One of the main reasons why Generative AI is such a game changer is that it enables people to do what they couldn't do before. People who couldn't draw or make music can now do that with just a line or two of text, program code and even create apps in minutes, and so forth. Unfortunately, this also applies to hackers and scammers, as generative AI is taking cybersecurity threats to another level.
Malaysia needs to be more aware of AI cyber threats!
Previously, we reported about AI that can copy voices. Now, even deepfake videos can pass as the real thing, all easily generated in minutes with minimal knowhow. Our kneejerk reaction was, "What's going to happen when hackers get their hands on this tech?" Well, we recently managed to sit down with Google Cloud Malaysia and John Hultquist, Chief Analyst of Mandiant Intelligence, to discuss such a possibility.
In today's fast-paced tech world, one of the most unsettling developments is the rise of AI used in covert operations. This isn't just a futuristic worry — it's happening now and it demands our immediate attention.
Picture this: you receive a phone call from your CEO, urgently asking you to transfer funds to a specific account. The voice sounds exactly like your CEO — every tone, every inflection. But here's the twist: it's not really your CEO. It's a scammer using AI-powered voice cloning, a technology that can now mimic human speech with jaw-dropping accuracy.
This isn't science fiction. In fact, recent reports revealed that scammers used AI-driven voice cloning and deepfake technologies to steal over HK$200 million from an organization. These attacks are getting more sophisticated, and they're happening across various stages of a cyberattack — from the initial breach to moving deeper into systems and escalating privileges. The result? More convincing and, therefore, more dangerous phishing schemes, often called "vishing" (voice phishing). ~ John Hultquist, Chief Analyst of Mandiant Intelligence
John Hultquist, Chief Analyst from Mandiant Intelligence (now a part of Google Cloud)
What can we Malaysians do about it?
According to John and Google Cloud Malaysia, the very first thing to do is to be aware that such things can and might happen. After all, if you know that scammers can and will use such tech to steal your money or data, you'll be a bit more suspicious if you get such a call. Then, educate everyone else in your organization. Take steps to increase security measures like "strengthening verification processes".
Also, we shouldn't delude ourselves into believing that it can't or won't happen to us just because we're not millionaires or big businesses. Many such thefts and scams happen because, to these scammers, it's a crime of opportunity or easy money for them. If we don't make it easy for them, then they'll be less likely to try scamming us or be successful in doing so.
You can check out the report from Mandiant Intelligence for more details and what to do on the rise of AI cyber threats. With more and more recent news of data being stolen from Malaysian websites, what do you think? Do you know anyone who was a victim of such crimes? Or has it happened to you too? Share your experiences and advice in the comments below for other Malaysians and stay tuned to TechNave.com.
COMMENTS