You get a million dollars, and you get a million dollars! - Hacking Humans

Summary

Hacking Humans: Episode Summary - "You get a million dollars, and you get a million dollars!"

Podcast Information:

Title: Hacking Humans
Host/Author: N2K Networks
Description: Deception, influence, and social engineering in the world of cybercrime.
Episode: You get a million dollars, and you get a million dollars!
Release Date: April 10, 2025

Introduction

In this episode of Hacking Humans, Maria Varmazis and Joe Kerrigan delve into various social engineering scams affecting individuals and organizations. The discussion spans listener feedback, in-depth analysis of sophisticated scams like "pig butchering," and persistent scams targeting the elderly, such as the Publisher's Clearinghouse (PCH) fraud.

Listener Feedback & Discussions

1. Fake Gold Bar Sting Operations

Listener Input:
- Justin suggested an "easy sting operation" to verify genuine gold purchases by proposing sending painted lead bars with embedded trackers:
  
  "Give the courier gold painted lead bars and one of them has a tracker or just throw an AirTag in and see where it goes." [02:00]
Hosts' Discussion:
- Joe Kerrigan analyzed the feasibility, noting lead's density could mimic gold's weight with the addition of other materials:
  
  "I'm pretty sure lead is actually heavier than gold. So you can make a lead thing that has some other mass in the middle that is not lead..." [02:02]
- Maria Varmazis cautioned about potential issues with signal blocking due to lead's properties:
  
  "Would that cause issues if it's a, you know, a blocking agent?" [02:48]
- Joe concurred, emphasizing the need for antenna accessibility within the lead bar:
  
  "You'd have to make sure the antenna has a way to go out of the bar." [02:55]

2. E-Z Pass Scam Messages

Listener Input:
- Jim Gilchrist shared his experience receiving fraudulent E-Z Pass communications, highlighting the misuse of transponder information:
  
  "I called because I was certain that my transponder had been in place on the inside of my windshield for the trips in question." [04:12]
Hosts' Discussion:
- Joe detailed the scam's mechanics, where scammers cross-reference transponder data to threaten victims with fines unless they address alleged unpaid tolls:
  
  "The cost to run such a scam is low... so ripe for a shotgun approach." [06:11]
- Maria reflected on the arbitrary nature of these messages, noting the lack of correlation with actual toll activities:
  
  "There's absolutely no correlation. It's just shotgun approach." [08:27]

Main Story: FBI Cracks "Pig Butchering" Scam on Dating Sites

Overview of the Scam:

Definition: "Pig butchering" is a hybrid of romance and cryptocurrency scams where perpetrators build fake relationships with victims to extract large sums of money under the guise of crypto investments.
Key Details:
- Joe Kerrigan explained the scam's progression from building trust to encouraging substantial crypto investments:
  
  "They love bomb you... they try to build this false rapport." [10:00]
- Victims are lured into investing in cryptocurrencies with the promise of high returns, only to have funds disappear as scammers halt withdrawals:
  
  "Once you have the large amount of money... that's when they start, you know, they will try to get you to put as much money in there as possible." [15:00]

FBI Intervention:

The FBI's Cleveland field office traced and seized $8.2 million in cryptocurrency linked to these scams by tracking funds through three specific wallet addresses despite scammers' efforts to obfuscate transactions through tumblers and multiple blockchains.
A notable victim, a Maryland woman, lost over $3 million—a staggering amount that underscores the scam's severity:

"She is telling a story, which is good for you, too. So thank you to this woman." [12:03]

Discussion on Impact and Financial Literacy:

Maria Varmazis pondered the factors contributing to such massive financial losses, attributing it to deceptive websites, social engineering, and a lack of financial literacy:

"It's a combination of so many bad, bad elements at once." [17:02]
Joe Kerrigan emphasized the importance of personal financial management and diversification to mitigate such risks:

"Remember, if you're going to invest in crypto, that's fine, but don't do it with money you can't afford to lose." [18:56]

Additional Story: Publisher's Clearinghouse (PCH) Scams

Overview of the Scam:

In late March, four individuals were indicted for orchestrating PCH scams targeting elderly victims across the United States. These scammers falsely claimed that victims had won Sweepstakes prizes, requesting upfront payments for taxes and fees to release the supposed winnings.
Maria Varmazis reflected on the persistence and targeting strategy of PCH scams, noting their continued prevalence despite their somewhat outdated methodology:

"The fact that this scam still persists is almost explicitly, by design, targeting the elderly." [27:23]

Discussion on Awareness and Vulnerability:

Joe Kerrigan and Maria discussed the cultural disconnect, where younger generations might not recognize PCH scams, yet scammers continue to exploit the elderly who remember when PCH was a household name:

"It's self-selected to target the elderly to begin with." [27:40]
The hosts underscored the critical role of financial literacy and awareness in preventing such scams, advocating for better education and support mechanisms for vulnerable populations.

Catch of the Day: Elon Musk Scam Message

Description of the Scam:

A listener, Cultwitch13 from Reddit, received a fraudulent text claiming to be from "Elon Musk Tesla," notifying her of a $500,000 beneficiary award to help pay off debts, urging immediate response via text to a provided number:

"Hello, Good day. This is Elon Musk Tesla... Congratulations to you once again." [30:16]

Hosts' Analysis:

Joe Kerrigan analyzed the scam's mechanics, highlighting the misuse of high-profile names to lend credibility and entice victims into advanced fee fraud:

"It's really great to realize this is a scam when you've lost zero dollars." [34:04]
Maria Varmazis connected such scams to broader social engineering tactics, emphasizing the importance of skepticism and verification when approached with unsolicited financial offers.

Conclusion

This episode of Hacking Humans sheds light on the evolving landscape of social engineering scams, from sophisticated cryptocurrency frauds to persistent elderly-targeted schemes. Hosts Maria Varmazis and Joe Kerrigan emphasize the critical need for increased financial literacy, awareness, and skepticism to safeguard against these deceptive practices. By dissecting real-life examples and discussing listener experiences, the episode provides valuable insights into recognizing and preventing various types of cybercriminal exploits.

Notable Quotes:

Maria Varmazis on PCH scams targeting the elderly:

"The fact that this scam still persists is almost explicitly, by design, targeting the elderly." [27:23]
Joe Kerrigan on the importance of not investing more than one can afford to lose:

"Remember, if you're going to invest in crypto, that's fine, but don't do it with money you can't afford to lose." [18:56]
Discussion on the arbitrary nature of E-Z Pass scam messages:

"There's absolutely no correlation. It's just shotgun approach." [08:27]

Final Thoughts:

The episode underscores the multifaceted nature of modern scams and the indispensable role of education and vigilance in combating cybercrime. By sharing both listener experiences and expert analyses, Hacking Humans empowers its audience to recognize and thwart deceptive schemes effectively.

Summary

Hacking Humans: Episode Summary - "You get a million dollars, and you get a million dollars!"

Podcast Information:

Title: Hacking Humans
Host/Author: N2K Networks
Description: Deception, influence, and social engineering in the world of cybercrime.
Episode: You get a million dollars, and you get a million dollars!
Release Date: April 10, 2025

Introduction

Listener Feedback & Discussions

1. Fake Gold Bar Sting Operations

Listener Input:
- Justin suggested an "easy sting operation" to verify genuine gold purchases by proposing sending painted lead bars with embedded trackers:
  
  "Give the courier gold painted lead bars and one of them has a tracker or just throw an AirTag in and see where it goes." [02:00]
Hosts' Discussion:
- Joe Kerrigan analyzed the feasibility, noting lead's density could mimic gold's weight with the addition of other materials:
  
  "I'm pretty sure lead is actually heavier than gold. So you can make a lead thing that has some other mass in the middle that is not lead..." [02:02]
- Maria Varmazis cautioned about potential issues with signal blocking due to lead's properties:
  
  "Would that cause issues if it's a, you know, a blocking agent?" [02:48]
- Joe concurred, emphasizing the need for antenna accessibility within the lead bar:
  
  "You'd have to make sure the antenna has a way to go out of the bar." [02:55]

2. E-Z Pass Scam Messages

Listener Input:
- Jim Gilchrist shared his experience receiving fraudulent E-Z Pass communications, highlighting the misuse of transponder information:
  
  "I called because I was certain that my transponder had been in place on the inside of my windshield for the trips in question." [04:12]
Hosts' Discussion:
- Joe detailed the scam's mechanics, where scammers cross-reference transponder data to threaten victims with fines unless they address alleged unpaid tolls:
  
  "The cost to run such a scam is low... so ripe for a shotgun approach." [06:11]
- Maria reflected on the arbitrary nature of these messages, noting the lack of correlation with actual toll activities:
  
  "There's absolutely no correlation. It's just shotgun approach." [08:27]

Main Story: FBI Cracks "Pig Butchering" Scam on Dating Sites

Overview of the Scam:

Definition: "Pig butchering" is a hybrid of romance and cryptocurrency scams where perpetrators build fake relationships with victims to extract large sums of money under the guise of crypto investments.
Key Details:
- Joe Kerrigan explained the scam's progression from building trust to encouraging substantial crypto investments:
  
  "They love bomb you... they try to build this false rapport." [10:00]
- Victims are lured into investing in cryptocurrencies with the promise of high returns, only to have funds disappear as scammers halt withdrawals:
  
  "Once you have the large amount of money... that's when they start, you know, they will try to get you to put as much money in there as possible." [15:00]

FBI Intervention:

The FBI's Cleveland field office traced and seized $8.2 million in cryptocurrency linked to these scams by tracking funds through three specific wallet addresses despite scammers' efforts to obfuscate transactions through tumblers and multiple blockchains.
A notable victim, a Maryland woman, lost over $3 million—a staggering amount that underscores the scam's severity:

"She is telling a story, which is good for you, too. So thank you to this woman." [12:03]

Discussion on Impact and Financial Literacy:

Maria Varmazis pondered the factors contributing to such massive financial losses, attributing it to deceptive websites, social engineering, and a lack of financial literacy:

"It's a combination of so many bad, bad elements at once." [17:02]
Joe Kerrigan emphasized the importance of personal financial management and diversification to mitigate such risks:

"Remember, if you're going to invest in crypto, that's fine, but don't do it with money you can't afford to lose." [18:56]

Additional Story: Publisher's Clearinghouse (PCH) Scams

Overview of the Scam:

In late March, four individuals were indicted for orchestrating PCH scams targeting elderly victims across the United States. These scammers falsely claimed that victims had won Sweepstakes prizes, requesting upfront payments for taxes and fees to release the supposed winnings.
Maria Varmazis reflected on the persistence and targeting strategy of PCH scams, noting their continued prevalence despite their somewhat outdated methodology:

"The fact that this scam still persists is almost explicitly, by design, targeting the elderly." [27:23]

Discussion on Awareness and Vulnerability:

Joe Kerrigan and Maria discussed the cultural disconnect, where younger generations might not recognize PCH scams, yet scammers continue to exploit the elderly who remember when PCH was a household name:

"It's self-selected to target the elderly to begin with." [27:40]
The hosts underscored the critical role of financial literacy and awareness in preventing such scams, advocating for better education and support mechanisms for vulnerable populations.

Catch of the Day: Elon Musk Scam Message

Description of the Scam:

A listener, Cultwitch13 from Reddit, received a fraudulent text claiming to be from "Elon Musk Tesla," notifying her of a $500,000 beneficiary award to help pay off debts, urging immediate response via text to a provided number:

"Hello, Good day. This is Elon Musk Tesla... Congratulations to you once again." [30:16]

Hosts' Analysis:

Joe Kerrigan analyzed the scam's mechanics, highlighting the misuse of high-profile names to lend credibility and entice victims into advanced fee fraud:

"It's really great to realize this is a scam when you've lost zero dollars." [34:04]
Maria Varmazis connected such scams to broader social engineering tactics, emphasizing the importance of skepticism and verification when approached with unsolicited financial offers.

Conclusion

Notable Quotes:

Maria Varmazis on PCH scams targeting the elderly:

"The fact that this scam still persists is almost explicitly, by design, targeting the elderly." [27:23]
Joe Kerrigan on the importance of not investing more than one can afford to lose:

"Remember, if you're going to invest in crypto, that's fine, but don't do it with money you can't afford to lose." [18:56]
Discussion on the arbitrary nature of E-Z Pass scam messages:

"There's absolutely no correlation. It's just shotgun approach." [08:27]

Final Thoughts: