For decades, cybersecurity has treated people as the problem.

Users click links.
Employees make mistakes.
Victims fall for scams.

But what if we've been looking at it backwards?

While defenders focused on technology, entire industries evolved around understanding, predicting, and influencing human behavior. Today's attackers combine behavioral data, AI-generated persuasion, social engineering, and psychological targeting to exploit trust at scale.

This session challenges one of cybersecurity's oldest assumptions and introduces a new framework for understanding human risk. Rather than viewing people as security failures, we'll explore how humans have become the primary target of increasingly sophisticated influence systems.

Through examples drawn from fraud, social engineering, AI, and behavioral manipulation, attendees will gain a deeper understanding of how trust is exploited and what defenders can do about it.

Session Type: Keynote, General Session, Security Conference

Audience: Security professionals, risk leaders, fraud teams, executives, product teams

Technical Level: Beginner to Intermediate

Preferred Length: 30-60 minutes

Key Takeaways:
• Reframe human behavior as an attack surface
• Understand modern influence and manipulation techniques
• Learn why traditional awareness programs struggle
• Explore new approaches to human-centered security