A thief used clever deepfake technology to drain a multinational company’s Hong Kong branch of $25.6 million USD ($200M HKD) by staging a fake conference call featuring digitally recreated versions of company employees.
As originally reported by CNN, a finance worker at a multinational firm was suspicious of an email he received from his company’s UK-based CFO about a secret transaction. It wasn’t until he attended a video conference call about the transaction which included who he believed to be the CFO and other employees that the employee put aside his early doubts. Once the call ended and after hearing and seeing who he believed to be co-workers on the video call, the employee made the $25.6M USD transaction.
The scam was discovered later when the employee reached out to the corporation’s head office.
This case is one of several recent incidents in which scammers are believed to have used the deepfake technology to alter publicly available video and other footage to cheat people out of money.
Hong Kong police said they made six arrests in connection with identity card scams, in which fraudsters used deepfake technology to imitate people pictured on lost identity cards to trick facial recognition programs.
To learn more click here.
Source: Finance worker pays out $25 million after video call with deepfake ‘chief financial officer’ | CNN
Prevent This From Happening TO YOU!
Artificial intelligence (AI) has made social engineering methods more complex, covert, and difficult to detect, making it easier for criminals to come for us more quickly. Hackers will often use social engineering tactics as a first step in a larger scam to infiltrate your system or network and steal sensitive data or disperse malware. We need to be more cautious than ever when receiving suspicious emails or texts.
Below are a few tips offered by the U.S. Department of Transportation’s Chief Information Officer, to avoid successful cyber intrusions:
- Require multifactor authentications
- Separate systems within an IT network so a single password cannot grant access to many systems
- If you have been attacked, you should contact the FBI or CISA (Cybersecurity & Infrastructure Security Agency)
- Complete a cybersecurity self-assessment to help understand current exposures
Replace manufacturers’ default passwords immediately
To learn more click here.
Source: Social Engineering Cyberattacks on the Rise | Transport Topics (ttnews.com)
Make Sure Your Financial Institution Clients Have the Right Coverage!
Contact any one of our FI insurance experts below for help in making sure your FI customers have the right coverage from a strong, stable company!
Experts Focused On Your Protection. We Deliver.
Northeast Region Seth Jainchill 860-466-7363 sjainchill@berkleyfs.com | Southeast Region Nick Zacchio 860-466-7190 [email protected] |
Central Region Mike Saccone 303-408-9599 [email protected] | West Region Pete Verretto 206-802-3076 [email protected] |
Underwriting Manager Edward Mongon 212-822-3312 [email protected] | National Marketing Director Scott Mynatt 404-443-2076 [email protected] |
Vice President, Practice Leader Ryan Wenzel 212-497-3740 [email protected] |