We all know the ultimate in two-factor authentication.
Talk to the person who emailed you, for example, a change of wire transfer instructions.
"Did you really send these new instructions?"
Unfortunately, in a case earlier this year, the boss's voice was imitated with the help of Artificial Intelligence. And an employee transferred $243,000 to hackers as a result.
It's an extreme case, but the kind many in security have been warning about when it comes to AI-created "deep fakes," either video or voice.
The Next Web reports:
"In March, criminals sought the help of commercially available voice-generating AI software to impersonate the boss of a German parent company that owns a UK-based energy firm.
They then tricked the latter's chief executive into urgently wiring said funds to a Hungarian supplier in an hour, with guarantees that the transfer would be reimbursed immediately.
The company CEO, hearing the familiar slight German accent and voice patterns of his boss, is said to have suspected nothing...."
This story came out just days before global insurer AIG announced its top 10 cybercrime claims list.
Business Email Compromise (BEC) and CEO fraud rose to the number one reason companies filed a cybercrime insurance claim during 2018.
Will voice or video compromise someday be on the list?