Great overview of the dangers of password reuse due to data breaches by Rachel Tobac, Evan Tobac * Find email addresses via OSINT * Password breach databases ➡️ plaintext passwords, hashes, and hints * Customized wordlist + ruleset ➡️ hashcat Be safe: Password manager, MFA

For no particular reason, I have decided to create a Mastodon account. Come say hi at infosec.exchange/@evantobac

*Our Music & Spoken Security Awareness Videos are now on (almost) every continent🤯 - Demo/Update* Here are more sample snippets of our Video Library all in one place! Blows my mind these videos are now live at orgs on every continent (except Antarctica lol maybe one day).

60 Minutes hired an ethical hacker to show how easy it is to be scammed. She conned our unsuspecting colleague using artificial intelligence. cbsn.ws/3MOhmia

Here’s how I used AI to clone a 60 Minutes correspondent’s voice to trick a colleague into handing over her passport number. I cloned Sharyn’s voice then manipulated the caller ID to show Sharyn’s name with a spoofing tool. The hack took 5 minutes total for me to steal the info.

*Sizzle Reel + Ransomware Song Debut!* We just hit 500,000+ users for our SocialProof Security security awareness training video library 🤯🤘 To celebrate, here's a sizzle reel of our latest Spoken and Music Video content with the DEBUT of our Ransomware Song in the background --

Our DEF CON Clue Hunt is starting soon & it’s bigger than ever before! 1st clue & Keymasters at Social Engineering Community starting Fri. Teaser of prizes — challenge coin completes a circuit on our badge, lighting it up. Rachel Tobac @EvanTobac are so excited to see all the Clue Hunt winners!

Are you ready to play a game, DEF CON? Our 1st Clue Hunt clue is ready for you. Winners get the challenge coin that screws into the custom badge completing a circuit and lighting it up. Evan Tobac and I can’t wait to meet the winners! The game starts now.

What's the fair market value on goon money these days?

For anyone who wanted a key but didn't get one. Now you can print your own!

Great writeup of reversing and troubleshooting a malfunctioning Beaglebone Black Lots of tools and techniques used (UART, JTAG, Saleae, EMIF Tuning, tinySA, ARM Reversing, etc.)

Very cool, portable tool to get insight into USB cables from Álvaro Prieto .

I just live hacked Arlene Dickinson (Dragons' Den star - Canada's Shark Tank) by using her breached passwords, social media posts, an AI voice clone, & *just 1 picture* for a deepfake live video call. Thank you Elevate Mastercard for asking me to demo these attacks live!