Deepfake scammer walks off with $25 million in first-of-its-kind AI heist::Hong Kong firm tricked by simulation of multiple real people in video chat, including voices.

  • @[email protected]
    link
    fedilink
    English
    3810 months ago

    What kind of company let’s a single employee transfer that amount of money without multiple different password entries or checks from different people though, seriously?

    Doesn’t matter if they had a conference call with what appeared to be certain people as the article says they could easily have used key pair verification such as pgp. Sounds like poor security all around especially considering the amounts involved.

    • @WhatAmLemmy
      link
      English
      15
      edit-2
      10 months ago

      PGP? Have you ever dealt with any banking or financial corporations? You’d have better luck getting the money handlers and decision makers to authenticate transactions with magic.

      Hong Kong and Japan are the absolute worst I’ve experienced. Their online banking UI’s and processes are stuck in the late 90’s to early 2000’s.

      • @itsnotits
        link
        English
        -310 months ago
        • online lbanking UIs*
        • the late '90s*
        • early 2000s*
        • Jojo
          link
          fedilink
          English
          19 months ago

          It’s stylistically acceptable to put an apostrophe for plurals in cases where the plural thing isn’t a “normal” word, as is the case for initialisms like UI or numbers like the latter two you caught.

          Obviously a given body may make its own rules in this regard, but luckily English has no overall authority, and this is informal communication outside the domain of any minor ones (beyond, perhaps, idle pedants and prescriptivists).

    • @[email protected]
      link
      fedilink
      English
      610 months ago

      lol Finance is sometimes hilariously low tech. Lookup how ACH works, it’s a fucking farce.

    • @itsnotits
      link
      English
      510 months ago

      lets* a single employee

    • @[email protected]
      link
      fedilink
      English
      2
      edit-2
      9 months ago

      Somewhere I worked the CEOs email got hacked and they asked the head of finance to change the bank account details for a 100k payment that was due to go out.

      Luckily they thought to double check with them. But it came really close to happening.

      This all happened via a phishing email.

      Social engineering is how most hacks happen. Doesn’t matter what protection you put in place. People are always the weakest link.

    • @Cornelius_Wangenheim
      link
      English
      110 months ago

      Or just have everyone’s phone number on file and pick up the phone and call them first.