According to the FBI, threat actors are employing AI-generated text, images, audio, and videos to execute highly convincing scams, making it increasingly difficult for victims to recognize fraudulent activities.
Infiltration of a single user's email in a phishing attack between May 8 and May 9 allowed threat actors to compromise individuals' names, addresses, Social Security numbers, contact information, financial account details, health information, passports, and driver's licenses.
After leveraging artificial intelligence to create a website establishing the app's legitimacy, threat actors proceeded to lure targets on Telegram into downloading the app to join a meeting regarding an investment opportunity, a report from Cado Security revealed.
Earth Minotaur leverages instant messaging apps to send messages with malicious links purporting to be Tibetan or Uyghur music and dance-related videos, which redirected to dozens of MOONSHINE exploit kit servers that would enable the download of a trojanized XWalk version, which later executes DarkNimbus, a report from Trend Micro showed.
Aside from luring children into providing sexually explicit photos of themselves, such methods have also been used to force youths into harming family members and animals, as well as committing suicide, an intelligence report from the Joint Regional Intelligence Center and the Central California Intelligence Center showed.
Deloitte, e-Tattoos, Web 3.0, Cp3o, Chemonics, IPv6, the Number 6, Chinese Emperors, Aaran Leyland, and More, on this edition of the Security Weekly News.
Fast Five
Selected by the SC Media Editorial team every Tuesday.
Sign up now for the top five issues cybersecurity pros need to know this week.
