2024-02-07 Deep Fake Scam

更新 發佈閱讀 9 分鐘

A few days ago, a fraud case involving HK$200 million occurred in Hong Kong. The scammer pretended to be the CFO of a multinational company's overseas headquarters and instructed the branch finance staff to join a confidential meeting. Using deepfake technology, the fraudster created a virtual video and provided "investment" guidance during this session. As per these instructions, the staff transferred a significant sum to various accounts without proper confirmation. Subsequently, when they contacted their colleagues at the UK headquarters, it became clear that they had been defrauded. They promptly reported this incident to the police after realizing what had transpired.

The rise of Deepfake technology has made what we previously referred to as "P-photos" even more difficult to defend. In the past, photos could be altered using Photoshop, leading many to question their reliability and usability as evidence. For ordinary individuals outside of Hollywood, distinguishing between real and fake imagery through such techniques is challenging.

Nowadays, with the rapid advancement of technology and network speed, along with improved computer performance and the widespread acceptance of online meetings following the COVID-19, hackers have greater flexibility in using fraudulent techniques. As a result, employees are at an increased risk of being deceived, making defense against such tactics more challenging.

With the rapid advancement of technology, it is becoming increasingly challenging to distinguish deepfake transformations, akin to the concept depicted in Matrix, the movie. Additionally, identifying participants at a conference by instructing them to perform certain actions can be very difficult. Consider a junior staff member who lacks opportunities to address executives but requests them to make gestures – this could signal disinterest in their job responsibilities.

This time, the scam is not a phishing the whole company staff, but it clearly targets the victim. The approach involved telling the victim that it was a confidential meeting and sending them a link to join, among other tactics. Can any clues be found from the emails received or from the ID of the person who logged into the meeting?

However, is there a non-technical way to prevent this scam from happening?

The author has not yet determined if the victim's company followed established procedures for transferring money. Normally, regardless of the amount, approvals are required for money transfers to ensure compliance with permissions and internal auditing controls. Smaller amounts can be approved by fewer people, while larger amounts require more signatures. Additionally, it's important to verify your own signature to prevent unauthorized use (there have been cases where executives' emails were hacked and funds were authorized). When approved by overseas headquarters, consider using an electronic signature solution like Docusign to safeguard against process interruption due to potential individual errors.

I am surprised that one person could have had access to such a large amount of money without proper oversight from an internal control or risk management perspective. If this individual had not fallen victim to a scam or been in a state of delirium, they could have potentially sent the funds to various accounts in an unregulated manner. This situation highlights insufficient risk management within the enterprise and ineffective regulation of staff authority.

In some cases, the CEO/CFO/COO of certain enterprises the author has worked with have to sign at least one signature before any payment above HK$1000 can be made. This requirement may seem strict, but it helps reduce the risks faced by the company.

 

留言
avatar-img
留言分享你的想法!
avatar-img
左先生的沙龍
33會員
121內容數
左先生愛好寫詩,也愛品酒,工作上也喜歡電腦新知。這裡是左先生的輕鬆的生活集散地。
左先生的沙龍的其他內容
2025/01/20
本文探討AI人工智慧的應用,涵蓋語音辨識、圖片辨識、翻譯、預測模型建立、資料分析及網路安全等面向,並說明AI如何提升效率及準確性,例如更精準的語音轉文字、更人性化的翻譯、更有效的資料分析及更快速的網路安全威脅偵測等。文章最後提及AI圖像生成的強大能力,並預告後續將深入探討AI運作機制及算力概念。
2025/01/20
本文探討AI人工智慧的應用,涵蓋語音辨識、圖片辨識、翻譯、預測模型建立、資料分析及網路安全等面向,並說明AI如何提升效率及準確性,例如更精準的語音轉文字、更人性化的翻譯、更有效的資料分析及更快速的網路安全威脅偵測等。文章最後提及AI圖像生成的強大能力,並預告後續將深入探討AI運作機制及算力概念。
2024/09/12
隨著生成式AI的興起,AI幻覺的問題日漸受到重視。AI幻覺指的是AI生成內容中的虛構與現實重疊現象,造成錯誤資訊的擴散。造成這一現象的原因包括訓練數據不足、模型缺失及惡意資訊注入。
Thumbnail
2024/09/12
隨著生成式AI的興起,AI幻覺的問題日漸受到重視。AI幻覺指的是AI生成內容中的虛構與現實重疊現象,造成錯誤資訊的擴散。造成這一現象的原因包括訓練數據不足、模型缺失及惡意資訊注入。
Thumbnail
2024/07/20
2024年7月19日,全球出現大規模的電腦擋機事故,相信就算不是在IT界發展的,對於微軟視窗的藍畫面也是略有所聞。微軟由很多年前的作業系統版本開始,就有藍底白字顯示錯誤的畫面,也就是所謂的「死機」。這就是世界聞名的Blue Screen of Death (BSoD)。
Thumbnail
2024/07/20
2024年7月19日,全球出現大規模的電腦擋機事故,相信就算不是在IT界發展的,對於微軟視窗的藍畫面也是略有所聞。微軟由很多年前的作業系統版本開始,就有藍底白字顯示錯誤的畫面,也就是所謂的「死機」。這就是世界聞名的Blue Screen of Death (BSoD)。
Thumbnail
看更多
你可能也想看
Thumbnail
透過蝦皮分潤計畫,輕鬆賺取零用金!本文分享5-6月實測心得,包含數據流程、實際收入、平臺優點及注意事項,並推薦高分潤商品,教你如何運用空閒時間創造被動收入。
Thumbnail
透過蝦皮分潤計畫,輕鬆賺取零用金!本文分享5-6月實測心得,包含數據流程、實際收入、平臺優點及注意事項,並推薦高分潤商品,教你如何運用空閒時間創造被動收入。
Thumbnail
單身的人有些會養寵物,而我養植物。畢竟寵物離世會傷心,植物沒養好再接再厲就好了~(笑)
Thumbnail
單身的人有些會養寵物,而我養植物。畢竟寵物離世會傷心,植物沒養好再接再厲就好了~(笑)
Thumbnail
不知你有沒有過這種經驗?衛生紙只剩最後一包、洗衣精倒不出來,或電池突然沒電。這次一次補貨,從電池、衛生紙到洗衣精,還順便分享使用心得。更棒的是,搭配蝦皮分潤計畫,愛用品不僅自己用得安心,分享給朋友還能賺回饋。立即使用推薦碼 X5Q344E,輕鬆上手,隨時隨地賺取分潤!
Thumbnail
不知你有沒有過這種經驗?衛生紙只剩最後一包、洗衣精倒不出來,或電池突然沒電。這次一次補貨,從電池、衛生紙到洗衣精,還順便分享使用心得。更棒的是,搭配蝦皮分潤計畫,愛用品不僅自己用得安心,分享給朋友還能賺回饋。立即使用推薦碼 X5Q344E,輕鬆上手,隨時隨地賺取分潤!
Thumbnail
身為一個典型的社畜,上班時間被會議、進度、KPI 塞得滿滿,下班後只想要找一個能夠安靜喘口氣的小角落。對我來說,畫畫就是那個屬於自己的小樹洞。無論是胡亂塗鴉,還是慢慢描繪喜歡的插畫人物,那個專注在筆觸和色彩的過程,就像在幫心靈按摩一樣,讓緊繃的神經慢慢鬆開。
Thumbnail
身為一個典型的社畜,上班時間被會議、進度、KPI 塞得滿滿,下班後只想要找一個能夠安靜喘口氣的小角落。對我來說,畫畫就是那個屬於自己的小樹洞。無論是胡亂塗鴉,還是慢慢描繪喜歡的插畫人物,那個專注在筆觸和色彩的過程,就像在幫心靈按摩一樣,讓緊繃的神經慢慢鬆開。
Thumbnail
今天在某平台上 真的是命運的安排 一則大言不慚的貼文就這樣推送到我眼前 看了熟悉的職涯經歷 瞄了一下帳號 果然是那位曾經跟我共事過的騙子 之所以會用騙子稱呼對方 是因為涵蓋目前服務的公司 我一共待過了三間外商 遇到過這麼多優秀的業務同事裡面 只有這一位 會虛報職稱...
Thumbnail
今天在某平台上 真的是命運的安排 一則大言不慚的貼文就這樣推送到我眼前 看了熟悉的職涯經歷 瞄了一下帳號 果然是那位曾經跟我共事過的騙子 之所以會用騙子稱呼對方 是因為涵蓋目前服務的公司 我一共待過了三間外商 遇到過這麼多優秀的業務同事裡面 只有這一位 會虛報職稱...
Thumbnail
看完《好棒的虛擬貨幣詐騙全解碼!網紅配合交易所騙光粉絲上千萬!》影片,發現很多人都有被詐騙受傷的經驗...
Thumbnail
看完《好棒的虛擬貨幣詐騙全解碼!網紅配合交易所騙光粉絲上千萬!》影片,發現很多人都有被詐騙受傷的經驗...
Thumbnail
前幾天我自己本人私人臉書,竟然被冒名我的粉專說要加好友(太歲爺上動土阿),我就乾脆加入他們來看看到底這些詐騙的手法長那些樣子
Thumbnail
前幾天我自己本人私人臉書,竟然被冒名我的粉專說要加好友(太歲爺上動土阿),我就乾脆加入他們來看看到底這些詐騙的手法長那些樣子
Thumbnail
《反詐之歌》 詐騙手段花樣多, 防騙之心不可挪。 陌生電話須警惕, 中獎信息莫輕信。 網路連結勿點擊, 轉帳匯款要斟酌。 個人資訊保護好, 騙子無機可奈何。 這是朋友幾乎受騙的經歷,是4月9日才發生的真人真事,大家一定要注意!   致我的親朋好友: 我是OOO,昨日早上親
Thumbnail
《反詐之歌》 詐騙手段花樣多, 防騙之心不可挪。 陌生電話須警惕, 中獎信息莫輕信。 網路連結勿點擊, 轉帳匯款要斟酌。 個人資訊保護好, 騙子無機可奈何。 這是朋友幾乎受騙的經歷,是4月9日才發生的真人真事,大家一定要注意!   致我的親朋好友: 我是OOO,昨日早上親
Thumbnail
連雲建設總經理蔡漢霖昨天請大家小心詐騙他數百萬元的王俊雄 Thoshio Oh。我恰巧領過這個詐騙者幾個月的薪水
Thumbnail
連雲建設總經理蔡漢霖昨天請大家小心詐騙他數百萬元的王俊雄 Thoshio Oh。我恰巧領過這個詐騙者幾個月的薪水
Thumbnail
投資詐騙日益增多,不再限於傳統的詐騙手段,而是藉由虛擬貨幣等新形式進行詐騙。從一場看似真摯的投資活動,到最後發現所有的投資項目都跟被羈押的一群人有關,這位投資者才意識到自己已經落入詐騙的陷阱。投資前應審慎評估各項資訊並尋求專業意見,避免成為投資詐騙的受害者。
Thumbnail
投資詐騙日益增多,不再限於傳統的詐騙手段,而是藉由虛擬貨幣等新形式進行詐騙。從一場看似真摯的投資活動,到最後發現所有的投資項目都跟被羈押的一群人有關,這位投資者才意識到自己已經落入詐騙的陷阱。投資前應審慎評估各項資訊並尋求專業意見,避免成為投資詐騙的受害者。
Thumbnail
📋撰文:高雄律師,王瀚誼律師事務所。   詐騙手法日新月異,最近我們律所接到了越來越多關於三方詐欺的案件,您或許會問,什麼是三方詐欺呢?該如何保護自己?要留存哪些證據呢?本篇文章將透過具體案例,揭露詐騙集團的狡詐手段!
Thumbnail
📋撰文:高雄律師,王瀚誼律師事務所。   詐騙手法日新月異,最近我們律所接到了越來越多關於三方詐欺的案件,您或許會問,什麼是三方詐欺呢?該如何保護自己?要留存哪些證據呢?本篇文章將透過具體案例,揭露詐騙集團的狡詐手段!
追蹤感興趣的內容從 Google News 追蹤更多 vocus 的最新精選內容追蹤 Google News