Lost In Cyberia

Ep. 33 Why The Same 3% of People Keep Getting Phished with Dr Matthew Canham

Lost In Cyberia Season 2 Episode 11

Share episode

Use Left/Right to seek, Home/End to jump to start or end. Hold shift to jump forward or backward.

0:00 | 46:17

Why do people click on phishing links? Is it due to lack of awareness training? Is it lack of interest in securing their organisation? And what happens when AI agents, cognitive warfare, and weaponised ambiguity enter the picture?

We chat with Dr. Matt Canham who is the director of the Cognitive Security Institute, former cybercrime investigator with the U.S. Department of Justice, and one of the leading voices in behavioural cybersecurity.

Dr. Canham shares his research on 'repeat clickers'. This is the small percentage of users (around 3–5%) responsible for nearly half of all simulated phishing incidents. Crucially, it's not ignorance. These people know the policies. So what's actually going wrong, and how do we fix it? The answer involves training the brain's fast, automatic responses rather than relying on conscious decision-making.

The conversation then expands into the territory of AI agents as a new attack surface, the emerging field of neurosecurity, and cognitive warfare. If you're not sure what cognitive warfare is we explain how it's the disruption of decision-making as a strategic weapon. Dr. Canham also introduces the concept of ASID attacks, which exploit narrative and ambiguity rather than software vulnerabilities.

Plus, details on the first-ever Cognitive Security Conference, coming to Las Vegas this August.

Cognitive Security Institute:
https://www.cognitivesecurityinstitute.org/

Cognitive Security Institute Conference tickets:
https://www.cognitivesecurityinstitute.org/cognitive-security-conference

Send us Fan Mail

Find us on Instagram, YouTube or LinkedIn @thecybersecuritygals