This white-hat hacker catfished a bunch of defense information security experts

One day Thomas Ryan, who worked as a white-hat hacker and cyber security analyst, created an entire social media background and history for Robin Sage, an attractive 25-year-old girl who claimed to be a cyber threat analyst at the Naval Network Warfare Command in Norfolk, Virginia.

Robin Sage Hacker photo INFOSEC

Her Twitter Bio read: “Sorry to say, I’m not a Green Beret! Just a cute girl stopping by to say hey! My life is about info sec all the way!”

“Robin” had great credentials for a 25-year-old woman. She was a graduate of MIT with a decade of experience in cybersecurity, and she knew how to network very effectively. Ryan purposely chose a relatively attractive woman because he wanted to prove how sex and appearance plays in trust and willingness to connect. He pulled the photo from an amateur porn site, looking for someone who didn’t look American.

amateur porn pixellated robin Sage

Some other possibilities considered by Ryan . . .

Robin added 300 friends from places like military intelligence, defense contractors, and other security specialists. She also connected on LinkedIn with people working for a former Chairman of the Joint Chiefs of Staff and at the National Reconnaissance Office, the U.S. spy satellite agency. The most vital information was leaked through LinkedIn.

She duped men and women alike (but mostly men) without showing any real biographical information. Within two months time (December 2009-January 2010), she acquired access to email accounts (one NRO contractor posted information on social media which revealed answers to security questions on his personal e-mail), home addresses, family information, and bank accounts. She learned the locations of secret military installations and was able to successfully determine their missions. She received documents to review, she was invited to speak at conferences, and she was even offered consulting work at Google and Lockheed.

There were many red flags, especially the claim to have worked in Infosec since age 15. Her job title didn’t exist. Her online identity could only be traced back 30 days. Her name is based on a U.S. Army training exercise. Ryan says some in the Infosec community were skeptical and tried to verify her identity but no real alerts were made about just how deceptive the Robin Sage profile really was, and so this greatest example of “fake it ’til you make it” went on as Robin continued to win friends and influence people. This exercise was not popular with everyone in the INFOSEC community.

Infosec outrage at Tom Ryan

Ryan wrote a paper, called “Getting in Bed With Robin Sage,” which described the extent of how the seemingly harmless details in social media posts were as damaging as the information given to her freely by those who sought her opinion. Robin Sage was more successful at networking and getting job offers than any recent college graduate I’ve ever heard.

Happy female college graduate

I can be anything, I’m a Phoenix!

The only agencies with people who never took the bait were the FBI and the CIA. Ryan told the Guardian, “The big takeaway is not to befriend anybody unless you really know who they are.”

NOW: The 5 most dangerous hackers of all time >

OR: The 6 most shocking military impostors ever >

TOP ARTICLES
6 reasons the Air Force wants to get its hands on Russian DNA

Ankle bone connected to the shin bone, shin bone connected to the knee bone, knee bone connected to a Russian, Air Force wants to get his genome.

US Navy searches for 3 missing sailors after plane crashes en route to USS Ronald Reagan

The US Navy is conducting a search for the 3 missing sailors after a plane carrying 11 passengers crashed into the sea southeast of Okinawa.

If you don't know about Sword & Plough, you are wrong

The Holidays, like a hyped-up drill sergeant, are upon you. Don't you wish you had a 12-day guide to the best vet-made gifts around? Ho! Ho! Hoo-rah!

Why the 'Butcher of Bosnia' faces a life sentence for war crimes

Ratko Mladic, a former Serbian general, will receive a verdict from the International Criminal Tribunal for war crimes he committed, to include genocide.

Russia swears a cloud of radioactive pollution is not a nuclear accident

A radioactive cloud is moving over parts of Europe, seemingly coming from Russia, reminiscent of the Chernobyl nuclear-power-plant disaster in 1986.

Taliban drug labs targeted by B-52 strikes overnight

American aircraft have targeted drug producing facilities in Afghanistan for the first time under a new strategy aimed at cutting off Taliban funding.

Why South Korea is building a unique missile interceptor

A missile system that could be used to target North Korea Scuds will cost Seoul more than $800 million to develop, a Seoul defense committee said.

SEALs honor the man who made the ‘frogmen’ possible

Last week, at the Omni Shoreham Hotel, a crowd gathered to commemorate the fateful event that gave rise to what would become the US Navy SEALs.

The 50 most violent cities in the world

Of the fifty cities on the list, forty-three are in Latin America, including nineteen in Brazil, eight in Mexico, and seven in Venezuela.

How the true story of Thanksgiving ended in a war

Just a generation after the famed Thanksgiving feast shared between pilgrims and Native Americans, the two groups were engaged in bloody battles.