Your ex may still have access to your accounts, your phone, or your private life — even after you changed your password.

This episode explains how cyberstalking hides inside logged-in devices, shared biometrics, old account access, and security questions people close to you already know.

On this episode of Legitimate Cybersecurity, hosts Frank Downs and Dr. Dustin Brewer break down real cyberstalking cases involving toxic exes, stolen images, account impersonation, hidden device access, and the overlooked settings that keep people exposed.

Most people think the danger is “getting hacked.”

But in toxic relationships, the real danger is often simpler: someone close to you already had the key.

Frank and Dustin explain:

Why changing your password may not log someone out

How old devices can stay connected to your accounts

Why shared phones, laptops, and biometrics create risk

How security questions can be abused by people who know you

What warning signs suggest someone may be monitoring you

Where to get professional help if this is happening to you

This episode is part of our cyber safety series for people dealing with toxic relationships, stalking, harassment, and digital abuse.

Media/interview: [email protected]

Audio: https://legitimatecybersecurity.podbean.com/

Chapters:

00:00 — Your Ex, Walmart, or the State Agency Problem

00:51 — Why Cyberstalking Is Now Everyday Life

01:27 — Case 1: She Changed Her Password, But He Stayed Logged In

03:39 — Why “Logged-In Devices” Are So Hard to Read

05:20 — Don’t Share Accounts in Relationships

07:28 — The Netflix / Hotel TV Problem

08:20 — Why Access Tokens Keep People Logged In

10:21 — Marriott, Hotel TVs, and Automatic Logouts

11:41 — Case 2: Private Images Posted for 14 Years

13:36 — The Law Slowly Caught Up

14:41 — Photos, Trust, and Digital Leverage

16:32 — Treat Your Phone Like a Toothbrush

17:43 — Red Flags: When They Know Things They Shouldn’t

20:20 — Case 3: He Added His Thumbprint to Her Phone

22:28 — Why Biometrics Can Become Relationship Risk

23:31 — Used Phones, Forensics, and Hidden Data

28:27 — Don’t Let Someone Else Use Your AI Either

30:49 — Security Questions Are Broken

32:08 — Personal Cyber Hygiene Checklist

34:18 — One Year of Legitimate Cybersecurity

34:53 — Where to Get Real Help

35:46 — Keep on Cyberin’

#cyberstalking

#cybersafety

#digitalsafety

#toxicrelationships

#onlineprivacy

#phonesecurity

#cybersecurity

#domesticabuseawareness

#dataprivacy

#legitimatecybersecurity

One could be hidden in your car, purse, luggage, or jacket — and it may cost less than dinner.

Bluetooth trackers were built to find lost keys, but they can also turn nearby phones into a surveillance network.

In this episode of Legitimate Cybersecurity, hosts Frank Downs and Dr. Dustin Brewer break down how AirTags, Tile trackers, Samsung SmartTags, Find My-compatible devices, and other Bluetooth beacons can be abused for stalking, theft, and surveillance.

They explain why these devices do not “call home” like GPS trackers, how nearby phones quietly report their location, why some safety alerts can fail, and what to do if you suspect someone is tracking you.

This episode also covers real-world cases involving hidden trackers, vehicle sweeps, modded AirTags, stalkerware, smart clothing, and the broader problem of everyday devices becoming personal surveillance infrastructure.

If you think you may be in danger, contact professionals who can help:

National Domestic Violence Hotline: 1-800-799-7233

Coalition Against Stalkerware: StopStalkerware.org

Operation Safe Escape: SafeEscape.org

Media/interview: [email protected]

Audio: https://legitimatecybersecurity.podbean.com/

Chapters:

0:00 — A $29 tracker could be on you

0:46 — Why Bluetooth trackers changed personal safety

2:55 — How AirTags actually track location

5:18 — Why abusers use trackers instead of GPS

7:18 — AirTags, Find My, and Apple’s safety alerts

10:04 — Tile trackers and the limits of smaller networks

11:38 — Samsung SmartTags and smart home tracking

13:07 — Modded trackers and the speaker loophole

14:31 — The ethics of tiny surveillance devices

18:48 — Cars, phones, and surveillance double standards

22:33 — Real cases where trackers led to violence

24:27 — Pattern-of-life tracking in the real world

26:48 — Flipper Zero, Bluetooth footprints, and NFC risks

33:12 — What to do if you think you’re being tracked

34:00 — Where to search your car for hidden trackers

35:37 — Behavioral signs someone may be monitoring you

37:23 — Smart clothing and Bluetooth tracking risks

39:41 — Resources for stalking and domestic violence help

41:09 — Final thoughts

#cybersecurity

#airtag

#BluetoothTracking

#digitalprivacy

#Stalkerware

#personalsafety

#surveillance

#smartdevices

#legitimatecybersecurity

Gloria Globman — CTO of Acclaimed Technical Services, former Senior Cyber Advisor at the US Embassy in Tokyo, US Navy veteran, and Presidential Rank Award recipient — joins Frank Downs and Dustin Brewer to translate what's really happening on your home network. Every smart device is a tiny computer with a camera, a microphone, and an internet connection, constantly talking to its manufacturer, the cloud, and other devices on your Wi-Fi. Many of them will never be patched again. Some of the manufacturers don't even exist anymore.

In this episode we cover why mid-sized companies keep underfunding security until it's too late, how AI tools like Mythos and Zealot are compressing the patch window to almost nothing, why the upcoming TP-Link ban probably won't save you, and the simple home-router moves that actually do.

If you've ever brought a personal phone onto the work Wi-Fi, set up a smart camera you've stopped thinking about, or assumed "the cloud" means it's somebody else's problem — this one is for you.

🎙 Listen to the audio version: https://legitimatecybersecurity.podbean.com/

📩 Media / interview requests: [email protected]

👥 Hosts: Frank Downs and Dustin Brewer

🎤 Guest: Gloria Globman, CTO, Acclaimed Technical Services

Chapters:

00:00 The IoT problem nobody locks down

00:36 Meet Gloria Globman — Tokyo, the IC, and 20 years of cyber

02:10 Your smart devices are unlocked front doors

03:51 Cognitive offloading: convenience until it isn't

04:42 The aquarium that hacked a casino (MGM)

05:17 Are IoT devices just printers 2.0?

06:14 When personal phones meet corporate Wi-Fi

08:35 Work moved home — security posture didn't

09:19 Mid-sized companies and the 15–20% rule

10:16 Why "not sexy" budgets keep getting cut

11:24 Highest-impact moves: zero trust, segmentation, encryption

12:16 Patch, patch, patch — and why AI changed the timer

12:39 Mythos vs. Zealot: orchestrated AI attacks

16:09 Microsegmentation for your actual house

17:39 Why companies embrace BYOD anyway

18:48 Why VDI never quite won

22:18 Risk transference dysmorphia: "it's the cloud's problem"

22:53 Botnets, dead routers, and the FBI cleanup

23:24 Goodbye TP-Link — security move or theater?

26:25 What the average person should actually do tonight

28:21 Password managers, quantum, and MFA

29:44 Gloria's one piece of life advice

#cybersecurity #iotsecurity #smarthome #zerotrust #byod #HomeNetworkSecurity #infosec #dataprivacy #patchtuesday #legitimatecybersecurity

AI is no longer just answering prompts — it is imitating dead relatives, profiling shoppers, and helping companies decide what people pay.

That matters because the same hidden data systems behind convenience can reshape grief, prices, privacy, work, and trust without clear consent.

In this episode of Legitimate Cybersecurity, Frank Downs and Dr. Dustin Brewer break down a disturbing wave of AI and surveillance stories: AI avatars of deceased loved ones, Maryland’s move against surveillance pricing, Washington’s restrictions around public access to ALPR data, Virginia’s precise geolocation data ban, deepfake CEO scams, remote hiring impersonation, and employee webcam monitoring.

The big question: When AI can imitate people, price you individually, and watch you at work, what does consent even mean anymore?

Media/interview: [email protected]

Audio: https://legitimatecybersecurity.podbean.com/

Chapters:

00:00 — AI avatars of dead loved ones

01:19 — Grief, deception, and consent

02:48 — When an AI “person” is not really a person

04:00 — Frank’s Afghanistan story and withheld grief

07:14 — The problem with resurrecting people through AI

09:16 — AI ghosts, Benjamin Franklin, and Disney presidents

10:58 — Maryland moves against surveillance pricing

12:37 — When dynamic pricing becomes predatory

14:38 — Market pricing vs. personal profiling

15:35 — Washington limits access to ALPR data

18:10 — Virginia bans precise geolocation data sales

21:30 — Location data, pricing, and individual targeting

22:56 — Deepfake CEO scams and wire-transfer fraud

24:17 — The “three-finger test” for deepfakes

26:04 — Remote hiring scams and AI impersonation

28:23 — Laptop farms, proxies, and scam infrastructure

29:56 — Employee webcam and microphone monitoring

34:30 — Final thoughts: stay dressed at work

#ai

#cybersecurity

#privacy

#surveillance

#dataprivacy

#Deepfakes

#geolocation

#SurveillancePricing

#remotework

#legitimatecybersecurity

A new AI is being framed as a tool that can find zero-days fast and even “hack its way out” of containment.

If that claim is real, defenders, developers, and everyday users are about to feel the consequences.

On this episode of Legitimate Cybersecurity, hosts Frank Downs and Dustin Brewer are joined by Jason Casey, CEO of Beyond Identity, to break down the panic around Anthropic’s “Mythos” discussion, what AI can actually do for offense and defense, and where the marketing may be outrunning the real-world risk.

They dig into whether this is a true cybersecurity turning point, or the latest example of the industry turning fear into momentum. They also explore how AI is already reshaping blue team work, governance, detection, and security operations.

Plus: hacked smart vacuums, trackable e-ink nails, wearable surveillance, and why convenience keeps creating new attack surfaces nobody asked for.

Media/interview: [email protected]

Audio: https://legitimatecybersecurity.podbean.com/

Chapters:

00:00 The new AI panic begins

00:59 What “Mythos” is supposed to do

02:17 Is this a real threat or brilliant marketing?

07:12 Will this change security budgets and priorities?

10:11 Why cybersecurity leaders amplify moments like this

13:58 How AI actually helps blue teams

21:49 Rules, patterns, and better AI detection

23:59 The idea of an AI “security factory”

31:50 Beyond Identity’s new governance layer

35:30 Hacked vacuums, smart nails, and wearable tracking

45:00 Final takeaways

#legitimatecybersecurity #artificialintelligence #cybersecurity #anthropic #claude #aisecurity #zerodayjay #blueteam

A new lawsuit alleges LinkedIn may have been collecting data from inside users’ browsers in ways most people never expected.

If that is true, this is not just normal tracking. It is a much more invasive look into how websites can profile you behind the scenes.

In this episode of Legitimate Cybersecurity, Frank Downs and Dustin Brewer break down the class-action allegations against LinkedIn, explain browser extension detection in plain English, and talk about why so many people are fed up with paying for platforms that still treat their identity like a product. They also walk through what this kind of tracking could reveal about you, why regulation keeps falling behind, and what everyday users can do right now to limit exposure online.

📩 Media/interview: [email protected]

🎧 Audio: https://legitimatecybersecurity.podbean.com/

Chapters:

00:00 LinkedIn is spying on you?

00:37 What this new lawsuit actually alleges

01:34 Why this one feels different

03:32 Why people are so fed up with LinkedIn

06:04 What websites can already learn about you

08:23 How browser extension detection works

10:13 Why this feels so invasive

14:51 What you can do to protect yourself

18:11 Browser vs app: which gives companies more access?

20:46 Consent, ethics, and hidden tracking

26:56 Will regulation ever catch up?

28:15 Final thoughts

#linkedin #privacy #BrowserTracking #cybersecurity #dataprivacy #onlinetracking #surveillance #digitalprivacy #technews #legitimatecybersecurity

You expect a government app to inform you. You probably do not expect tracking capability, mystery dependencies, and sloppy security decisions.

This episode breaks down why the White House app is a warning sign for anyone who installs “official” software without asking what it can really do.

Frank Downs and Dustin Brewer dig into the White House app as a real-world case study in mobile privacy, dormant GPS functionality, third-party code dependencies, digital supply-chain risk, and the uncomfortable question of who is actually accountable when insecure software gets released.

This is not just about one app. It is about the broader problem with modern software: hidden permissions, weak development practices, and the false assumption that “official” means secure.

If you use apps from governments, brands, schools, banks, or anyone else you assume you can trust, this episode will make you think twice about what is really happening in the background.

Media/interview: [email protected]

Audio: https://legitimatecybersecurity.podbean.com/

Hosted by Frank Downs and Dustin Brewer on Legitimate Cybersecurity.

Chapters:

00:00 – Why this app matters

00:50 – The White House app and dormant GPS capability

02:47 – Why “it’s off for now” is not reassuring

07:47 – Real-world GPS tracking through everyday apps

10:06 – Why taxpayers should care about this one

11:35 – Random dependencies and supply-chain risk

14:05 – How software supply-chain attacks really happen

18:35 – Incompetence vs malicious intent

24:47 – Leftover dev tools, WordPress, and security basics

27:46 – Who is actually accountable?

32:49 – Cybersecurity is a mindset, not a checkbox

36:18 – Which frameworks help and which get gamed

39:34 – Listener shout-outs and close

#cybersecurity #appsecurity #dataprivacy #mobilesecurity #supplychainsecurity #privacy #WhiteHouseApp #infosec #LegitimateCybersecurity

AI is being forced into the tools you use every day before most companies have written real rules.

That matters because one careless prompt can become a privacy, compliance, or job-risk problem fast.

In this episode of Legitimate Cybersecurity, hosts Frank Downs and Dustin Brewer sit down with Walter Haydock to break down what happens when AI shows up in Word, email, HR systems, search, and business workflows before organizations are actually ready for it.

They unpack where companies get AI adoption wrong, why “just use it” is dangerous guidance, what accountability should look like, and how frameworks like ISO 42001 and the NIST AI RMF help organizations build rules before the damage is done. They also dig into AI hiring risks, shadow AI, risky models, and why some AI features feel more like forced adoption than useful innovation.

If you’ve ever wondered whether AI is helping your company or quietly creating legal, privacy, and security risk, this episode is for you.

Media/interview: [email protected]

Audio: https://legitimatecybersecurity.podbean.com/

Subscribe for more conversations with Frank Downs and Dustin Brewer as they translate the hidden systems shaping everyday technology.

Chapters:

00:00 AI is suddenly in your tools

01:14 Meet Walter Haydock

02:41 Every company needs AI rules

04:42 Why gray areas become risk

05:38 Advice for less technical businesses

09:44 ISO 42001 vs. NIST AI RMF

12:44 Who should own AI accountability?

14:24 AI in hiring and HR

20:50 Why bias never fully disappears

27:29 Will the U.S. regulate AI?

30:27 Where AI is being overused

38:27 Shadow AI and risky models

43:10 What StackAware does

44:23 Walter’s best advice

#artificialintelligence #aigovernance #cybersecurity #privacy #compliance #shadowai #iso42001 #nist #techrisks #legitimatecybersecurity

AI is starting to replace parts of white-collar work faster than most people realize.

The bigger problem is that it may also flood the market with insecure code, weaker judgment, and fewer real entry-level paths.

In this episode of Legitimate Cybersecurity, hosts Frank Downs and Dr. Dustin Brewer break down Anthropic’s latest report on the jobs most exposed to AI and explain what the headlines are getting wrong.

They dig into the difference between AI exposure and actual job loss, why the data may be skewed toward technical users, and why roles like programmers, analysts, support specialists, and customer service reps are being hit first. They also tackle the deeper issue: if AI keeps making it easier for inexperienced people to ship software, are we about to create a massive wave of insecure code?

This is not just a conversation about automation. It is a conversation about who still needs human judgment, where experience still matters, and why “efficiency” can quietly become a security problem.

Media/interview: [email protected]

Audio: https://legitimatecybersecurity.podbean.com/

#cybersecurity #artificialintelligence #techjobs #softwaredevelopment #jobmarket #anthropic #automation #infosec #legitimatecybersecurity

Your smart TV may be taking snapshots of what you watch, even when you think you bypassed the built-in apps.

That data can be used to identify shows, measure advertisements, and help build a profile of behavior inside your home.

In this episode of Legitimate Cybersecurity, hosts Frank Downs and Dr. Dustin Brewer explain how Automatic Content Recognition (ACR) works, why HDMI devices like Apple TV or gaming consoles may not stop it, and how companies correlate TV viewing with other data sources.

They also break down why opting out can be difficult, how these systems are used for ad measurement and profiling, and what steps viewers can take right now to reduce the tracking.

If you own a smart TV, streaming device, or connected home system, this episode explains what is actually happening behind the screen.

📩 Media and interview inquiries:

[email protected]

🎧 Listen to the audio podcast:

https://legitimatecybersecurity.podbean.com/

Chapters:

00:00 — Your TV Is Watching You Back

00:45 — What Automatic Content Recognition Actually Is

01:25 — How TVs Identify What You Watch

02:13 — Why HDMI Devices Do Not Stop It

05:25 — How Viewing Data Gets Linked to Your Phone

09:59 — Why Opting Out Is So Difficult

11:37 — Cameras, Microphones, and Smart Device Monitoring

18:51 — What You Can Do to Reduce Tracking

20:22 — VPNs, DNS Blocking, and Practical Limits

26:33 — The Real Takeaway: Every Screen Collects Data

#cybersecurity

#privacy

#smarttv

#dataprivacy

#surveillance

#smarthome

#technology

#streaming

#legitimatecybersecurity