At a glance.
- Deepfake scams appear to have arrived.
- Threat actors prepare to exploit Hikvision camera vulnerability.
- Lessons for the fifth domain from six months of hybrid war.
- CISA releases seven ICS security advisories.
Deepfake scams appear to have arrived.
Bitcoin.com reports that scammers used an "AI hologram" as a deepfake impersonation of cryptocurrency exchange Binance's Chief Communications Officer Patrick Hillmann in scam Zoom video calls with representatives of various cryptocurrency projects. Hillmann, blogging about the experience last week, said he became aware of the scam when he received messages from the targets, thanking him for taking time to meet with them in calls he had never in fact attended. "It turns out that a sophisticated hacking team used previous news interviews and TV appearances over the years to create a 'deep fake' of me," Hillmann explained.
It's not just deepfakes on Zoom, either. More conventional impersonation is also troubling Binance. Business Insider reports that "Changpeng Zhao, the CEO of cryptocurrency exchange Binance, tweeted that 'LinkedIn has 7000 profiles of 'Binance employees', of which only 50 or so are real.'" Thus reports of fake accounts are by no means confined to Twitter.