banner
LightNews
racheltobac.bsky.social
Rachel Tobac
@racheltobac.bsky.social
13K followers 740 following 250 posts
Hacker & CEO @SocialProofSec security awareness/social engineering training, videos, talks | 3X @DEFCON🥈 | Chair @WISPorg | @CISAgov Technical Advisory Council under Director Jen Easterly
Posts Media Videos Starter Packs
racheltobac.bsky.social
Rachel Tobac @racheltobac.bsky.social · 19h
Thank you Andy!
1 1
Reposted by Rachel Tobac
andyjabbour.bsky.social
andy jabbour @andyjabbour.bsky.social · 20h
Great work from @racheltobac.bsky.social, with @cnn.com: How the latest deepfake scam can cheat companies out of millions. Good one to share with your company, and with friends & loved ones. edition.cnn.com/2025/10/07/b... cc @craignewmark.bsky.social @pausetake9.bsky.social @gate15.bsky.social
How the latest deepfake scam can cheat companies out of millions | CNN Business
From CEOs to colleagues, deepfake technology can trick people into sending money, sharing passwords, or revealing sensitive information - all in seconds. CNN’s Clare Duffy met with ethical hacker and ...
edition.cnn.com
2 8 8
racheltobac.bsky.social
Rachel Tobac @racheltobac.bsky.social · 1d
In 2025, I've had a steep increase in reports from clients about AI voice clone phone calls asking for money, passwords or codes.
I give it about 12 months before criminals increase use of live video call deepfakes in their scams.
Get your folks & team prepared to catch it now.
5 12
racheltobac.bsky.social
Rachel Tobac @racheltobac.bsky.social · 1d
continued...
- Fraudsters Cloned Company Director's Voice In $35 M Heist: forbes.com/sites/thomas...
- Wiz CEO says company was targeted with deepfake attack that used his voice: techcrunch.com/2024/10/28/w...
1 1 3
racheltobac.bsky.social
Rachel Tobac @racheltobac.bsky.social · 1d
These live video call or audio call deepfakes are increasing in the business world. Most often, an exec is deepfaked to the team that supports them asking for money, passwords, MFA codes, etc:
- $25M sent to scammers in Arup video call deepfake attack cnn.com/2024/05/16/t...
British engineering giant Arup revealed as $25 million deepfake scam victim | CNN Business
A British multinational design and engineering company behind world-famous buildings such as the Sydney Opera House has confirmed that it was the target of a deepfake scam that led to one of its Hong ...
cnn.com
1 1 3
racheltobac.bsky.social
Rachel Tobac @racheltobac.bsky.social · 1d
*My Latest CNN Zoom Call Deepfake Demo*
An eng org sent $25M to scammers who deepfaked the CFO in a live video call.
Are your colleagues, fam & friends ready to catch this AI attack?
I demo'd a live Zoom deepfake to CNN's Clare Duffy to help you spot the signs:
edition.cnn.com/2025/10/07/b...
How the latest deepfake scam can cheat companies out of millions | CNN Business
From CEOs to colleagues, deepfake technology can trick people into sending money, sharing passwords, or revealing sensitive information - all in seconds. CNN’s Clare Duffy met with ethical hacker and ...
edition.cnn.com
2 11 20
Reposted by Rachel Tobac
nytimes.com
The New York Times @nytimes.com · 8d
Two of our tech reporters tested out Sora, a smartphone app made by OpenAI that lets people create videos entirely from A.I. “It is, in effect, a social network in disguise; a clone of TikTok down to its user interface, algorithmic video suggestions and ability to follow and interact with friends.”
OpenAI’s New Video App Is Jaw-Dropping (for Better and Worse)
www.nytimes.com
22 13 49
racheltobac.bsky.social
Rachel Tobac @racheltobac.bsky.social · 8d
Thanks for reading!
2
Reposted by Rachel Tobac
alanstamm.bsky.social
Alan Stamm @alanstamm.bsky.social · 8d
"It makes it really easy to create a believable deepfake in a way that we haven’t quite seen yet."
-- @racheltobac.bsky.social, CEO of SocialProof Security, a cybersecurity start-up in San Francisco
nytimes.com
The New York Times @nytimes.com · 8d
Two of our tech reporters tested out Sora, a smartphone app made by OpenAI that lets people create videos entirely from A.I. “It is, in effect, a social network in disguise; a clone of TikTok down to its user interface, algorithmic video suggestions and ability to follow and interact with friends.”
OpenAI’s New Video App Is Jaw-Dropping (for Better and Worse)
www.nytimes.com
1 2 6
racheltobac.bsky.social
Rachel Tobac @racheltobac.bsky.social · 11d
My worddd
3
Reposted by Rachel Tobac
teacakepup.bsky.social
Traci @teacakepup.bsky.social · 11d
@racheltobac.bsky.social new threat model for businesses? 😬😵‍💫
404media.co
404 Media @404media.co · 11d
New: landlords are demanding potential tenants hand over employer login credentials so a tool can verify their income. We were sent screenshot of the tool, Argyle, downloading much more data than necessary to approve the renter. "Opt-out means no housing" www.404media.co/landlords-de...
Landlords Demand Tenants’ Workplace Logins to Scrape Their Paystubs
Screenshots shared with 404 Media show tenant screening services ApproveShield and Argyle taking much more data than they need. “Opt-out means no housing.”
www.404media.co
3 2 11
racheltobac.bsky.social
Rachel Tobac @racheltobac.bsky.social · 23d
Thank you for the kind words!!
1
Reposted by Rachel Tobac
707kat.bsky.social
707Kat @707kat.bsky.social · 23d
This should be mandatory watch by everybody who has a phone and or email. @racheltobac.bsky.social shows how vulnerable we all are to getting hacked through social engineering and with gAI tools it's only gotten easier.
Social Engineer: YOU are Easier to Hack than your Computer
YouTube video by Scammer Payback
www.youtube.com
2 11 49
racheltobac.bsky.social
Rachel Tobac @racheltobac.bsky.social · Sep 10
Thank you!!
1 1
Reposted by Rachel Tobac
morrick.bsky.social
Riccardo Mori @morrick.bsky.social · Sep 10
I only watched this today, but I enjoyed it immensely. So many security lessons in a very entertaining package. 😊
racheltobac.bsky.social
Rachel Tobac @racheltobac.bsky.social · Aug 21
*New live hack demo - stealing security question answers w/ AI voice clones*
At @defcon.bsky.social I went on ScammerPayback podcast and hacked the host by calling his friends & stealing answers to his bank's password reset questions using a voice clone w/in 10 secs.
www.youtube.com/watch?v=xEdZ...
Social Engineer: YOU are Easier to Hack than your Computer
YouTube video by Scammer Payback
www.youtube.com
1 2 13
Reposted by Rachel Tobac
ambermac.bsky.social
Amber Mac @ambermac.bsky.social · Sep 6
🪞Does ChatGPT think you're perfect? You're not alone.

🎧 On this week's episode of The AmberMac Show podcast, @racheltobac.bsky.social and I chat about the sycophantic nature of this popular tool.

Listen to the full episode here:
bio.site/ambermac
1 1 10
Reposted by Rachel Tobac
ambermac.bsky.social
Amber Mac @ambermac.bsky.social · Sep 6
💻 When I need to learn more about AI safety & security, I ask @racheltobac.bsky.social.

You may have seen her on 60 Minutes.

I met Rachel when I interviewed former FBI Director James Comey at an event (we all had dinner the eve before, that's a whole other story!).

www.youtube.com/watch?v=cule...
AI Safety & Security with Ethical Hacker Rachel Tobac [The AmberMac Show Ep029]
YouTube video by Amber Mac
www.youtube.com
4 15
Reposted by Rachel Tobac
ambermac.bsky.social
Amber Mac @ambermac.bsky.social · Sep 3
🥺 Are chatbots dangerous for our kids?

🎙️ We are dedicating this week's new episode of The AmberMac Show podcast, out today, to this topic 👇
bio.site/ambermac

@racheltobac.bsky.social on some of these risks

@jeffmacarthur.bsky.social on the dangers of chatbots becoming a "mentor" in the home
2 16
racheltobac.bsky.social
Rachel Tobac @racheltobac.bsky.social · Sep 2
Thank you!!
1
Reposted by Rachel Tobac
marko.social
Marko Bevc @marko.social · Sep 2
Great interview with @racheltobac.bsky.social shining a light in a lot of important topics, like what are likely attack vectors, impact of #AI on #security, #ethics, affecting social interactions and #privacy .

"Be politely paranoid." 👏

www.youtube.com/watch?v=xEdZ...
Social Engineer: YOU are Easier to Hack than your Computer
YouTube video by Scammer Payback
www.youtube.com
3 6 12
racheltobac.bsky.social
Rachel Tobac @racheltobac.bsky.social · Aug 31
Thank you!!
2
Reposted by Rachel Tobac
lisihocke.bsky.social
Lisi Hocke @lisihocke.bsky.social · Aug 30
If you want to learn more on how easy these things are these days especially given AI tooling, I recommend following @racheltobac.bsky.social and her fabulous work on social engineering. Learned a bunch from her and her demonstrations. Latest video I loved: youtu.be/xEdZwLRJttQ
Social Engineer: YOU are Easier to Hack than your Computer
YouTube video by Scammer Payback
youtu.be
2 3 18
racheltobac.bsky.social
Rachel Tobac @racheltobac.bsky.social · Aug 29
Thank you!
racheltobac.bsky.social
Rachel Tobac @racheltobac.bsky.social · Aug 28
Oh neat!
1
racheltobac.bsky.social
Rachel Tobac @racheltobac.bsky.social · Aug 28
Thank you!!
1