Fake Party Invites and the Rise of Social Phishing Attacks
Get the full intelligence
Search transcripts, export clips, track mentions, and explore all topics from “Fake Party Invites and the Rise of Social Phishing Attacks” inside PodZeus.
A new wave of phishing attacks is exploiting personal connections through fake party invites from services like Evite and Paperless Post, preying on curiosity and FOMO. But the real story isn’t the novelty of the scam—it’s how deeply entrenched the problem is in flawed system design. Hosts Kevin Tackett and Chase argue that these attacks aren’t new, and the real failure isn’t user ignorance, but the tech industry’s persistent reliance on link-clicking as a core interaction. They call out companies like PayPal and Chase for sending phishing-like emails that force users to click dangerous links, even when they’re aware of the risks. The solution? Stop building systems that depend on users clicking random links. Instead, design for safety: make the main site the default, use code-based verification, and prioritize secure-by-design principles. AI may be helping attackers craft better messages, but the core vulnerability remains human psychology—and flawed architecture. The episode ends with a reminder: the most dangerous security flaws aren’t in code, but in the assumptions we make about how people behave.
Stop designing systems that force users to click arbitrary links—this is the root of most phishing attacks.
72% of organizations experienced a mobile app security incident last year, with 92% reporting rising threats.
Attackers are using AI to craft more convincing phishing messages, making traditional red flags like typos less reliable.
Even security-aware users fall for scams when systems are designed to trick them into clicking.
The real fix isn’t more user training—it’s redesigning apps and services to eliminate the need for link clicks.
…and 3 more takeaways available in PodZeus
The Rise of Social Phishing: Fake Party Invites
“Attackers are now impersonating invitation services like Paperless Post, Evite, and Punchbowl, sending fake party invites, event notifications, and RSVP requests designed to catch people off guard.”
Why These Scams Work: Psychology Over Tech
The hosts explain how these attacks exploit human psychology—curiosity, urgency, and fear of missing out—making even savvy users vulnerable.
The Real Problem Isn’t Users—It’s System Design
“We don't need to educate Joe and Amy, we need to educate developer one and developer two and business one that is building new things.”
AI’s Role in Phishing: A Double-Edged Sword
While AI helps attackers craft more convincing messages, the hosts stress that the fundamental vulnerability remains in system architecture, not language quality.
Practical Defense: Code-Based Verification & Secure Design
“Go to our main page that is easily identifiable. Don't click this link to get there. Come to our main page. Click.”
“We don't need to educate Joe and Amy, we need to educate developer one and developer two and business one that is building new things.”
“The issue here is not users. The issue here is not that users are dumb and we need to focus on educating them and giving them. That's not going to fix the problem.”
“You send me the right ruse. I'm clicking it. Yeah. Yeah. Like, and I would like to believe that I'm somewhat aware of the room.”
Hosts
Kevin Tackett
person
GuardSquare
brand
PayPal
brand
Chase
person
Paperless Post
brand
Evite
brand
Claude
brand
HackspaceCon
other
Punchbowl
brand
Kennedy Space Center
place
Meta & YouTube Found Negligent: A Turning Point for Big Tech?
Shared Security Podcast • 13m • 4/6/2026
The Dark Web Explained with John Hammond
Shared Security Podcast • 22m • 4/13/2026
Project Glasswing: When AI Becomes the Ultimate Hacker—and Defender
Shared Security Podcast • 28m • 4/20/2026
New York’s 3D Printing Crackdown: Security or Surveillance?
Shared Security Podcast • 15m • 4/27/2026
Passwords Are Still Failing Us (World Password Day 2026)
Shared Security Podcast • 21m • 5/11/2026
Get the full intelligence
Search transcripts, export clips, track mentions, and explore all topics from “Fake Party Invites and the Rise of Social Phishing Attacks” inside PodZeus.
Start discovering podcast insights today
Start with a 7-day trial and explore a growing catalog of popular podcasts. No credit card required.
No credit card required • 7-day trial • Cancel anytime