Hacking Humans: Phishing in the Tariff Storm Hosted by N2K Networks | Released April 17, 2025

Hacking Humans delves deep into the intricate world of social engineering, deception, and cybercrime. In the episode titled "Phishing in the Tariff Storm," hosts Dave Buettner and Joe Kerrigan explore how evolving geopolitical tensions, particularly around tariffs, are being exploited by cybercriminals to orchestrate sophisticated phishing schemes. This comprehensive summary captures the essence of their discussions, key insights, and illustrative stories, enriched with notable quotes and timestamps.

1. Personal Reflections and Light-hearted Banter

[00:02 – 02:08]

The episode begins with Dave Buettner sharing a personal and heartfelt moment. He announces the passing of his father, reflecting on the emotional journey of grief and the significant role his father played in his life:

Dave Buettner [00:31]: "I may have told you this, Joe, on the passing of my mother about three years ago, one of the realizations I had was that I have never known a world without them in it."

Jane Veronica, co-host Maria Vermazes, is notably absent as she attends a space conference, setting a reflective and respectful tone for the episode.

2. The Density Debate: Metals and Deception

[02:18 – 08:14]

Transitioning from personal reflections, the hosts engage in a fascinating discussion about metal densities, specifically focusing on lead, gold, tungsten, and rhenium. This segment underscores the ease with which cybercriminals can exploit technical knowledge for fraudulent purposes, such as creating counterfeit gold bars.

Maria Vermazes admits a recent misconception about lead being denser than gold, leading to an insightful exploration of metal properties:

Maria Vermazes [02:41]: "I thought lead was more dense than gold. It isn't... Maria and I were theorizing about how would you make a fake gold bar coating something with gold."

The conversation reveals how tungsten and rhenium can be used to mimic gold's density, potentially deceiving traditional testing methods like the Archimedes principle. Dave ties this into real-world applications, referencing his experience as a Steadicam operator, where tungsten carbide serves as a ballast weight due to its high density.

3. Navigating Tariffs: A Breeding Ground for Phishing Scams

[08:14 – 16:41]

The heart of the episode examines how the surge in news around President Trump's tariffs creates fertile ground for phishing scams. The hosts discuss insights from Pre Crime Labs, a security research organization that identified over 300 suspicious websites exploiting tariff-related anxieties.

Key Points:

• Phishing Tactics: Cybercriminals leverage the complexity and confusion surrounding tariffs to craft convincing phishing messages. Victims receive communications claiming they owe payments due to new tariff charges, often threatening legal actions or service interruptions.

  Dave Buettner [10:07]: "There's no avoiding driving everybody crazy. That's right."

• Exploiting Anxiety: The uncertainty and anxiety stemming from tariff news make individuals more susceptible to scams, as they might believe governmental authorities are monitoring their transactions.

  Maria Vermazes [10:59]: "With threats of arrest, I'm sure."

• Imitating Legitimate Sources: Scammers create fake websites resembling official US Customs and tariff pages, using domains like tariffwine.com or tariffhealth.com to appear credible.

  Dave Buettner [12:10]: "I have never seen... It's all domestic wine and my kids would of course mock me incessantly about that."

• Advice to Listeners: The hosts emphasize vigilance, advising listeners to avoid clicking on suspicious links and to verify any unusual tariff-related communications.

  Maria Vermazes [16:40]: "You don't pay tariffs."

4. Real-world Impacts: Money Laundering and ATM Jackpotting

[16:41 – 24:46]

A. Money Laundering in Online Romance Scams

Drawing from a report by Stephanie Price at FOX News, the episode highlights the case of Christine Joan Echo Hawk, an Oklahoma woman charged with laundering $1.5 million from elderly victims involved in online romance scams.

Highlights:

• Modus Operandi: Echo Hawk facilitated the laundering process by transferring funds through cryptocurrency, demonstrating how digital currencies can both aid and complicate financial crimes.

  Maria Vermazes [18:22]: "Cryptocurrency is a pretty good way to launder money."

• Law Enforcement Challenges: Despite the traceability of cryptocurrency transactions, law enforcement successfully traced Echo Hawk's activities, leading to her arrest and potential hefty penalties.

• Expert Insights: The hosts consult with FBI contacts who reveal advancements in tracking cryptocurrency transactions, even across different blockchains, making it increasingly difficult for criminals to remain anonymous.

B. ATM Jackpotting: Exploiting Technical Vulnerabilities

Another alarming story covers a new jackpotting scam targeting ATMs, as reported by Danielle Antos from Yahoo News.

Mechanism:

• Technical Exploit: Scammers manipulate ATM cassettes to alter the denomination of dispensed bills. For instance, programming a $20 cassette to release $1 bills allows criminals to withdraw significantly more money than intended.

  Dave Buettner [21:14]: "Is that where I use technical means to have the ATM spit out money?"

• Coordination Tactics: Criminals collect receipts from ATM transactions, using them to gain backdoor access and cancel transactions after dispensing cash. This method siphons over a quarter-million dollars without directly affecting individual bank accounts.

  Maria Vermazes [23:09]: "They are emptying these things of cash."

• Law Enforcement Response: Authorities have arrested several individuals involved in this scheme, including Vitaly Moraval, a Ukrainian war refugee, indicating the international scope of such cybercrimes.

  Dave Buettner [23:56]: "They're walking up conducting some kind of transaction and having the transaction canceled after the money's dispensed."

5. Phishing Schemes Targeting Educational Institutions

[24:46 – 32:41]

The episode shifts focus to phishing attempts within academic environments, specifically targeting faculty and staff at Montclair University.

A. The Airstream Trailer Scam

An enticing offer of a free 2014 Airstream Sport 16-foot travel trailer circulates among university members, showcasing classic phishing characteristics:

Red Flags:

• Unrealistic Offers: The promise of a high-value item for free, such as an Airstream trailer, is a common bait in phishing schemes.

  Maria Vermazes [27:03]: "Here’s a free one."

• Urgency and Secrecy: The scam instructs recipients to use personal emails instead of official school accounts to arrange inspections and deliveries, aiming to bypass institutional security measures.

  Maria Vermazes [27:03]: "Please write so and so with your personal email and not with school email for a swift and fast response."

• Technical Inconsistencies: The inclusion of mileage (e.g., "7,000 miles") in a travel trailer offer is a telltale sign, as trailers typically do not have odometers.

  Dave Buettner [30:10]: "Do trailers have odometers?"

• Host Insights: Maria and Dave discuss the unrealistic elements of the scam, such as the implausible mileage claim, to educate listeners on identifying fraudulent offers.

  Dave Buettner [30:25]: "That's a little bit of a tell that."

6. Sponsor Message: ThreatLocker

Throughout the episode, Hacking Humans acknowledges its sponsor, ThreatLocker, emphasizing the importance of robust cybersecurity measures in combating such sophisticated attacks.

ThreatLocker [26:46]: "With ThreatLocker allowlisting and ring fencing, you gain a more secure approach to blocking exploits of known and unknown vulnerabilities."

7. Catch of the Day: Community Insights and Further Scams

[26:46 – 32:41]

In the final segment, the hosts share additional phishing attempts and scams reported by their listeners, reinforcing the episode's central theme of evolving cyber threats tied to current events.

Notable Discussions:

• Phishing Aggregation: Montclair University's proactive approach in aggregating phishing attempts serves as a model for other institutions to recognize and respond to emerging threats.

  Dave Buettner [27:03]: "Montclair, to their credit, they have a web page where they aggregate phishing attempts."

• Community Responsibility: The hosts encourage listeners to report suspicious activities and remain vigilant, highlighting the collective effort needed to mitigate cybercrime.

  Dave Buettner [30:37]: "You don't have an odometer. No."

Conclusion: Staying Ahead in a Changing Cyber Landscape

Hacking Humans wraps up the episode by reiterating the importance of awareness and proactive measures against phishing scams, especially those exploiting current socio-political climates like tariff disputes. The hosts urge listeners to remain cautious, verify unsolicited communications, and stay informed about emerging cyber threats.

Dave Buettner [32:41]: "We want to thank this week's sponsor, ThreatLocker. Go to threatlocker.com HH where you can request a demo and neutralize the threat of malware running on your devices."

This episode of Hacking Humans masterfully intertwines personal narratives, technical discussions, and real-world case studies to illuminate the ever-evolving tactics of cybercriminals. By focusing on the intersection of current events and cyber threats, Dave Buettner and Joe Kerrigan provide listeners with valuable insights and practical advice to safeguard against sophisticated phishing schemes.