Using blockchain, multifactor authentication, or signatures can help boost authentication security and reduce fraud.
In light of rapidly advancing deepfake technology and increasing reliance on virtual collaboration tools due to post-COVID work arrangements, organizations need to be prepared for malicious actors getting more sophisticated in their impersonation attempts. What was a cleverly written phishing email from a C-level email account in 2021 could become a well-crafted video or voice recording attempting to solicit the same sensitive information and resources in 2022 and beyond.
Deepfakes are images and videos created using computers and machine learning software to make them seem real, even though they are not. Over the past few years there have been several high-profile deepfake attacks resulting in stolen funds. Recently, a Hong Kong-based bank was duped by an artificial intelligence-powered “deep voice” attack that cloned a trusted director’s voice seeking a $35 million transfer. Unfortunately, these instances are becoming increasingly more common. With cybercriminals constantly targeting enterprise organizations, it is now more important to verify all content, despite how valid they may seem on the surface.
Deepfake’s Dangers In the New Hybrid Workforce
Cybercriminals have impersonated company emails for decades through daily phishing attacks. But now, cybercriminals have taken it a step further with voice and video deception. A classic deepfake example is when a person of influence asks for some type of monetary donation. An executive may seemingly send a voicemail over email to an employee asking for a donation to her charity only to find out the recording was a fake and the money was given to an offshore account. It’s easy for the employee to react immediately instead of verifying if it’s true.