You want to get through a door. Walk in with a temp disability. like on a Crutch with a broken leg, and a bunch of bags. and if try and fumble to get inside. 95% of the time someone opens the door to let you in. I heard a talk on someone who specialized in Social Engineering. She got into the back part of a bank near the vault because she had a fake badge (looked okay) and a 'broken' arm and the other arm full of work stuff like a professional bag for work. He opened the door and let her in. She was part of a team hired to penetration test the bank, so was allowed from a legal sense as they were testing protocols etc.
Every time I think of social engineering, I think of when I had a conversation about theft with a gas station attendant while pocketing a drink. I didn't intend to steal it, and pulled it out to pay for it at the end, but it was an eye-opener on how easy and effective it can be. If I'd wanted to, it was as easy as "we're being friendly, so you don't see what I'm actually doing".
@@guard13007 When I worked at subway, I was taught about a scam people do with change; they give a large bill and when you hand them the change, they ask to break down something like this, never happened to me and don't remember the details, point being due to changing hands multiple times, they pocket a 20 or something.
@@Zythan youd have to have a issues to let someone in whos "in uniform" and on crutches or hurt... most these scenarios sound like that employed individual would be on leave from work with such a disability.
Oh I think he seems like the most genuine and loveable guy (although I've never met him). I would just be somewhat intimidated by him because of the insane amount of talent and IQ he has 😂
The one call center I worked at had a great way to prevent revealing where our building is. "Don't tell them where you are, or they might drive a truck through the building." Because another branch acutally had that happen!
I work for a franchise and there was one time in our district where all the other locations were getting a call from the same number about how this guy's order was wrong and so-and-so told them that it'd get remade for free. It turns out that a female employee in the district had a customer that was stalking them, so she transferred to a different location in the city and this dude was trying to figure out where.
That's disgusting and really scary. But genuinely clever. Because of course you'd just say "Person X doesn't work here" and the fucker just does it until someone gets them on the phone.
And for those of you who genuinely want to find a good restaurant, just take a hike through town on a Tuesday evening. If they can fill even half the seats on a Tuesday evening they're doing something right so that's gonna be your best bet.
The key to defending yourself against social engineering: Never give any information (no matter how slight) that can be used to reveal your location at any given time or place(past, present, or future). Never give any information that can assist in identifying you. Never give any information about the company you work for or the work that you do that isn't already publicly available. If you're not sure if it's safe to talk about, assume that it isnt. I'm pretty sure thats basically it. It's not complicated, it just takes diligence.
I think social engineering is so interesting because it goes against the clichee of the hacker as this introverted shut-in that never talks to anyone. You mean to tell me that bold-faced lying, bluffing and *shudders* interacting with people is hacking, too? I thought you nerds got into computers so that you ~don't~ have to talk to people lmao
The funniest thing is that it's only in fiction that all hackers are introvert shutins. So much of hacking has always been social engineering since the beginning, but in movies and TV shows they separate the social engineering side into just con artists while the "hackers" are only on computers.
The thing is, hacking started amongst a group of highly intelligent individuals working together lol being a shut in, also doesn't mean you don't know how to function around people or can't, it just means your preference Is to not be around them. Also, as an individual that has is a "shut -in" and read alot of books, the "shut -in" trope in movies and cartoons comes from books, that came from authors that maybe didn't know anyone that could explain said character, and writing a character who doesn't have many interactions, means you don't need a cohesive story to explain how they got good at the thing you're trying to explain, but don't understand. Alot of what we experience today, comes from books lol
I was playing an older game with an older crowd that had voice chat in game. Guy I'm playing with didn't know I could hear his wife in the background spouting off what sounded like personal info. I clicked my mic on to let him know and he promptly turned it off after thanking me.
thor: "im not competing in life this time guys, you can come to me for advice or guidance" thor: *becomes the most famous online personality of all time* (wins the internet) everyone: "god damnit he tricked us"
Calls himself Thor, but this dude is Loki personified. At this point, I wouldn't be remotely surprised if his ferrets were actually several polymorphed Fenrirs...
Clever hackers like Thor make me feel so insecure (emotionally and professionally lol)... not to mention vulnerable and stupid in my everyday life. Love it.
One of the best ways to trick someone trying this on you is to lie about pretty much everything if i don't know you or feel like i cant trust you I'll literally pull out a backstory and personality that I've had sitting In storage in my head.
What you don't realize is King of the Grimmlins over there Was social engineering the other 3 the entire time... how? Guy's got a mind like a steel trap so to speak... he remembers.
I may or may not have attended E3 three years in a row as someone who never worked in the game industry in my life… I may or may not have eaten at many private corporate parties and made awkward small talk like I was from a different division that they never heard of… maybe
Yes it's been said (I'm sure) a thousand plus times, but Thor could quit this job and do movie trailer voice overs and make a killing. The man must have two sets of balls.
And that's why you don't get on your social media and announce to the world that you will be going somewhere out of town at an upcoming date. All you are doing is letting bad people know when your house will be empty. Always wait till you're back from the trip and say, "We just did this." Past tense is the key.
the "first" 40-48h are easy, especially if you often hyperfocus on something. After that you need adamantium hard dedication.. or uppers. The amount of work you can get done in that is mind blowing. Tho i'd argue that in the 3rd day you get diminished returns and it's not worth it.
What do you mean there's a fucking convention called DefCon. Who's insane- "I just won DefCon 23" *DON'T JUST SAY THAT WITHOUT CONTEXT, THOR, JESUS CHRIST.*
3 days will never kill you but it's definitely not healthy. I don't see how people do it unless they are on stimulants or having a manic episode. Very hard to do without chemical assistance unless you are crazy. Kind of makes since though because amphetamines are a streamers perfect drug.
yep blows my mind how his fans think this is some mind blowing new thing. very ironic actually. "I'm an expert social engineer but I'm so virtuous and wholesome and also I take donations" XD
Yeah, lying about something when you are presented as a trusted figure works the first time. Then your reputation is shot. So was the loss of your reputation with it?
@@crolaa6137 His social engineering "attack" involved him basically lying and using his standing within the community. 1. He said he was not participating in the competition. (lie 1) 2. He said that anyone that needed help can come visit him and he would help. (half truth. He did help those behind his team.) 3. He stole information from different teams and fed it to his team, while hindering the competition. (lie 2 and theft) So yeah. He destroyed his credibility within the community to win a competition.
@@TheSonnyGo It hinders any further attempts to help others. They will have to consider that he is being malicious with his words, or if he is being sincere.
@@thyowen It generally means having basic respect for other people, and acknowledging that people different from you exist. Most recently, acknowleding that gay or trans people exist will get you labeled "woke".
Only been to DefCon once (DC17), but it was awesome, started several interest hobbies including lockpicking... but craziest story was when my friends and I did your Blizzcon hack [ua-cam.com/video/A40LkDfTmCk/v-deo.html] for the private end party on the last night. We managed to get a picture of one of the tickets, and made it at a print/copy spot in a shopping center. Low-tech hack FTW. this was a great story. Bonus story: it was about a week prior to going to DC17 that I learned what a backScatter attack and DDOS was...
Funny story. This lady called me to go to an interview and i was getting ready to attend. But then she did the following: she calls me before i was getting ready to hit the shower and check maps to get there in time as she tells me I need a badge with my pic taken and that i am supposed to just drop it in the bin after the interview and leave the building. Now, I'm no Elvis but I do know a thing or two about GDPR. When I said no can do, she ignored me ever since. Who knew that it costs money to go to interviews for jobs in UK 🙀? Or the fact that searching for a job is a job in itself that nobody pays you for, but they need you to change your CV to mirror every single job you apply for, whilst staying honest, of course (my horse). Welcome to Britain, the land of milk and honey. Come again.
x=1 while [ x == 1]:do: echo "lol done hmm dont know how to break youtube any more...comment section works on linux. is breakable by learning the shell. it gos throug a cpu somewhere. ( thats the core of hacking,(manipulating that core),in this case the UA-cam comment server.) if you can insert a command,you got control. (was able to flood the comment section somehow by using a while loop) comment section,are just "strings",in a bash shell enviroment. you can always break that. break the data type.
Social engineering is best described to me as, why steal the keys when you'll give them too me.
You want to get through a door. Walk in with a temp disability. like on a Crutch with a broken leg, and a bunch of bags. and if try and fumble to get inside. 95% of the time someone opens the door to let you in.
I heard a talk on someone who specialized in Social Engineering. She got into the back part of a bank near the vault because she had a fake badge (looked okay) and a 'broken' arm and the other arm full of work stuff like a professional bag for work. He opened the door and let her in. She was part of a team hired to penetration test the bank, so was allowed from a legal sense as they were testing protocols etc.
Every time I think of social engineering, I think of when I had a conversation about theft with a gas station attendant while pocketing a drink.
I didn't intend to steal it, and pulled it out to pay for it at the end, but it was an eye-opener on how easy and effective it can be. If I'd wanted to, it was as easy as "we're being friendly, so you don't see what I'm actually doing".
@@Zythan Crippled tailgating :D
@@guard13007 When I worked at subway, I was taught about a scam people do with change; they give a large bill and when you hand them the change, they ask to break down something like this, never happened to me and don't remember the details, point being due to changing hands multiple times, they pocket a 20 or something.
@@Zythan youd have to have a issues to let someone in whos "in uniform" and on crutches or hurt... most these scenarios sound like that employed individual would be on leave from work with such a disability.
"It's fine, I promise" (evil smile) LOL
I worked with this guy for like 15 years, he's not as scary as he'd like you to believe :P (love you bird hair)
Oh I think he seems like the most genuine and loveable guy (although I've never met him). I would just be somewhat intimidated by him because of the insane amount of talent and IQ he has 😂
this is cute
"To be peaceful, you need to be capable of great violence. If you're not, you aren't peaceful. You are harmless."
@@LookingGlass1865he also seems like a guy with incredible values and uses his skills for good alot of the time.
The one call center I worked at had a great way to prevent revealing where our building is. "Don't tell them where you are, or they might drive a truck through the building." Because another branch acutally had that happen!
are you from Tampa FL perhaps? 🤔
@@ramsesiv5342 no
@@ramsesiv5342 nice try 🤣🤣
Hacker: Joins hacking contest
Godmode: Hack the hackers to win the contest
"Oh no, you can talk to me... it's fine... I P R O M I S E :)". freaking love this dude
I work for a franchise and there was one time in our district where all the other locations were getting a call from the same number about how this guy's order was wrong and so-and-so told them that it'd get remade for free.
It turns out that a female employee in the district had a customer that was stalking them, so she transferred to a different location in the city and this dude was trying to figure out where.
That's disgusting and really scary. But genuinely clever. Because of course you'd just say "Person X doesn't work here" and the fucker just does it until someone gets them on the phone.
And for those of you who genuinely want to find a good restaurant, just take a hike through town on a Tuesday evening. If they can fill even half the seats on a Tuesday evening they're doing something right so that's gonna be your best bet.
The key to defending yourself against social engineering:
Never give any information (no matter how slight) that can be used to reveal your location at any given time or place(past, present, or future).
Never give any information that can assist in identifying you.
Never give any information about the company you work for or the work that you do that isn't already publicly available.
If you're not sure if it's safe to talk about, assume that it isnt.
I'm pretty sure thats basically it. It's not complicated, it just takes diligence.
Thors voice is one of those voices that you trust right away but you shount trust :D
Its OK to talk to Thor, you might learn something.
Thor WILL learn something.
I learn more about technology and people from just a half dozen short clips of thor than I do from half a dozen years of life in general.
PLEASE someone, post that "don't trust this man" image. Please and thank you!
thor is the "nicest" , dangerous person ever imo
I think social engineering is so interesting because it goes against the clichee of the hacker as this introverted shut-in that never talks to anyone.
You mean to tell me that bold-faced lying, bluffing and *shudders* interacting with people is hacking, too?
I thought you nerds got into computers so that you ~don't~ have to talk to people lmao
The funniest thing is that it's only in fiction that all hackers are introvert shutins. So much of hacking has always been social engineering since the beginning, but in movies and TV shows they separate the social engineering side into just con artists while the "hackers" are only on computers.
The thing is, hacking started amongst a group of highly intelligent individuals working together lol being a shut in, also doesn't mean you don't know how to function around people or can't, it just means your preference Is to not be around them.
Also, as an individual that has is a "shut -in" and read alot of books, the "shut -in" trope in movies and cartoons comes from books, that came from authors that maybe didn't know anyone that could explain said character, and writing a character who doesn't have many interactions, means you don't need a cohesive story to explain how they got good at the thing you're trying to explain, but don't understand.
Alot of what we experience today, comes from books lol
All the best hackers are social engineers.
I was playing an older game with an older crowd that had voice chat in game. Guy I'm playing with didn't know I could hear his wife in the background spouting off what sounded like personal info. I clicked my mic on to let him know and he promptly turned it off after thanking me.
Not all heroes wear capes
solid dude
Thor seems to be such an innocent guy, but when he starts small talking, you should be really worried. 😮
Had to put a highpass filter on the audio so my house would not collapse.
I see what you did, there. 👀😄
A good takeaway from that first story, as I see it:
- inexperience is advanced by making it easier
- experience is advanced by making it harder
Social Engineering is the fine art of letting other people have your own way.
"It's okay to talk to other people. Just don't talk to HIM!" lmao
Amazing interview
"You can talk to me. Its fine. I promise." With a giant evil grin. Thor, you are awesome, dude. 😅
thor: "im not competing in life this time guys, you can come to me for advice or guidance"
thor: *becomes the most famous online personality of all time* (wins the internet)
everyone: "god damnit he tricked us"
Of course the Goblin King doesn't sleep.
“Don’t be a dick along the way.”
Fantastic life advice
Calls himself Thor, but this dude is Loki personified. At this point, I wouldn't be remotely surprised if his ferrets were actually several polymorphed Fenrirs...
He doesn't call himself Thor. That's his name.
Clever hackers like Thor make me feel so insecure (emotionally and professionally lol)... not to mention vulnerable and stupid in my everyday life.
Love it.
One of the best ways to trick someone trying this on you is to lie about pretty much everything if i don't know you or feel like i cant trust you I'll literally pull out a backstory and personality that I've had sitting In storage in my head.
pirate tell them you built your own key
What you don't realize is King of the Grimmlins over there Was social engineering the other 3 the entire time... how? Guy's got a mind like a steel trap so to speak... he remembers.
Pulling up the whiteboard is fucking great
I may or may not have attended E3 three years in a row as someone who never worked in the game industry in my life… I may or may not have eaten at many private corporate parties and made awkward small talk like I was from a different division that they never heard of… maybe
I would talk to him all the dam time... Just to learn a fraction of what he has in that head :) priceless LMAO
Yes it's been said (I'm sure) a thousand plus times, but Thor could quit this job and do movie trailer voice overs and make a killing. The man must have two sets of balls.
Went to DefCon and hacked the hackers. Yikes.
Thor needs to narrate books lol
Waste of talent
what application he is using to draw on board ?
MS paint lol and I’m not kidding. He posted a short on it not long ago, he draws with his mouse.
It's Defcon, trust no one, confirm everything.
I feel awesome having a non scan wallet.
This video was just what I needed to hear to overcome my fears and start trading. Thank you for the encouragement!
And that's why you don't get on your social media and announce to the world that you will be going somewhere out of town at an upcoming date. All you are doing is letting bad people know when your house will be empty. Always wait till you're back from the trip and say, "We just did this." Past tense is the key.
Thor used the oldest trick in the book...lying
2:10 Defcon, everybody is hacking big corpo crap. PiratSoftware just hacked the whole of Defcon. What a flex.
Social Engineering Specialist --- Because there is no patch for human stupidity.
I want to join you!
hold up HOLD UP 🤣🤣🤣🤣🤣 Are you telling me they made signs and spread "don't trust this guy"? DON'T TRUST ANYONE AT DEFCON!!! WTF... lmao.
social engineering was the reason you were there in the first place 🤣
5:37 the dweebiness, it hurts!!!! It burns my ears!!!!
I mean yeah, social engineering is taking advantage of the fact that the most insecure part of a system is between the chair and the desk.
it's shit like this that definitely makes it that he needs to be fucked with more on his streams.
What rules😂
Clever girl
Just wear a Yellow jacket and a scafolding. Ez
72 hours straight? Not possible without drugs.
72 hours without sleep? wtf? 😂
stimulants. alot of these types are on it. more common than people realize
the "first" 40-48h are easy, especially if you often hyperfocus on something. After that you need adamantium hard dedication.. or uppers.
The amount of work you can get done in that is mind blowing. Tho i'd argue that in the 3rd day you get diminished returns and it's not worth it.
Bro I’m scared
So, every single interaction with another is a social engineering attack.
to a sociopath like thor, yeah
So thor is a conman? 😂
Wow
What do you mean there's a fucking convention called DefCon. Who's insane-
"I just won DefCon 23"
*DON'T JUST SAY THAT WITHOUT CONTEXT, THOR, JESUS CHRIST.*
He doesn't sleep for the 3 days?? What??
I take it you've never been to a con
Some people are just built different. If you think everyone's equal, lol. No
Staying awake for 3 days straight is nuts. That's so bad for you lol, people can die from lack of sleep.
3 days will never kill you but it's definitely not healthy. I don't see how people do it unless they are on stimulants or having a manic episode. Very hard to do without chemical assistance unless you are crazy. Kind of makes since though because amphetamines are a streamers perfect drug.
Automated hacking.
Ai assisted hacking.
test
Social engineer is just a modern way of saying con man.
yep blows my mind how his fans think this is some mind blowing new thing. very ironic actually. "I'm an expert social engineer but I'm so virtuous and wholesome and also I take donations" XD
Sounds a bit like cheating
Does this guy ever tell the truth?
holy moly nerd gathering.
i dont like this this thor guy
Yeah, lying about something when you are presented as a trusted figure works the first time. Then your reputation is shot.
So was the loss of your reputation with it?
What is bro talking about
For him, it was certainly worth it. That's something a hacker would do. While they no longer trust him for it, they had to respect that hustle.
@@crolaa6137 His social engineering "attack" involved him basically lying and using his standing within the community.
1. He said he was not participating in the competition. (lie 1)
2. He said that anyone that needed help can come visit him and he would help. (half truth. He did help those behind his team.)
3. He stole information from different teams and fed it to his team, while hindering the competition. (lie 2 and theft)
So yeah. He destroyed his credibility within the community to win a competition.
@@TheSonnyGo It hinders any further attempts to help others. They will have to consider that he is being malicious with his words, or if he is being sincere.
@@youngthinker1 I wasn't sure if you were talking that or not mb fam
Don't look at me like that. "It wasn't me" It was "Slim Shady"
cohhcarnage bring absolute nothing to the podcast..... he looks like a NPC.... soulless
The term you are looking for is "the straight man". Go look it up sometimes.
Defcon went woke which saddens me
It was socially engineered to keep a uniform base value set of attendees
what does woke mean
@@thyowennothing. It’s a term that American right-wingers coined that they use to describe anything they don’t like, and they just spam it everywhere
@@thyowen It generally means having basic respect for other people, and acknowledging that people different from you exist. Most recently, acknowleding that gay or trans people exist will get you labeled "woke".
@@aaronl19 Exactly right. It's a nothingburger of a term.
Only been to DefCon once (DC17), but it was awesome, started several interest hobbies including lockpicking...
but craziest story was when my friends and I did your Blizzcon hack [ua-cam.com/video/A40LkDfTmCk/v-deo.html] for the private end party on the last night. We managed to get a picture of one of the tickets, and made it at a print/copy spot in a shopping center. Low-tech hack FTW.
this was a great story.
Bonus story: it was about a week prior to going to DC17 that I learned what a backScatter attack and DDOS was...
Funny story. This lady called me to go to an interview and i was getting ready to attend. But then she did the following: she calls me before i was getting ready to hit the shower and check maps to get there in time as she tells me I need a badge with my pic taken and that i am supposed to just drop it in the bin after the interview and leave the building. Now, I'm no Elvis but I do know a thing or two about GDPR. When I said no can do, she ignored me ever since. Who knew that it costs money to go to interviews for jobs in UK 🙀? Or the fact that searching for a job is a job in itself that nobody pays you for, but they need you to change your CV to mirror every single job you apply for, whilst staying honest, of course (my horse). Welcome to Britain, the land of milk and honey. Come again.
🎉❤😘
Have you ever heard of Noam? He likes animals and boats
x=1
while [ x == 1]:do:
echo "lol
done
hmm dont know how to break youtube any more...comment section works on linux.
is breakable by learning the shell.
it gos throug a cpu somewhere. ( thats the core of hacking,(manipulating that core),in this case the UA-cam comment server.)
if you can insert a command,you got control.
(was able to flood the comment section somehow by using a while loop)
comment section,are just "strings",in a bash shell enviroment.
you can always break that.
break the data type.