back to article Here's how crooks will use deepfakes to scam your biz

All of the materials and tools needed to make deepfake videos – from source code to publicly available images and account authentication bypass services – are readily available and up for sale on the public internet and underground forums.  Cyber criminals are taking advantage of this easy access to resources, and using …

  1. Mike 137 Silver badge

    An easy fix?

    "increasing numbers of complaints relating to the use of deepfake videos during interviews for tech jobs that involve access to sensitive systems and information"

    Even in the absence of deepfake tech, you'll never know whether the person at the other end of zoom is the person you should really be talking to. So make a physical face to face interview a mandatory part of the recruitment process. I'd never engage even a commercial subcontractor without having a real physical meeting (preferably on their premises).

  2. Headley_Grange Silver badge

    Hard to Understand

    It's hard to believe that companies can get scammed out of money just by someone calling up and saying "transfer some money here, please". I get invoices bounced all the time because the P/O reference format is wrong, the line item description doesn't match, the delivery hasn't been matched in the system, I'm not "on the system", etc. Similarly, I've worked on installing ERP systems and no money or product moves without a purchase req., a P/O, an order acceptance, goods receipt, inspection, etc. and all the records have to match before anyone will cut a payment. None of the companies I've worked for would send money or product anywhere just cos the boss told them to or on the basis of a zoom call with a VIP client, so what sort of companies are these that just send money willy-nilly to someone who looks like someone they know?

    1. Natalie Gritpants Jr

      Re: Hard to Understand

      You're lucky you haven't worked for a shouty boss then. There are plenty and it's sometimes hard to spot them in advance.

      1. Headley_Grange Silver badge

        Re: Hard to Understand

        I've had a lot of experience shouting at SAP and it doesn't 't help*, so a shouty boss wouldn't make a difference.

        *Well, it helped me, but it never got anything done

    2. tony72

      Re: Hard to Understand

      It happened to us. FD received an email apparently from the MD, asking him to transfer some money, and he did it, before clocking that something was fishy. Unfortunately I never got to see the message, so I don't know how convincing it was, or what reason was given for requesting the transfer. We did get the money back, fortunately. I guess some confluence of events can cause you to drop your guard momentarily, and just forget to ask "is this legit?"

      1. ThatOne Silver badge

        Re: Hard to Understand

        Procedures. I guess if the FD had called the MD on his known phone to confirm, that scam wouldn't have worked.

        Obviously disturbing your manager on his "managerial retreat", because you're doubting his all-powerful word, could be a career killer, but who would want to work for that kind of jerks anyway?

      2. An_Old_Dog Silver badge

        Encrypted / Authenticated Emails, Authenticated Phone and Video Calls

        "FD received an email apparently from the MD" -- there's a tech fix for that: encrypted and authenticated emails, ALL the time. If you do this and get a cleartext email from "the boss", you automatically know it's not really from the boss. That works for internal stuff. It doesn't work for external stuff, because not everyone, not every business, and not every government agency knows how to do it, or chooses to do it.

        We also need is a good way to authenticate phone and video calls -- a way which shouty bosses and salespeople would be willing to use.

    3. iron Silver badge

      Re: Hard to Understand

      The sort of company staffed by "highly intelligent crypto community members."

      LOL as if there are such people.

  3. Pascal Monett Silver badge

    "use fake identities to trick unsuspecting customers or coworkers into sharing payment info"

    How stupid are people ?

    Do people really give payment details to a new hire ?

    Dear Lord, maybe we do deserve an asteroid.

  4. Naich

    "...deepfakes are being used in web ads to make Elon Musk, security specialists, and others appear as though they are endorsing products..."

    I would automatically give anything Elon Musk endorses a wide berth.

    1. Neil Barnes Silver badge

      A wide berth? Ah, sir will be requiring the business class seat to Mars, then?

  5. An_Old_Dog Silver badge

    I Need a Deepfake of Me

    ... that can attend PowerPoint presentations via Zoom. You know the ones I mean ... where there is a hierarchical diagram allegedly relating "cement", "oxygen", "Jello", and "stepwise optimization".

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Other stories you might like