonation easier than ever, it’s becoming much more difficult to protect identities. To understand how we got here and what can be done, I spoke with Ofer Friedman, Chief Business Development Officer at AU10TIX. Ofer has spent more than 15 years in the identity verification and compliance world, working with companies like PayPal, Google, Uber, and Saxo Bank. He’s seen the evolution from basic ID checks to today’s sophisticated fraud-as-a-service platforms, where attackers can buy stolen data cheaply, sometimes for just a few dozen dollars, and use it to launch real-time, undetectable attacks. Ofer explains why traditional approaches like uploading a photo of your ID are no longer enough, and why privacy, in practice, is already gone. He walks through the “minefield strategy” of fraud prevention, where businesses must layer multiple defenses like device, network, and behavioral indicators. We also talk about the rise of digital IDs, the coming challenge of quantum computing, and why regulators and service providers, not consumers, are now the ones who must shoulder the responsibility of protecting identities. Show Notes: [01:00] Ofer explains his role in forecasting fraud trends and designing solutions, drawing from years in identity verification and compliance. [03:32] The conversation turns to people selling their identities, with fraudsters buying because impersonation is easier than ever. [05:18] Ofer describes how sales happen in encrypted channels like Telegram or Discord, often targeting desperate individuals. [07:07] He calls these sellers “identity mules,” noting they only receive a few dozen dollars per transaction. [08:20] With billions of stolen data points in circulation, there’s more identity data than people, making personal data cheap and plentiful. [09:00] Regulations require minimal information, often just basic ID details and a selfie, which makes fraud easier to attempt. [11:00] Deepfakes and injection attacks undermine even live ID checks, giving rise to fraud-as-a-service platforms that automate attacks. [13:00] New age verification laws in the US and UK highlight the growing tension between privacy and regulation. [15:53] Ofer outlines the “minefield strategy,” where layered defenses (ID, device, network, behavior) are needed since no single tool is sufficient. [18:46] The discussion shifts to how fraud is global, not just American, and why digital IDs may offer better protection though not without flaws. [21:45] Fraud is evolving quickly with automation, enabling fraudsters to launch massive, randomized attacks. [29:03] Ofer explains the three lines of defense: live checks, collateral risk factors, and behavioral monitoring. [31:40] He stresses that privacy is effectively dead, as the balance between privacy and security always favors security. [34:47] Consumer education won’t stop fraud—technology and companies must take the lead in identity protection. [39:14] Identity verification and cybersecurity are merging into one process that scrutinizes users everywhere online. [45:34] The rise of agentic AI could reduce friction in transactions, but desensitization means people accept more scrutiny over time. [47:24] Ofer argues regulations need to evolve, calling for service providers to be rated and held to higher standards. [50:36] He reflects that we’re moving into a new era where deepfakes and impersonation will affect not just finances but media, politics, and trust itself. [52:05] Ofer closes with advice on evaluating identity verification vendors, emphasizing layered defenses and transparency. Thanks for joining us on Easy Prey. Be sure to and leave a nice review. Links and Resources: /episode/index/show/easyprey/id/38394170

Technology, Trust & Time 10/01/2025

Technology, Trust & Time Technology is moving faster than our ability to process its impact, forcing us to question trust, motivation, and the value of our time. Few people have had a closer view of those shifts than Esther Dyson. With a background in economics from Harvard, Esther built a career as a journalist, author, commentator, investor, and philanthropist, with a unique ability to spot patterns across industries and challenge assumptions before they become mainstream. She is the executive founder of Wellville, a ten-year nonprofit project dedicated to improving equitable well-being in communities across the United States. Beyond her nonprofit work, Esther has been an active angel investor in healthcare, open government, digital technology, biotechnology, and even outer space. She’s currently focusing on health and technology startups, especially the ones that actually care about human connection instead of just making everything faster and more efficient. When we chatted, Esther made this really compelling point about AI. She thinks we're asking the wrong question when we debate whether artificial intelligence is good or bad. What really matters, she argues, is how we choose to interact with it. We dove into some tough ethical questions about how quickly we're adopting these technologies, this concept she calls "information diabetes," and why being upfront about who's funding what and why is absolutely crucial if we want to trust anything anymore. Show Notes: [01:44] Esther describes her career path from journalism to independent investing and healthcare projects. [02:52] She explains why Wellville had a set end date and connects it to her upcoming book on time and mortality. [04:08] Esther gives her perspective on AI, tracing its evolution from expert systems to neural networks and LLMs. [06:17] She stresses the importance of asking who benefits from AI and being aware of hidden motives. [12:44] The conversation turns to ethical challenges, biased research, and the idea of “information diabetes.” [15:37] Esther reflects on how wealth and influence can make it difficult to get honest feedback. [18:09] She warns that AI speeds everything up, making it easier to do both good and harm. [20:14] Discussion shifts to the value of work, relationships, and finding meaning beyond efficiency. [25:45] Esther emphasizes negotiation, balance, and how ads and AI should benefit everyone involved. [27:28] She highlights areas where AI could be most beneficial, such as healthcare, education, and reducing paperwork. [29:26] Esther argues that AI companies using public data should help fund essential workers and services. [31:08] She voices skepticism of universal basic income and stresses the need for human support and connection. [34:55] Esther says AI is far from sentience and accountability lies with the humans controlling it. [36:46] She explains why AI wouldn’t want to kill humans but might rely on them for energy and resources. [37:33] The discussion turns to addiction, instant gratification, and the importance of valuing time wisely. [41:02] Esther compares GDP to body weight and calls for looking deeper at its components and meaning. [42:19] She explains why she values learning from failures as much as from successful investments. [43:18] Esther closes with advice: ask good questions, stay curious, and never underestimate the power of a smile. Thanks for joining us on Easy Prey. Be sure to and leave a nice review. Links and Resources: /episode/index/show/easyprey/id/38393550

The Global Scam Battle 09/24/2025

The Global Scam Battle Cybercrime continues to evolve in sophistication and scale, with attackers running their operations much like businesses. From ransomware gangs with customer support desks to AI-generated phishing campaigns that erase traditional red flags, scams are becoming harder to detect and stop. In this episode, David Bittner, host of the CyberWire Daily Podcast, shares his perspective on the changing landscape of fraud and cyberattacks. Drawing on his background in media, theater, and podcasting, as well as years of reporting on security issues, he explains how both criminals and defenders are using AI, why ransomware has exploded instead of fading, and how scams exploit human trust and expectations.. David also talks about common scams hitting people today, from toll violation texts and fake bank calls to romance scams on social media. He recounts personal experiences of being targeted, including a Facebook credential-harvesting attempt and an exit-ramp “out of gas” con, to show that no one is immune. Looking ahead, he predicts existing scams will keep evolving, AI will continue to raise the stakes, and defenders may eventually need AI “agents” watching out for them in real time. Show Notes: [02:00] David explains how CyberWire grew from a daily news brief into a full podcast network covering cybersecurity. [04:21] David recalls his background in media, theater, and early computer culture that shaped his path. [05:52] We hear how luck, timing, and technical skills combined to make podcasting a success for him. [07:17] David shares why he believes AI is the biggest change to cybersecurity in the past decade. [08:00] He notes that bad grammar is no longer a reliable phishing red flag thanks to large language models. [10:11] We discuss how phishing awareness training must adapt to more convincing scams. [12:30] He reflects on the unexpected rise of ransomware compared to early predictions about cryptomining. [14:08] David explains how ransomware groups now operate like corporations with support teams. [16:00] He raises concerns about ransom payments funding overseas criminal networks in Russia and North Korea. [18:15] We learn how scammers use call centers and human trafficking to scale their operations. [19:30] David describes current scam trends, including fake toll violation texts and AWS account alerts. [21:32] He points out how romance scams thrive on social media platforms like Facebook. [22:16] David recounts a frightening call where his mother was nearly scammed by criminals posing as bank security. [25:09] He emphasizes how scammers manipulate victims to stay locked into the story and ignore warnings. [26:03] We hear how criminals pressure victims into withdrawing cash, buying gold, or handing funds to unwitting couriers. [27:00] David shares a case where a delivery driver was tragically killed after being caught up in a scam pickup. [29:00] He talks about his own experiences of being scammed, including a Facebook credential-harvesting attempt. [32:08] David recalls falling for an “out of gas” roadside con and explains why he still prefers trusting people. [34:00] He reflects on how vague scam messages exploit imagination and insecurities. [36:08] We hear examples of scams that exploit real-life contexts, such as HR benefits or package deliveries. [37:45] David explains his current vigilance with real estate transactions and wire transfer fraud. [39:26] He predicts the next wave of scams will be evolutions of what already works, boosted by AI. [40:07] David outlines the persistence of “treasure box” and inheritance scams dating back hundreds of years. [41:02] He shares his hope that future AI “agents” will act as a safeguard for vulnerable users. [42:21] David speculates about “nuisance ransomware” that charges small amounts to fly under the radar. [43:25] He jokes about calling it “inconvenienceware” and wonders if such a niche could emerge. [44:39] David directs listeners to CyberWire.com to explore his podcasts and resources. Thanks for joining us on Easy Prey. Be sure to and leave a nice review. Links and Resources: /episode/index/show/easyprey/id/38102645

AI Supercharges Scams 09/17/2025

AI Supercharges Scams Cybercriminals are accelerating their attacks in ways that weren’t possible a few years ago. Artificial intelligence is giving them the ability to spin up phishing campaigns, voice clones, and deepfakes in minutes instead of days. As a result, the gap between what’s genuine and what’s fake is closing fast, making it harder for both individuals and organizations to defend themselves. I’m thrilled to welcome Brett Winterford, Vice President of Okta Threat Intelligence. Brett has had a front row seat to these changes. His team analyzes identity-based attacks and delivers insights to help organizations adapt their defenses. Brett previously served as Okta’s Regional CISO for Asia-Pacific and Japan and started his career as a journalist covering information security before moving into leadership roles in banking, government, and technology. In this episode, Brett explains how AI is reshaping the speed and scale of cybercrime, why trusted platforms like email, SMS, and collaboration tools are being targeted, and what practical steps can reduce risk. He highlights the growing importance of phishing-resistant authentication methods like passkeys, the need for clearer communication between service providers and users, and the role of collaboration across industries and law enforcement in pushing back against attackers. Show Notes: [00:00] Brett Winterford introduces himself as Vice President of Okta Threat Intelligence and explains how identity-based threats are monitored. [02:00] He shares his career path from cybersecurity journalist to CISO roles and now to leading threat intelligence. [05:48] Brett compares phishing campaigns of a decade ago with today’s AI-driven ability to launch attacks in minutes. [08:00] He notes how reconnaissance and lure creation have become easier with artificial intelligence. [10:40] Brett describes the shift from banking malware to generic infostealers that sell stolen credentials. [12:30] He explains how cryptocurrency changed the targeting of attacks by offering higher payouts. [14:21] We learn about the Poison Seed campaign that used compromised bulk email accounts to spread phishing. [15:26] Brett highlights the rise of SMS and other trusted communication channels as phishing delivery methods. [16:04] He explains how attackers exploit platforms like Microsoft Teams and Slack to bypass traditional defenses. [18:30] Brett details a Slack-based campaign where attackers impersonated a CEO and smuggled phishing links. [22:41] He warns that generative AI has erased many of the old “red flags” that once signaled a scam. [23:01] Brett advises consumers to focus on top-level domains, official apps, and intent of requests to detect phishing. [26:06] He stresses why organizations should adopt passkeys, even though adoption can be challenging. [27:22] Brett points out that passkeys offer faster, more secure logins compared to traditional passwords. [28:31] He explains how attackers increasingly rely on SMS, WhatsApp, and social platforms instead of email. [31:00] Brett discusses voice cloning scams targeting both individuals and corporate staff. [32:30] He warns about deepfake video being used in fraud schemes, including North Korean IT worker scams. [34:59] Brett explains why traditional media-specific red flags are less useful and critical thinking is essential. [37:15] He emphasizes the need for service providers to create trusted communication channels for verification. [39:29] Brett talks about the difficulty of convincing users to reset credentials during real incidents. [41:00] He reflects on how attackers adapt quickly and why organizations must raise the cost of attacks. [44:18] Brett highlights the importance of cross-industry collaboration with groups like Interpol and Europol. [45:24] He directs listeners to Okta’s newsroom for resources on threat intelligence and recent campaigns. [47:00] Brett advises consumers to experiment with passkeys and use official apps to reduce risk. [48:00] He closes by stressing the importance of having a trusted, in-app channel for security communications. Thanks for joining us on Easy Prey. Be sure to and leave a nice review. Links and Resources: /episode/index/show/easyprey/id/38102475

Vanishing is a Lie 09/10/2025

Vanishing is a Lie Trying to erase yourself from the internet sounds simple until you start counting up old accounts, scattered social media posts, and the hundreds of data brokers quietly collecting and selling your information. The reality is messy, and for most people, the idea of fully disappearing online is more myth than possibility. But there are practical steps you can take to cut down what’s out there and regain some control. My guest, Max Eddy, is a senior staff writer at Wirecutter who covers privacy, security, and software platforms. For one of his projects, he set out to see how much of his own digital footprint he could realistically reduce. Max shares what he discovered along the way and what worked, what didn’t, and how even small changes can make a meaningful difference. In our conversation, Max talks about the value of using password managers and email masking, what he learned from testing multiple data removal services, and the emotional side of deleting old social media history. He also explains why perfection isn’t the goal, and how thinking differently about privacy can help you stay one step ahead of scammers, marketers, and anyone else trying to piece together your personal information. Show Notes: [00:50] Max explains why he got into covering privacy and security and what keeps him motivated in the field. [03:27] We discuss the Wirecutter project on disappearing online and why it resonated with readers. [04:12] Using Have I Been Pwned, Max was able to reduce 350 online accounts down to 27 that needed immediate attention. [09:10] Max describes the tactics he used to break the links between his online accounts with fake names, masked emails, and random images. [11:55] We talk about data removal services, their limitations, and the challenges of removing certain public records. [17:52] We learn how scammers can piece together a person's complete profile from inconsistent, fragmented data from different data brokers. [18:54] We discuss how Google's removal tools only make information harder to find, but don't delete it. [23:15] We talk about the emotional side of deleting social media history and the automation tools he used to make it possible. [29:40] Max discusses the risks of deleting accounts entirely, from impersonation threats to losing important communication channels. [32:28] We talk about the value of taking a gradual approach to improving your digital privacy and how small, steady steps are most effective. [38:44] Max shares his key takeaways from the project: first, ask why you want to disappear, and second, remember that any effort to reduce data is valuable. Thanks for joining us on Easy Prey. Be sure to and leave a nice review. Links and Resources: /episode/index/show/easyprey/id/38000695

Hackers Are Winning 09/03/2025

Hackers Are Winning Cyberattacks aren’t just about hackers in hoodies anymore. Today, we’re up against professionalized, well-funded organizations that run like businesses. They use AI to crack defenses, run labs that simulate the tools we rely on, and rake in trillions while defenders struggle to keep pace. The scary part? Even the strongest companies and governments can fall behind when the threat landscape moves this fast. My guest, Evan Powell, has spent nearly 30 years in the cybersecurity world. He’s the founder and CEO of Deep Tempo, and a serial entrepreneur who’s helped industries from cloud data to resilience engineering make big transitions. Evan knows what it looks like when attackers have the upper hand, and he’s seen firsthand how enterprises try to shift the balance. In this conversation, Evan explains why compliance checkboxes aren’t enough, why raising the cost of an attack is often more realistic than stopping one outright, and how AI is reshaping both sides of the fight. He also shares the creative ways defenders are adapting, from honeypots to sock puppets, and the simple steps every one of us can take to make life harder for attackers. Show Notes: [00:57] Evan Powell introduces himself as founder and CEO of Deep Tempo, with nearly 30 years in cybersecurity and tech innovation. [02:39] He recalls a high-profile spearphishing case where the CIA director’s AOL email and home router were compromised. [03:51] Attackers are professionalizing, running AI-powered labs, and making trillions while defenders spend billions and still fall behind. [07:06] Evan contrasts compliance-driven “checkbox security” with threat-informed defense that anticipates attacker behavior. [09:40] Enterprises deploy creative tactics like honeypots and sock puppet employees to study attackers in action. [12:22] Raising the cost of attack through stronger habits, better routers, and multi-factor authentication can make attacks less profitable. [15:01] Attackers are using AI to morph and simulate defenses, while defenders experiment with anomaly detection and adaptive models. [20:56] Evan explains why security vendors themselves can become attack vectors and why data should sometimes stay inside customer environments. [24:50] He draws parallels between fraud rings and cybercrime, where different groups handle exploits, ransomware, and money laundering. [26:29] The debate over “hacking back” raises legal and policy questions about whether enterprises should strike attackers directly. [30:18] Network providers struggle with whether they should act as firewalls to protect compromised consumer devices. [34:59] Data silos across 50+ vendors per enterprise create “Franken-stacks,” slowing real-time defense and collaboration. [37:28] AI agents may help unify security systems by querying across silos and tightening the OODA loop for faster response. [39:10] MITRE’s ATT&CK framework and open-source collaboration are pushing the industry toward more shared knowledge. [41:05] Evan acknowledges burnout in cybersecurity roles but sees automation and better tools improving day-to-day work. [42:59] Final advice: corporations should rethink from first principles with data-centric solutions, and consumers must build protective habits like MFA and secret family phrases. Thanks for joining us on Easy Prey. Be sure to and leave a nice review. Links and Resources: /episode/index/show/easyprey/id/38000550

Before the Fraud Tsunami Hits with Ritesh Kotak 08/27/2025

Before the Fraud Tsunami Hits with Ritesh Kotak Scams aren’t what they used to be. These days, AI can write perfect emails, mimic voices, and even fake a video call so well you’d swear you were talking to the real person. The problem is, the timing of a scam can be just right when you’re distracted, busy, or looking for exactly what they’re offering. That’s when even the most careful person can get caught. My guest, Ritesh Kotak, knows this world inside and out. He’s a cybersecurity analyst, an Ontario lawyer, and a tech innovator who’s worked with Fortune 500 companies and served in policing, where he helped start one of Canada’s first municipal cybercrime units. He’s got a BBA, MBA, and JD, all focused on privacy, cybercrime, and the way emerging tech impacts everyday life. In our conversation, Ritesh explains how criminals are using AI as a weapon, how it can also be a shield, and why simple, low-tech steps, like having a secret phrase with family or confirming a request through a different channel, are still some of the best defenses. He even shares a close call he had himself, which is a good reminder that nobody’s immune when scams are this convincing. Show Notes: [00:50] Ritesh shares his background as a lawyer helping clients navigate AI, tech, and cybercrime. [01:18] His fascination with technology began at age three after taking apart his father’s computer. [03:59] In policing, Ritesh saw early signs of cybercrime blending with physical crime. [06:55] He demonstrates cybersecurity risks by live hacking a police chief, leading to the creation of a cybercrime unit. [09:16] A near-miss phishing scam involving discounted amusement park tickets highlights how timing plays a role. [15:14] Spoofed calls and evolving scam tactics make detection harder despite telecom safeguards. [17:09] Ritesh explains AI as both a sword for criminals and a shield for protection. [20:00] Generative AI enables flawless phishing emails, fake websites, and realistic deepfake audio and video. [28:00] Simple defenses like secret phrases and multi-channel verification can stop many scams. [31:45] Reporting scams to police can help investigations and sometimes recover funds. [33:17] Ritesh advocates for centralized fraud response centers to improve victim support. [36:45] Calling a lawyer can help victims navigate legal and civil remedies. [38:05] Final advice: pause, verify, and use low-tech habits to prevent high-tech crime. Thanks for joining us on Easy Prey. Be sure to and leave a nice review. Links and Resources: /episode/index/show/easyprey/id/37778405

Privacy is Dead 08/20/2025

Privacy is Dead Privacy in the digital age has grown from a background concern into one of the defining issues of our time. What began with simple questions about online safety has expanded into a complex, global conversation about how artificial intelligence, biometric data, and massive data ecosystems are reshaping daily life. Pam Dixon has been at the center of these discussions for more than two decades. As the founder and executive director of the World Privacy Forum, she’s worked across the U.S., Europe, India, Africa, and beyond, advising governments, international organizations, and policymakers on how to create effective privacy protections. In this episode, Pam takes us through the history of modern privacy law, the ways different regions approach the challenge, and the new frontiers like collective privacy, AI governance, and health data that demand fresh thinking. She also offers a grounded perspective on how to build systems that safeguard individuals while still allowing innovation to thrive, and why getting those guardrails right now will shape the future of trust in technology. Show Notes: [4:49] Pam identified privacy risks in early resume databases and produced a 50-page report on job boards, now known as job search platforms. [8:56] Pam now chairs the civil society work at OECD in AI, contributing to the Organisation for Economic Co-operation and Development Privacy Guidelines (first adopted in 1980). [11:17] The launch of the internet marked a major shift in privacy, transitioning from slower, isolated systems to globally connected networks. [11:46] Early adoption of the internet was limited to academia, government, and tech enthusiasts before reaching the public. [12:45] Privacy frameworks were built on Fair Information Practices, developed in the United States in the 1970s by the Health, Education, and Welfare Committee (later HHS). [15:58] GDPR was developed and enforced in 2018 with extraterritorial provisions applying to companies worldwide (General Data Protection Regulation, enacted in 2016 and enforced in 2018). [18:59] Large language models and deep machine learning advancements have created new and complex privacy challenges. [22:06] Some countries approach privacy with more flexibility and openness, while maintaining strong guardrails. [23:37] In June 2023, a University of Tokyo study on data privacy was presented at an OECD meeting, highlighting evolving global strategies. [26:30] Governments are working together on “data free flow with trust” to address cross-border data concerns. [28:09] Pam warns that AI ecosystems are still forming, and policymakers need to observe carefully before rushing into regulation. [28:31] She emphasizes the emerging issue of collective privacy, which impacts entire groups rather than individuals. [29:04] Privacy issues are complex and not linear; they require ongoing adaptation. [30:24] ChatGPT’s launch did not fundamentally change machine learning, but the 2017 transformer paper did, making AI more efficient. [31:53] Known challenges in AI include algorithmic bias related to age, gender, and skin tone. [33:07] Legislative proposals for privacy now require practical testing rather than theoretical drafting. [35:39] AI legislative debates often center on fears of harming innovation, but scientific data should guide regulation. [40:29] NIH reports caution participants in certain medical AI programs to fully understand risks before joining. [41:59] Some patients willingly share all their health data to advance medical research, while others are more cautious. [43:50] Tools for privacy protection are developing, but the field remains in transition. [48:56] Asia and Europe are leading in AI and privacy transitions, with strong national initiatives and regulations. [52:42] The U.S. privacy landscape relies on sector-specific laws such as HIPAA (1996) and COPPA (1998) rather than a single national framework. [54:48] Studies show that wealthy nations often have the least trust in their digital ecosystems, despite advanced infrastructure. [56:19] A little-known U.S. law, A119, allows for voluntary consensus standards in specialized areas, enabling faster innovation compared to ISO processes. [56:48] Voluntary standards can accelerate development in fields like medical AI, avoiding years-long delays from traditional approval processes. [57:32] An FDA case study on an AI-driven heart pump showed significant performance changes between initial deployment and later use, underscoring the importance of testing and oversight. Thanks for joining us on Easy Prey. Be sure to and leave a nice review. Links and Resources: /episode/index/show/easyprey/id/37778165

America’s Scam Crisis 08/13/2025

America’s Scam Crisis Most of us think of scams as random or isolated or something that just happens to unlucky people. But what if the truth is far more organized, far more disturbing? Behind many of today’s scams is a global web of criminal enterprises, structured like corporations and fueled by technology, data, and billions of stolen dollars. In this episode, we sit down with Ken Westbrook. Ken spent over three decades in the CIA before retiring, only to return to the fight after his own mother was targeted and lost most of her life savings to a tech support scam. That moment changed everything. He founded Stop Scams Alliance, a nonprofit on a mission to stop scams before they ever reach our devices. His approach? Building bridges between tech companies, banks, telecom, government, and consumer advocates to cut these criminal operations off at the source. Ken brings a rare blend of intel experience and personal urgency to this issue. He breaks down what’s really going on behind the scenes, why the U.S. is falling behind in this fight, and how other countries are pushing back effectively. If you think this can’t happen to you or someone you love, think again. This conversation is a wake-up call. Show Notes: [00:58] Ken is the founder and CEO of Stop Scams Alliance, a non-profit dedicated to reducing scams in the United States. [01:21] They are focused on the left of the boom or before the scam happens. [01:43] Ken served for 33 years in the CIA. [02:28] We learn how Ken's mother was scammed on Valentine's Day of 2023. He started looking into these scams, and he was horrified. [03:19] As a nation, we need to do better to defend ourselves. Ken came out of retirement to do just that. [03:32] His board of directors has a lot of government officials who decided to join the fight. We are literally under attack by foreign organized crime, and we're not doing enough to protect ourselves. [04:03] 21 million Americans are scammed each year. [04:45] The number of scam and fraud victims are increasing. [05:15] It's become a business, and the scammers are getting better at what they do. [06:36] How Chinese criminal gangs shifted from casinos to scamming operations. People join voluntarily or are sometimes kidnapped. [07:24] It's also expanding around the world. [10:12] The British government actually has a scam czar. So does Australia. They have a strategy and a fraud policy. [12:08] You think you're talking to the IRS or your bank, but you're not. [13:45] Having a whitelist for financial advertising. Other countries are finding value in authenticating, maybe the United States should pay attention. [15:36] Scammers love to get people on the telephone. In many countries, telecom companies will block spoofing calls from other countries. [16:47] We need authenticated text messages in the US. [17:42] We have more companies and free enterprise, so it's more complicated in the US. [19:35] We need somebody in charge. It's an economic war with transnational organized crime. [22:34] Fake investment scams are the number one scam when it comes to losses. [27:46] Ken shares what happened in his mom's case. It was a tech support scam. His mom clicked on an obituary site and scareware popped up. [30:08] The whole point is to get you to call a fake 1-800 number that you think is Microsoft. [30:51] The Phantom hacker was able to look up where she banked by using her phone number. Then they put her in touch with the fake fraud department at the bank. [32:11] Then they sent her to Home Depot to buy gift cards and then cashier's checks. [33:55] Fortunately the banks intervened, but she still lost a lot of money. [36:38] We need to realize that we're being attacked by Chinese cyber criminals. [39:38] People under the age of 50 are falling victim to scams more than the elderly people. [41:31] The average loss last year of an older person was $83,000. Older people are being targeted because of their demographic. [43:31] Criminals micro-target just like advertisers. [44:04] We all need to be aware of the threats out there. If you get a call that you're not expecting, always assume it's not legitimate. [45:21] Be wary of links. Thanks for joining us on Easy Prey. Be sure to and leave a nice review. Links and Resources: /episode/index/show/easyprey/id/37482745

How Fraudsters Choose Targets 08/06/2025

How Fraudsters Choose Targets It’s easy to think of fraud prevention as a technical problem with a software solution. But according to Brian Davis, effective fraud defense is just as much about people, trust, and communication as it is about tools and data. With over a decade of experience, Brian has built fraud teams from scratch, shaped company-wide strategy, and helped growing startups shift from reactive to proactive risk management. Brian is the Head of Fraud at Dodgeball, where he’s helping bring their orchestration platform to market, and the founder of House of Fraud, an invite-only community where top fraud professionals collaborate and share intel. He’s seen firsthand how fraudsters adapt quickly, and how internal misalignment or a lack of education can leave companies vulnerable. His layered approach focuses on understanding how business systems are abused and using that knowledge to design smarter defenses. In this episode, Brian shares his journey into the fraud space, explains why internal politics often matter more than policy, and offers a real-world breakdown of how fraud teams can gain traction and build trust. Whether you're running a digital subscription business, a fintech platform, or an e-commerce store, this conversation will help you think more clearly about why you’re a target and what you can do to make your organization harder to hit. Show Notes: [00:50] Brian is the head of fraud at Dodgeball Fraud Orchestration Platform. [01:15] We learn how Brian noticed something was off about 10 years ago when he was working for an accounting client. [02:01] He loved accounting, but as he got his master's degree, he started focusing on entrepreneurship and fraud. [02:45] He worked in accounting for a year and then became the first fraud hire of an e-commerce company. [03:30] Then he built out teams to help businesses combat fraud. [04:07] He's now on the vendor side of fraud prevention, and he does consulting and runs The Fraud Space community. [05:18] Brian likes the dynamic aspect of always having to solve a problem. Micro patterns pop up that can be connected to bigger patterns. [06:47] Most people are willing to help the fraud department, because it gets them what they want. [09:20] Issues that arise when doing a really good job in the fraud department and justifying the expense. [11:05] When coming into a new company, the areas where Brian starts looking for fraud. [12:04] The first step is to understand how the company makes decisions. He then begins with a surface map. How does a user interact with your site for an outcome? [16:29] Where the larger threats are coming from. [18:49] Understanding the fraudster's criminal journey and where they choose to attack. [25:25] Founders who have previously been hurt by fraud asked more questions. [28:20] Behaviors that might actually attract fraud. [30:58] How referral programs can attract fraud. [40:29] There are many similarities between the different types of fraud and the tools used across multiple industries. [41:23] Has Brian ever been the victim of a scam? [42:28] A fraud story purchasing sporting tickets through marketplace. [49:12] The pitfalls of passwords and password hygiene. Thanks for joining us on Easy Prey. Be sure to and leave a nice review. Links and Resources: /episode/index/show/easyprey/id/37456090

Hidden Dangers of AI in Cybersecurity 07/30/2025

Hidden Dangers of AI in Cybersecurity Everyone’s talking about AI these days, especially in cybersecurity. Sure, artificial intelligence can boost your defenses, but cybercriminals have noticed too. Now they're crafting phishing emails so believable it’s scary and finding clever paths around spam filters while zeroing in on vulnerabilities you didn’t even realize were there. Today, Aviad Hasnis joins the show. He's the CTO of Cynet Security and spent years running cybersecurity missions for the Israeli Defense Forces. Aviad’s here to help us figure out what the changing threat landscape really means, whether you're leading a corporate giant or just trying to keep your small business safe. From passwords getting scooped up to VPN setups from a decade ago that no one updated, Aviad’s seen just about everything go wrong. He also explains why copy-pasting AI-generated code might open you up to attacks you never saw coming. He’s big on education, common sense, and making sure you’re using multiple security layers. These days even one slip-up can give attackers exactly what they're looking for. Aviad also walks us through supply chain vulnerabilities and why they should keep you up at night. Whether you're the CISO of a Fortune 500 company or you’re running a small team with Bob, the go-to tech person juggling 18 other tasks, this episode is packed with practical insights to help you avoid the next big cybersecurity headache. While AI might be reshaping the cybersecurity landscape, staying secure still comes down to thoughtful planning, human judgment, and making sure someone you trust has your back. Show Notes: [01:08] Aviad has been Cynet's Chief Technology Officer for the past five years. Prior to that, he worked in cyber security for the Israeli Army. [02:18] He was always fascinated with computers and technology. When Iran had a technology problem, he realized that cybersecurity was what he wanted to do for the rest of his life. [03:19] Aviad shares a story about his friend's mother being exposed to a scam. She received a phone call from someone pretending to be a police officer. She even installed different executables on her laptop. She didn't realize she was being victimized until she transferred over five grand. [06:07] Social engineering is one of the most dominant ways to gain access. [08:39] The security implications of using AI. [09:30] It's important to have guardrails with how you use AI. [10:28] If you're just copying and pasting code you may copy something that could be vulnerable to exploits. [11:16] People need to be aware of the types of risk and educate themselves. [12:49] Conversations at the C-suite level for implementing AI. [13:43] The challenge is to harness AI the right way without replacing people. [15:18] It's important to use critical thinking when creating with AI. [16:04] AI is helping security by allowing people to consult and get information. You can also introduce vulnerabilities into your application if you just copy and paste from chat GPT without knowing the context. [17:05] The bad guys can also use AI. [17:56] AI has improved the quality of phishing scams. [21:36] Where organizations are missing out when it comes to sniffing out threats. This includes VPNs and SaaS or cloud. [22:52] Employees could be using their home computers to connect to the company VPN and then their kids might download some malware or trojan. Companies need to use two-factor authentication when it comes to VPNs. [24:11] Email phishing can be another way to steal credentials. [27:54] The most effective approach is security layers. [30:40] Another security measure is creating profiles where we know where you're logging in from. [33:35] Is this doom and gloom for small businesses? [34:48] The best solution for small businesses would be to find a company with an all-in-one solution. [37:11] The importance of being proactive, so you can act quickly if you see something suspicious. [38:24] How the move to the cloud affects security. [39:08] Shifting to the cloud is safer. [44:20] New threats on the horizon include threat actors utilizing AI. They love to get control of remote applications. Thanks for joining us on Easy Prey. Be sure to and leave a nice review. Links and Resources: /episode/index/show/easyprey/id/37455900

Author Scams Exposed 07/23/2025

Author Scams Exposed Writers pour their hearts into their work, but unfortunately, that passion can make them prime targets for scams. From fake agents and vanity publishers to slick marketing schemes and social media impersonators, the tactics have only gotten more sophisticated over time. In this episode, we dig into the murky world of publishing scams and how they work and who they target. Along with why even experienced authors can get caught off guard. Today’s guest is Victoria Strauss. Victoria is the author of nine fantasy and historical novels for adults and teens, and she’s also the co-founder of Writer Beware, a watchdog group sponsored by the Science Fiction and Fantasy Writers Association. Drawing from decades of experience, Victoria shares red flags to watch out for, practical steps authors can take to protect themselves, and eye-opening stories of deception that highlight just how easy it is to get pulled in. This conversation is about awareness and empowerment. Whether you’re just getting started or you’re a seasoned author, you’ll learn how to do your due diligence, where to turn for trustworthy resources, and how to avoid becoming an easy target in a complex industry. With tools like Writer Beware, Victoria equips authors to stay vigilant, protect their creative work, and steer clear of costly traps. Show Notes: [01:00] Victoria shares her background including publishing nine novels. She's a member of the Science Fiction and Fantasy Writers Association, which is the sponsor of Writer Beware. [01:49] Writer Beware was formed with Victoria and a colleague when they became interested in writer scams. [03:36] When it first began, the most common scams for fee-charging literary agents and scam editing referrals. [04:25] Most current scams are digital and focus on self-publishers. [05:11] We learn what a vanity publisher is. [06:22] How self-publishers do everything a writer does and everything a publisher does. [10:34] One marker for a scam can be solicitation and out-of-the-blue emails. [12:42] A lot of people offer services like cover design when they don't really have the experience or expertise. Research anyone you're going to hire and their experience. [15:50] Look for what to cover in a contract, such as keeping your copyright. Watch out for scam registration services. [17:36] A DM scam where the scammer impersonates a writer and offers a marketing service recommendation. [22:21] Be aware and understand what the risks are and what to look for. [23:52] Evaluating opportunities. [26:16] Use a credit card and report any problems. [27:51] The newest scams are usually on social media. [28:40] A crazy story about a literary agent who is charging upfront fees and even accepted fees for a conference and then faked her own death. [30:39] A cautionary tale of how a publishing marketing company from the Philippines scammed authors out of millions of dollars. Thanks for joining us on Easy Prey. Be sure to and leave a nice review. Links and Resources: /episode/index/show/easyprey/id/37413415

Tricked by Followers and Badges 07/16/2025

Tricked by Followers and Badges What if your social media success was built on deception, and it was working? In today’s episode, we hear from someone who knows exactly how that happens. Tim O’Hearn is a former software engineer and the author of Framed: A Villain’s Perspective on Social Media, a book that pulls back the curtain on how follower factories, automation, and persuasive technologies have shaped the online world we now take for granted. Tim doesn’t just theorize, he built these systems himself. Tim walks us through how his small side gig growing Instagram accounts evolved into a lucrative business, one that constantly navigated the blurry line between innovation and breaking platform rules. He opens up about the clever strategies he used to avoid detection and psychological hooks that made these methods so effective, as we explore the deeper consequences of social media’s addictive nature. We’ll also explore the hidden risks businesses and individuals face when they obsess over metrics and follower counts instead of genuine connections, and why most people don’t even realize they're caught up in this trap. Whether you're running a business, casually browsing, or just trying to figure out the complicated world of online attention, this conversation will give you a rare peek behind the curtain. And as you’ll find out, stepping away from it all might not be as straightforward as you'd think. Show Notes: [01:12] Tim recently published Framed: A Villain's Perspective on Social Media, a book that shares his journey from breaking the rules on social media to getting millions of followers for his clients. [02:15] We learn a little bit more about the beginnings of spamming the Internet and increasing online presence, including MySpace and Instagram, which evolved into getting more followers. [04:14] This created social proof and the possibility of higher conversion rates. [05:09] Increasing followers using botnets or fake followers. Organic growth and interacting with accounts that might follow or like. [08:35] Tim's business was Shark Social, where he bent the rules to get followers for clients. [09:53] The technical side of his operation. Proxies were used to mask their tracks. [12:30] Social media services have taken efforts to stop things like follower growth services. [14:54] Risks for businesses using social media growth platform services. It's against TOS, and your account can get banned. [18:36] Systems Tim built to target consumers using social media. The goal was to get users to spend more time on the app. [20:50] Thresholds for annoying users. It was shocking how many people allowed push notifications and other annoying things. [22:54] How social media affects Tim. [26:11] We learn how he feels about the influencer culture and promoting his book on TikTok. [27:14] Advice for business owners, including these services, may not get you more business. Pause before doing too much. [28:48] Individuals should focus on conversions. Thanks for joining us on Easy Prey. Be sure to and leave a nice review. Links and Resources: /episode/index/show/easyprey/id/37347785

Only 10 Seconds to Expose a Scam 07/09/2025

Only 10 Seconds to Expose a Scam What if you could stop a scam in real-time before the damage is done? In this episode, I’m joined by Nick Stapleton, an investigative journalist and the face behind Scam Interceptors, the BAFTA award-winning BBC series that exposes online fraud and steps in to protect victims as scams unfold. Nick brings a decade of undercover documentary experience to his current mission: fighting digital deception and empowering everyday people to stay safe. He shares jaw-dropping stories from the front lines, including the near miss that almost caught him off guard, and breaks down the complex operations behind everything from romance scams to global scam compounds. As the author of How to Beat Scammers, Nick also gives practical advice on how to recognize red flags and build your own defense against a rising tide of fraud. Show Notes: [01:06] Nick presents a show called scam interceptors for the BBC. He also does scam advice on a chat show called Morning Live. He also wrote a self-help book about . [01:59] We learn how Nick got into the space. He began in investigative journalism and hidden camera work and now 5 years later Scam Interceptors is his full-time job. [06:17] He came very close to becoming a victim of a scam, because a lot of scammers try to get him. [14:30] About 300,000 accounts a day get hacked on Meta. [15:10] There are things you can enable on Meta to help protect your account. [16:43] In the UK scammers rarely go to prison. [17:18] When he first started the series the scale of some of the scam operations out there really shocked him. [18:43] There can be 200 people working in a scam call center. [20:52] A lot of the people who run pig butchering scams are indentured slaves. [24:12] They would even hire models to have video conversations with potential scam victims. [25:22] Why local governments don't break up these scam centers. [26:38] It's difficult to motivate the authorities when the victims aren't from that country. [29:21] APP refunds in the UK. In most cases we need to be aware and protect ourselves. [30:52] Assume everything out of the blue is fake. Come from a position of skepticism. [35:04] When investigations go wrong filming the show and they lose people to scams. [39:10] When the show first began, sometimes the people they were trying to stop from being scammed thought they were the scammer. Thanks for joining us on Easy Prey. Be sure to and leave a nice review. Links and Resources: /episode/index/show/easyprey/id/36821355

Gambling, Lies, and Millions Stolen from Celebrities 07/02/2025

Gambling, Lies, and Millions Stolen from Celebrities What happens when the drive to succeed masks deep emotional wounds and addiction? In this episode, Jonathan Schwartz shares a powerful and painfully honest account of how his life unraveled. Once one of Hollywood’s most trusted financial advisors, Jonathan worked with icons like Beyoncé, Mariah Carey, and Gwyneth Paltrow. On the surface, he had it all. But underneath the success was a secret struggle with gambling and drug addiction that led him to steal millions from the very clients who trusted him most. His fall from grace was dramatic and public, ending in a prison sentence and the loss of everything he had built. But that wasn’t the end of his story. Today, Jonathan is sober and rebuilding his life with purpose. As Program Director at Altus Rehab, he now helps others find their own way out of addiction and shame. His story is raw, real, and full of hard-earned wisdom for anyone who has ever felt like they couldn’t ask for help. Show Notes: [01:30] Jonathan is a different person from who he was. He grew up in Upstate New York and his father left when he was four. His mom had a lot of stress and took it out on him which created childhood trauma. [03:34] Accounting was the subject that he was good at. [05:02] Eventually, his cousin gave him a job working in Los Angeles for celebrities. [06:33] In 2004, he became a partner in GSO business management. He got a break when Linkin Park was looking for someone in business management. Their success opened up the floodgates. [08:37] He began getting more and more A-list clients. [09:04] In 2010, he became addicted to gambling. [10:01] This eventually led to embezzlement from his celebrity clients. He placed the bet with this bookie everyday for 6 years. [13:48] He ended up embezzling about 7 million dollars. [14:12] When he stopped gambling he had suicidal ideation. [17:05] He always intended to pay the money back. [19:37] Jonathan shares a time when the bank wanted to call Alanis. [21:03] There was a point when his partners started to notice something wasn't right. [22:04] In 2015 he was fired by Alanis, but he continued to give his attention to his A-list clients. [24:42] He didn't want to expose anyone to the fact that he was committing crime. He never told a soul. [25:07] The dark secret was eating him inside, and he also had to deal with his unresolved trauma. [27:12] How Jonathan had to come clean with his wife, because he was scheduled for a lie detector test. [28:48] After failing the test, he was facing 23 years in prison. He negotiated a four to six year plea agreement. [31:14] He ended up being released early because of COVID. [32:11] He struggled to get a job and ended up going back to school, and now he's a marriage and family therapist with an emphasis on addiction and trauma. [34:00] In prison he had the opportunity to reflect on his bad decisions and read a lot of books. [36:33] He's proud to be sober and a nerd. His trauma is resolved, and he gets to help people in treatment not make the same mistakes that he made. [41:34] Celebrities today need to understand not to trust their business manager so quickly and to make sure that they're proactive in their financial affairs and that they're asking for source documents. [42:11] Audit your business manager with some level of frequency. [48:43] Don't go out and spend all your money. Treat your first dollars as your last dollars. [50:56] Jonathan has a book coming out in about 12 months. Thanks for joining us on Easy Prey. Be sure to and leave a nice review. Links and Resources: /episode/index/show/easyprey/id/36821215

Human Side of Fraud: Empathy, Education, & Evolution 06/25/2025

Human Side of Fraud: Empathy, Education, & Evolution People used to think fraud was something that happened in the shadows, rare, distant, and mostly affecting big companies. But after talking to PJ Rohall, it’s clear that fraud is evolving fast, and it’s showing up in places most of us don’t even think to look. In this episode, I sit down with PJ Rohall, Head of Fraud Strategy and Education at SEON and co-founder of About Fraud. PJ’s work is all about staying ahead of scammers and helping businesses and individuals understand how fraud actually works. From synthetic identities and AI-powered scams to account takeovers and refund fraud, he breaks it all down in a way that’s both eye-opening and surprisingly accessible. We talk about how fraudsters think, what makes people vulnerable, and why collaboration is one of the best defenses we have. PJ shares practical tips, real-world examples, and some of the patterns he’s seeing that everyone should be aware of. Whether you run a business or just want to better protect yourself online, this conversation might change the way you think about trust, technology, and the digital world we live in. Show Notes: [00:52] PJ Rohal is a co-founder of About Fraud and Fraud Fight Club, which is our in conference, in-person experience. He started that back in 2017, but his fraud prevention journey started back in 2011. [02:45] He began studying finance and business. He had some mental health issues and was open to trying something different when he saw a job for a fraud analyst. [06:22] His experience transferred really well into the entrepreneurial journey. [11:13] It's in the best interest of everyone to collaborate and share tips and tricks when trying to prevent fraud. [13:05] Everybody is open or vulnerable to being a victim of a scam. There shouldn't be a stigma around it. [14:51] It's powerful to see even tech savvy people being victims of scams. [17:20] How a contextually relevant scam could actually get you. [21:16] It's PJ's dream to get outside of his bubble and help educate the community the best he can. [23:43] Two-factor authentication codes have changed, because they give warnings and instructions for the consumer now. [28:45] People with platforms could get the word out about the risk of scams. [34:30] Getting fighting scams to the front and center is a challenge. [36:57] Handling calls from people who've lost large amounts of money in a scam. Having a psychologist or people who understand human behavior would really help with this journey. [40:39] Banks and financial institutions are starting to think differently about handling these issues. [41:05] There's also a lot of technology on the market that's designed for scams. Thanks for joining us on Easy Prey. Be sure to and leave a nice review. Links and Resources: /episode/index/show/easyprey/id/36821045

Identity Is The New Security Perimeter 06/18/2025

Identity Is The New Security Perimeter Sometimes it feels like every new technology we adopt comes with a new risk we didn’t see coming. From AI and data breaches to phishing scams and ransomware, it's clear we live in a time when cybersecurity isn’t just a tech issue, it’s a human issue. In this episode, I talk with Jeff Reich, Executive Director of the Identity Defined Security Alliance. Jeff has been in the cybersecurity world since the early days, with decades of experience helping organizations protect what matters most. His passion for identity security and risk management runs deep, and he brings a thoughtful perspective on how the industry has changed and what we need to do to keep up. We explore why identity is the real perimeter in today’s digital world, how businesses and individuals can be proactive rather than reactive, and what it really takes to build a security-first mindset. Jeff also shares why communication is just as important as tech when it comes to staying secure. Whether you're a cybersecurity professional or just someone trying to stay safe online, this conversation will leave you thinking differently about the role identity plays in your digital life. Show Notes: [00:54] Jeff Reich is the Executive Director of the Identity-Defined Security Alliance, a nonprofit focused on raising the level of awareness of identity and identity security. [01:52] Jeff began studying physics and astrophysics in school. He even taught in a planetarium. He also went into law enforcement. [03:10] He went into security and was planning on working at EDS, but he ended up at ARCO. He then moved to Dell computers and a financial services company. He started the security program at Rackspace and was also a research director at the University of Texas, San Antonio. [03:49] He is now enjoying the nonprofit space. [04:43] Not becoming a victim of a scam comes down to situational awareness. If you're receiving something from someone you don't know, assume it's hostile. [06:33] Jeff tells the story about when he was working at a hosting company, and he noticed clusters of servers turning from green to red and then back to green. [07:42] It turned out scammers were taking over customers' websites. It ended up being ransomware. [16:03] Be very aware of fake invoices and spoofed emails and scam phone calls. [20:18] They recently had identity management day 2025. They had a lot of presentations on what existential identity might mean to a certain individual or corporation. [21:57] People can protect themselves by using different email accounts. [24:34] Tips on protecting yourself when someone is impersonating you. [27:21] The future of identity should have big advances going forward that will involve AI. [31:40] Improved authenticator apps and DNA-based identity are in our futures. [36:22] Hackers are stealing credentials and logging into companies not breaking in. [39:01] Our identity needs to be protected more than an account number. [40:01] Clean house and get separate accounts for important things like banking. Thanks for joining us on Easy Prey. Be sure to and leave a nice review. Links and Resources: /episode/index/show/easyprey/id/36820910

Your Car Is Spying On You What It’s Collecting and Who It’s Telling 06/11/2025

Your Car Is Spying On You What It’s Collecting and Who It’s Telling I used to think of my car as just a tool to get from point A to point B. But after this conversation, I can’t help but see it as something else entirely, a powerful data collection device that knows far more about me than I realized. From where I go and who I text to how I drive and even what’s on my phone, today’s vehicles are gathering a staggering amount of personal information. In this episode, I talk with Andrea Amico, the founder of . Andrea is one of the leading voices in automotive data privacy and someone who’s spent years uncovering the hidden ways cars collect, store, and share our information. He breaks down how connected cars work, what’s actually being tracked, and why it matters not just for your privacy, but for your safety and finances too. We get into everything from rental car risks and data left behind when you sell a car, to how automakers and third parties might be profiting off your data without your knowledge. If you’ve ever paired your phone with a vehicle or assumed your texts disappear when you disconnect, this episode is going to change the way you think about driving and how to take back control. Show Notes: [01:28] Andrea started because cars collect a lot of data. There were zero protections for privacy and security. He's dedicated to turning your car into a more private space and giving you more choice, understanding, and control. [02:25] We talk about when cars started collecting data. OnStar started about 25 years ago. Things really began to evolve when Bluetooth and navigation became common. [03:12] Things really exploded with modern telematics which is like putting a cell phone inside your car that calls home all the time. The average car collects around 25 GB of data per day. [04:08] We talk about the type of data that is collected by cars from GPS to having your phone collected and the car even knowing your weight. [05:26] The sensors in your car know exactly how you drive. [06:46] Informed consumers are better off. These data collecting policies are usually hidden in the car manufacturers privacy policies. [08:46] You can find your car's privacy policy at . [10:21] The goal is to make the car manufacturer's behavior visible to consumers, because that's the way to drive better company behavior. [11:26] When you rent a car and when you sell a car, your car is like a giant unencrypted hard drive that contains your data. [12:06] We should wipe the data in our cars the same way we wipe the data in our phones when we replace them. [13:05] You can find a tool to help remove data from your car at . [14:21] We talk about what rental cars get from your connected phone. [17:24] Found data can be used in targeted spear phishing attacks. [19:18] Most cars since 2017 have a SIM card. If a prior owner consented to data collection, that data is still being collected when you take over the car. [22:15] Ford estimated that they would make $2,000 per car per year from data services. [24:17] It's common for cars to even have a camera that looks at you. In a few years it might be common for vehicles to monitor for things like intoxication. [26:56] Organizations creating standards like the Future of Privacy Forum. [29:09] Cars have an EDR electronic data recorder. It's like a black box for when an accident happens. [34:05] Delete data when you buy, rent, or sell a car. Opt out if you can. [36:33] Think about your car just like your computers and your phone. [37:15] Andrea shares a story about how an ex-spouse was able to duplicate her key. The dealer wanted $1,000 to reset her car. [40:23] Parting advice includes looking up your car's VIN at Vehicle Privacy Report. Thanks for joining us on Easy Prey. Be sure to and leave a nice review. Links and Resources: /episode/index/show/easyprey/id/36820780

Why Everyone’s A Target 06/04/2025

Why Everyone’s A Target Some scams are so convincing, they’re almost impossible to spot. With phishing emails that look like they’re from your bank, deep fake videos that mimic real people, and AI-generated messages that feel personal, it’s getting harder to know what’s real and what’s a trap. In this episode, I sit down with Gabrielle Hempel, a security operations specialist at Exabeam and a current law student at Purdue University. Gabrielle brings a sharp perspective shaped by years in cybersecurity, a master’s in cybersecurity and global affairs from NYU, and hands-on experience navigating everything from vulnerability management to executive risk consulting. She even wrote her graduate thesis on critical infrastructure security. We talk about the new era of digital deception, why younger people are actually falling for scams more often, and how criminals are using AI and current events to build trust and bypass defenses. Gabrielle shares practical advice, personal stories, and a fresh way to think about digital safety that could help you spot the next scam before it costs you. Show Notes: [01:09] Gabrielle has held quite a few jobs in cybersecurity. She's currently the Security Operations Strategist at Exabeam. [01:40] She's involved with anything to do with the internal security operation. [02:04] She majored in psychology and neuroscience. Working in Pharma and with medical devices led her to the path of cybersecurity. [04:34] We learn about an incident that she was involved in. Her parents were attempting to file their taxes with TurboTax, but they were flagged as already filing. This led to a lot of shenanigans with the IRS. [06:29] Most everyone has been a victim to some type of fraud or scam. [07:20] Our information is out there. It's more about staying vigilant and keeping an eye on things. [08:05] A lot of the current scams are blending with the cybercrime ecosystem. [09:17] AI has made it easier for people to craft more convincing phishing emails. [12:51] Are modern phishing emails getting through the spam filters more often? [15:48] How it's not retirees being the people most frequently caught in scams. [16:42] Why 20 to 29 year-olds frequently fall for scams. It could be because of their comfort with technology. [21:12] Better education surrounding threats might be a good idea for young people. [22:47] As scammers get more information about us, targeting will be easier. [24:32] Big trends are voice cloning and deep fakes. [27:51] Scams around shipping fees and tariffs are skyrocketing. [29:15] Advice includes adopting zero trust with communication. [33:10] If you're not expecting it. It's potentially suspect. [34:45] Best practices include doing your due diligence, and if you feel like something may not be legitimate go around and check. Thanks for joining us on Easy Prey. Be sure to and leave a nice review. Links and Resources: /episode/index/show/easyprey/id/36820545

Easy Prey

TOPICS