This is true. People believe that most people are not very trusting of others but in fact, studies have shown that people are much more trusting of strangers than we'd assume. One of the studies I remember they called a bunch of random people, told them to flip a coin, and if it was heads, they win money. If it was tails, they didn't win. It was split evenly 50/50 on who reported heads and tails, meaning people weren't lying to say they got heads just to win the fake prize. They actually believed the caller and flipped a coin. Pretty interesting. This sort of psychology can be quite fascinating, especially since we don't know exactly how or why it all works the way it does.

A quote that I remember is "if there is a conflict between security and usability, usability always wins". An example for this is that if employees are required to use long and complicated passwords, they will start writing them down on a piece of paper on their workplace. I also know a company where there was a requirement to use second factor authentication to access certain data, and the session regularly expired while looking through the data. Only took 1 day until someone wrote a "stay alive" script that prevented the expiry. If you restrict the user rights on computers too much (e.g. keep them from installing software they actually need), employees will start working on their private PCs and transfer data. If employees are required to change their passwords regularly, they will only change a minor detail about it (e.g. change a digit at the end of it) I think this goes in a similar direction - you can totally make an IT system quite secure, but you really need to be careful how it impacts usability. This, combined with, as you said, general helpfulness and trust in other people's good intentions will always be a weakness. Imo, if social engineering is done well (involving publicly available information about a company or private data that makes things seem plausible, almost everyone will fall for it. I include myself here btw. If someone really did his research on me and crafts an email with believable content from a person or company I interact with, without any obvious red flags, it is quite likely that I will click a link or open an email attachment...

Yes sir 😺

home depot and target on episode 2 and 3

or microsoft....

Microsoft tech support is like 90% Indian

Yeah the fake tech support William

It could be any company, really.

@matthewmorrison3703 Nigga I don't even remember what this video is about

😂😂

Ya alot of the top hackers change sides after they are caught by fbi and are asked for a good plea deal or no jail at all if they would instead use their knowledge and help the government

It's just fun

That's not sociopathy, Sociopathy is someone who doesn't have the ability to form their own emotions, and can't really comprehend why emotions are important, and they can become great a miming emotions, so yes sociopaths are great manipulators, but there's a whole bunch of impulse stuff that comes along with it.

@@callofdutyblackops9 agreed, and I'll add to grace that Being used for crime or not it's still manipulation.

What a crockof shit he's stealing

Rhandy it's not even social skills, it's just lying. You have the skills to do this haha

Everything is easy, if you know what you're doing

just stick to the script and its easy as hell

I recommend you to watch some defcon presentations on social engineering. It's really easy to convince people to give you the information. You have to understand that all he does was asking a guy to search a web-site. What they didn't tell you that somebody had to find that exploit, wrote a code/script... Not to mention they need to mess around his/theirs system and dig deep for flaws.

guys, I think he was being sarcastic

The day an Age where being a gee is still "Childish "

Extritio I thought this same exact thing and scrolled down to see someone else did too lol

It's not childish to be a fan of something

lmfaaooooo

That joke was actually a lil more funny because it's comin' from a weeb, haha.

i know for real

I know right, this is news doing scare bs once again. Just clicking a link doesn’t give them access to your whole computer. Otherwise it be completely unsafe to surf the web, since clicking links is the entire process of surfing the web. These scam sites are always trying to get you to run executables. Why the heck would they bother if just clicking the link for the executable download was enough?

Yeah keep *inspecting robux in roblox dude*

+MrLeviNielsen lmao😂😂😂

but that's true

@@Dark_Rizz Moron you can't hack robux by messing with inspect element. The currency is stored on secured roblox servers. I already tried with picto and failed.

@@blakebarbee7224 that was a joke don't take it too serious you'll get heart attack LOL

lol yeah that is what I thought too

I like to think he had Social Engineering Toolkit on Kali on that laptop installing his own propagating java backdoor.

Hardly a random guy.

Adam Webster well, he did write it.

never heard about privilege escalation? if he hacks a pc inside a company, he can access to the whole

What if he wasnt given the local ip of the company?

@annaparker8234 I think this video give the wrong portrayal. I'm in tech so I know what you are talking about, which is totally logical, but this video definitely made it look like the user interaction was all it took to completely own them.

I think that's impossible

use a hatchet.

njice nice meme nice nice meme nice meme

Yes, learn your marketing.

its not impossible, its possible. We have something called a brain inplant where a chip gets inplanted in your brain, after thats done you can hack it. They inplant these chips into paralyzed people in some countrys like America so they can gain control of parts of their body. So with a chip inplanted in your brain hackers can manipulate the signals and make harm. This tech is many years old so google it if you dont believe me. You can do same thing with cookroaches and other insects aswell, Google cyber cookroach, inplant a chip into his antennas and you can control the cookroach like a robot.

LMFAO

Priceless

🤣😂😂😂😂

Hahah

Hahahaha

i need hackers worldwide m4n4n@hotmail.com

Kyle Choi how was this Click Bait??

ikenna unamadu title watch this hacker break into a company instead he just calls a bussiness man and let him go through a computer..

Marcus 5_887_4 lol so the computer broke in the company?

Boy does this comment age well

ya

dafuq is wrong with that?

And here is another guy who thinks that growing up means giving up Anime & Cartoons.😂😂

lmao

We got lots of famous people who are fans of marvel. What’s wrong with that

Tequila Tyrant spider man isn’t just for kids, how could u think that? That is so stereotypical 😹😹😹

It's just a joke bro.

i was just about to say that🤣🤣🤣

wth?

@@AlexYazanGames nevermind, they won. I lost. But I gave them hell in the meantime. Evil does win sometimes.

@@puchu_5001 nevermind. It's in the past. Evil neighbors and evil HOA in my old neighborhood in Florida. They attacked a single mom (and others before me too), vandalized my property, and I had to cash in what little retirement I had worth thousands of dollars in order to hire lawyers to fight them. My own lawyers scammed me too. I only lived in my house for 4 years. That was enough for me. You can't win against an evil HOA. Don't bother fighting them. There is no law that will protect you against them. 4 years of hell and that was the last straw. I moved to Alaska. No more HOA ever again.

@@puchu_5001 she's in Alaska so she was probably in the midst of fighting with a bear; the bear obviously won, took her phone, then made this comment while pretending to be her. It's a very tragic story, and we watched it play out.

@@5kr3aminMunk33 That’s very tragic. I feel very sad that Shannon died. 😔

BOI DONT TRUST THE LINK I GOT RATTED!!!!!!

lol you cant do that thats impossbile is this like some windows 7?

untrip trip you’re brain dead. You’d need a JavaScript RCE exploit (all of them are patched) so it’s impossible

leaking RC4 isnt hard lol no where near it

go to d99q.cn if you want to get hacked lol Edit: actually don't go

Print:(“hello, world”)

@@iiReTr0Z python :)

@@iiReTr0Z actually print("hello, world") :)

ticK Nearly clicked the link myself!

I clicked it took me to a Telus survey

that's bullshit, browser always prompts you if you are giving any sort of permission. On the other hand if the link downloaded the file, he would have to open it/run it. So I am really not sure how they have done it. Probably was oversimplified in this video

not when you work in the company

No company I've ever worked for has had automated tech support. Every time I've called it's been a human straight away.

Our internal "customers" were supposed to open problem tickets for help, not call someone in IT. Yea, that rarely worked -- especially for managers and higher. 🤣🤣🤣

*metasploit not metasploitable

@@steez4778 the vm image is called metasploitable...

@@revivalamt6991 metasploitable is a machine meant to be created to practice exploitation and pentesting, on the other hand metasploit is the one handles the exploits

@@steez4778 yeah man i got confused

Having tried all hack tools on KZbin,I must say @andrewhack4 on Instagram is the only working one.

He's the 400 pound man in the basement, right?

Yeah, his real name is Chuck, and it's his mother's basement.

Spooky euH

Uh 4chan is a chat service.. not a hackers name.

Broken Logic whoosh...

He could just as easily asked the operator to try an download a program to see if it works on his computer instead of leading him to a phishing website.

Chuck Norris If it was that easy cybercrime statistics would be exponential.. Software bugs that can be leveraged are world-class-hard which is why bounties are so high and so sporadically claimed.. Social-engineering is very hit and miss that's why in the rare instances it works it usually doesn't get the attacker that far in to infrastrucure before getting response. The headlines you see every month or two are like one out of tens of thousands for that months. At the very least.

nigga browser exploitation is trivial. just because people aren't partcipating in pwn2own or whatever fucking competition doesn't mean there aren't hundreds of fucking exploits being vantaged in the wild. computer security is a fucking joke. a 120k line program isn't ever going to be secure unless the entire fucking world audits it and every modification made is signed off on by every1

yeah that's why world class hackers are digging in to nvidia driver code looking for sandbox escapes.. Stuff people pay bounties on is way bigger than 120k lines..

TJ DEV as far i i understood the support guy opened a file... that he downloaded​ from that website... So i guess it wasn't the browser's fault...

Yeah

Ahhh yes because hackers aren't masterminds. You have no clue what you're talking about. It definitely IS possible, and it's not about having "automatic downloads" enabled.

It isn’t possible to get your computer hacked by opening a website

Unless there’s a vulnerability but Microsoft would fix it fast

I agree with this comment, unless that IT guy has a fully disabled firewall and has all the network ports in his pc fully open and unsecured, there is no way just entering a website would get you hacked.

.

my electricity bills are only 15$ per month

but good one😂😂😂

@@nightviper7354 old is no bill

🤣🤣🤣👍

i need hackers worldwide m4n4n@hotmail.com

Sayyam Jain how?

Sayyam Jain not necessarily... it really depends on if your a white hat or black hat hacker

You probably don't know what hacking is, there is 3 types of hackers, black hat hackers which as you said if they are know they are a failure, there is the grey hat they are neutral they hack but they do not steal any money they just do it for fun then there is the white hat like this guy, he helps companies to protect against black hat hackers

not necessarely if I'm gonna be a black hat hacker, (there's 20% chance that I'll be one) and I'm known as for example: *3xploit* (my alias), that doesn't mean that I've failed as long as I am free and anonymous (my real identity isn't known), I'm successful hacker

your on the FBI hit-list

i know right. complete bs. missing 1/2 the story

@cat and lasagna the guy made a rat and that is what was installed on the victims computer the victim never executed the file so how does that work??? It doesn’t so yeah

Actually it’s simple. The Browser Exploit Framework (BeEF) does exactly this, as well as other tools in Kali Linux.

388 Note he might have a child that likes spiderman

lmao

and got paid.

with a link to a website? I didn't know you can do that so easily. unless the IT guy clicked on a prompt triggering some js code.

I do cyber security for the USAF lol

Pikachu Fizz So true

Exactly. They probably didnt show some intermediary steps. Maybe ran an exe file or something. But asking tech support to download and run a file isnt very conincing. Pretty sus…

Good for you?

Might not even mean that- I doubt it does. It’s just text.

Says Vadim

I7itI3ull T.O he has

then why doesn't he know how to use it?

He does, better than we do, including you

Guy Facks f

Just for demonstration...

Barbie wasn't there.

A majority of Instagram accounts are hackable with instahaxor. There is no need to throw away your time with complex methods such as phishing.

Yes and

damn phrazzal tropix here

If he could get on his computer he could release every credit card or bank acc thats linked to the company so yeah, fire him

Companies will train employees, not fire them.

Zach I agree, I don't think he would get fired.

Intel Elite, most companies are wise and don't store that kind of information in plain text on an on-site database. Not encrypting banking information is suicide...

what the

well, not all companies have AVs some are just too stupid and maybe we could use something like powersploit, to avpid AV? and as security developes, so does exploits just make an invisible 0-day exploit, and u're good to go no AV alarms

Mate, im a bit late here but i know companies today who's ''databases'' are still run on fucking excel spreadsheets. Don't come all high and proud about your startup having good security practices. This is miles more common than you think.

@@stillmillionair A bit late? Its been 4 years my guy

asmcriminaL Social engineering is not separate from hacking. It's a different branch, sure, but social engineering is still technically hacking.

Yes, however this link is much harder to get, you have to make it yourself you cant just get it from a website.

@@animationnkdh3774 *angry BeEF XSS Framework noises*

1. It's called jokes

No Inspect Element too? what a noob jk dont take this seriously

ain't nothing wrong with that.

hey, he bought that statue, that`s what adults do, buy shit with your own money.

Yeah, and you have a picture of Aleks as your profile pic. You also have a username Gravity Sandwich. Also, you failed to punctuate your sentence. Did you fail the fifth grade? Ever read spiderman? It's not aimed towards children.

too many manchildren here, defending the grown adult with spiderman merch

@@ClockworkRBLX Who cares about Spider-Man merch lol

BAHAHAHAHAHAHAHAHA DUDE im like that when chicks around i wanna fucking stick my usb in her 3.0

thats actually unlikely to be the same person. years ago i was interviewed by global news in canada and when the crew came to my house a lot of the stuff was edited and sometimes if things were not shot the way they want they will just have a pair of hands and make it look like its you to the casual viewer. They tell you that they are doing this upfront.

It's the guy with the vape shirt. You can see his sleeve tattoo.

Cool Videos its a fact doe all he did was make him install a keylogger

I heard an interesting thought experiment recently. If we were to live thousands of years, most of us would eventually become polyamorous. Because, you're bound to eventually meet/know more than one person who you love. And, it's essentially impossible for one person to meet all of your needs indefinitely. I think consensual non-monogamy is underrated.