Sign up to save your podcasts
Or
Share Identity Trafficking
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Identity Trafficking
Some people are willing to hand over their identities for cash, while organized fraudsters are lining up to buy them. What used to be a matter of stolen credit cards has turned into a global marketplace where personal details fuel large-scale fraud. Now with AI, automation, and deepfakes making impersonation easier than ever, it's becoming much more difficult to protect identities.
To understand how we got here and what can be done, I spoke with Ofer Friedman, Chief Business Development Officer at AU10TIX. Ofer has spent more than 15 years in the identity verification and compliance world, working with companies like PayPal, Google, Uber, and Saxo Bank. He's seen the evolution from basic ID checks to today's sophisticated fraud-as-a-service platforms, where attackers can buy stolen data cheaply, sometimes for just a few dozen dollars, and use it to launch real-time, undetectable attacks.
Ofer explains why traditional approaches like uploading a photo of your ID are no longer enough, and why privacy, in practice, is already gone. He walks through the "minefield strategy" of fraud prevention, where businesses must layer multiple defenses like device, network, and behavioral indicators. We also talk about the rise of digital IDs, the coming challenge of quantum computing, and why regulators and service providers, not consumers, are now the ones who must shoulder the responsibility of protecting identities.
Show Notes:- [01:00] Ofer explains his role in forecasting fraud trends and designing solutions, drawing from years in identity verification and compliance.
- [03:32] The conversation turns to people selling their identities, with fraudsters buying because impersonation is easier than ever.
- [05:18] Ofer describes how sales happen in encrypted channels like Telegram or Discord, often targeting desperate individuals.
- [07:07] He calls these sellers "identity mules," noting they only receive a few dozen dollars per transaction.
- [08:20] With billions of stolen data points in circulation, there's more identity data than people, making personal data cheap and plentiful.
- [09:00] Regulations require minimal information, often just basic ID details and a selfie, which makes fraud easier to attempt.
- [11:00] Deepfakes and injection attacks undermine even live ID checks, giving rise to fraud-as-a-service platforms that automate attacks.
- [13:00] New age verification laws in the US and UK highlight the growing tension between privacy and regulation.
- [15:53] Ofer outlines the "minefield strategy," where layered defenses (ID, device, network, behavior) are needed since no single tool is sufficient.
- [18:46] The discussion shifts to how fraud is global, not just American, and why digital IDs may offer better protection though not without flaws.
- [21:45] Fraud is evolving quickly with automation, enabling fraudsters to launch massive, randomized attacks.
- [29:03] Ofer explains the three lines of defense: live checks, collateral risk factors, and behavioral monitoring.
- [31:40] He stresses that privacy is effectively dead, as the balance between privacy and security always favors security.
- [34:47] Consumer education won't stop fraud—technology and companies must take the lead in identity protection.
- [39:14] Identity verification and cybersecurity are merging into one process that scrutinizes users everywhere online.
- [45:34] The rise of agentic AI could reduce friction in transactions, but desensitization means people accept more scrutiny over time.
- [47:24] Ofer argues regulations need to evolve, calling for service providers to be rated and held to higher standards.
- [50:36] He reflects that we're moving into a new era where deepfakes and impersonation will affect not just finances but media, politics, and trust itself.
- [52:05] Ofer closes with advice on evaluating identity verification vendors, emphasizing layered defenses and transparency.
Thanks for joining us on Easy Prey. Be sure to subscribe to our podcast on iTunes and leave a nice review.
Links and Resources:- Podcast Web Page
- Facebook Page
- whatismyipaddress.com
- Easy Prey on Instagram
- Easy Prey on Twitter
- Easy Prey on LinkedIn
- Easy Prey on YouTube
- Easy Prey on Pinterest
- AU10TIX
- Ofer Friedman - LinkedIn
View all episodes
By Chris Parker
4.7
3030 ratings
Some people are willing to hand over their identities for cash, while organized fraudsters are lining up to buy them. What used to be a matter of stolen credit cards has turned into a global marketplace where personal details fuel large-scale fraud. Now with AI, automation, and deepfakes making impersonation easier than ever, it's becoming much more difficult to protect identities.
To understand how we got here and what can be done, I spoke with Ofer Friedman, Chief Business Development Officer at AU10TIX. Ofer has spent more than 15 years in the identity verification and compliance world, working with companies like PayPal, Google, Uber, and Saxo Bank. He's seen the evolution from basic ID checks to today's sophisticated fraud-as-a-service platforms, where attackers can buy stolen data cheaply, sometimes for just a few dozen dollars, and use it to launch real-time, undetectable attacks.
Ofer explains why traditional approaches like uploading a photo of your ID are no longer enough, and why privacy, in practice, is already gone. He walks through the "minefield strategy" of fraud prevention, where businesses must layer multiple defenses like device, network, and behavioral indicators. We also talk about the rise of digital IDs, the coming challenge of quantum computing, and why regulators and service providers, not consumers, are now the ones who must shoulder the responsibility of protecting identities.
Show Notes:- [01:00] Ofer explains his role in forecasting fraud trends and designing solutions, drawing from years in identity verification and compliance.
- [03:32] The conversation turns to people selling their identities, with fraudsters buying because impersonation is easier than ever.
- [05:18] Ofer describes how sales happen in encrypted channels like Telegram or Discord, often targeting desperate individuals.
- [07:07] He calls these sellers "identity mules," noting they only receive a few dozen dollars per transaction.
- [08:20] With billions of stolen data points in circulation, there's more identity data than people, making personal data cheap and plentiful.
- [09:00] Regulations require minimal information, often just basic ID details and a selfie, which makes fraud easier to attempt.
- [11:00] Deepfakes and injection attacks undermine even live ID checks, giving rise to fraud-as-a-service platforms that automate attacks.
- [13:00] New age verification laws in the US and UK highlight the growing tension between privacy and regulation.
- [15:53] Ofer outlines the "minefield strategy," where layered defenses (ID, device, network, behavior) are needed since no single tool is sufficient.
- [18:46] The discussion shifts to how fraud is global, not just American, and why digital IDs may offer better protection though not without flaws.
- [21:45] Fraud is evolving quickly with automation, enabling fraudsters to launch massive, randomized attacks.
- [29:03] Ofer explains the three lines of defense: live checks, collateral risk factors, and behavioral monitoring.
- [31:40] He stresses that privacy is effectively dead, as the balance between privacy and security always favors security.
- [34:47] Consumer education won't stop fraud—technology and companies must take the lead in identity protection.
- [39:14] Identity verification and cybersecurity are merging into one process that scrutinizes users everywhere online.
- [45:34] The rise of agentic AI could reduce friction in transactions, but desensitization means people accept more scrutiny over time.
- [47:24] Ofer argues regulations need to evolve, calling for service providers to be rated and held to higher standards.
- [50:36] He reflects that we're moving into a new era where deepfakes and impersonation will affect not just finances but media, politics, and trust itself.
- [52:05] Ofer closes with advice on evaluating identity verification vendors, emphasizing layered defenses and transparency.
Thanks for joining us on Easy Prey. Be sure to subscribe to our podcast on iTunes and leave a nice review.
Links and Resources:- Podcast Web Page
- Facebook Page
- whatismyipaddress.com
- Easy Prey on Instagram
- Easy Prey on Twitter
- Easy Prey on LinkedIn
- Easy Prey on YouTube
- Easy Prey on Pinterest
- AU10TIX
- Ofer Friedman - LinkedIn
More shows like Easy Prey
View all
Criminal
37,661 Listeners
Wait Wait... Don't Tell Me!
38,843 Listeners
Let's Not Meet: A True Horror Podcast
8,746 Listeners
Darknet Diaries
8,051 Listeners
The Intelligence from The Economist
2,546 Listeners
Dateline NBC
47,845 Listeners
The Shawn Ryan Show
46,029 Listeners
Watchman Privacy
75 Listeners
Body Bags with Joseph Scott Morgan
2,207 Listeners
The Rest Is Classified
1,105 Listeners