Description: AI-generated deepfakes were reportedly used in the "HTML/Nomani" phishing campaign to mimic legitimate platforms like booking services and lured victims into investment scams. These scams allegedly leveraged realistic fake content to deceive users on social media for the purposes of financial fraud. This campaign was part of the rising misuse of AI in cybercrime during the second half of 2024.
Editor Notes: For more information, see the full ESET threat report, including how Lumma Stealer malware reportedly surged in targeting macOS and mobile users, and how RansomHub ransomware allegedly employed AI-driven techniques to enhance evasion and effectiveness, at the following URL: https://web-assets.esetstatic.com/wls/en/papers/threat-reports/eset-threat-report-h22024.pdf. See also: Incident 870: Meeten Malware Campaign Reportedly Undermines Web3 Security Using AI-Legitimized Branding.
Entities
View all entitiesAlleged: Unknown deepfake technology developers developed an AI system deployed by scammers , HTML/Nomani and Fraudsters, which harmed Phishing victims , Booking.com customers , Booking.com , Airbnb users and Airbnb.
Alleged implicated AI systems: Deepfake generation tools , AI-powered cryptostealers and AI-enhanced ransomware systems
Incident Stats
Risk Subdomain
A further 23 subdomains create an accessible and understandable classification of hazards and harms associated with AI
4.3. Fraud, scams, and targeted manipulation
Risk Domain
The Domain Taxonomy of AI Risks classifies risks into seven AI risk domains: (1) Discrimination & toxicity, (2) Privacy & security, (3) Misinformation, (4) Malicious actors & misuse, (5) Human-computer interaction, (6) Socioeconomic & environmental harms, and (7) AI system safety, failures & limitations.
- Malicious Actors & Misuse
Entity
Which, if any, entity is presented as the main cause of the risk
Human
Timing
The stage in the AI lifecycle at which the risk is presented as occurring
Post-deployment
Intent
Whether the risk is presented as occurring as an expected or unexpected outcome from pursuing a goal
Intentional
Incident Reports
Reports Timeline
Cybersecurity researchers are calling attention to a new kind of investment scam that leverages a combination of social media malvertising, company-branded posts, and artificial intelligence (AI) powered video testimonials featuring famous …
Variants
A "variant" is an incident that shares the same causative factors, produces similar harms, and involves the same intelligent systems as a known AI incident. Rather than index variants as entirely separate incidents, we list variations of incidents under the first similar incident submitted to the database. Unlike other submission types to the incident database, variants are not required to have reporting in evidence external to the Incident Database. Learn more from the research paper.
Similar Incidents
Selected by our editors
Did our AI mess up? Flag the unrelated incidents
Fake LinkedIn Profiles Created Using GAN Photos
· 4 reports
The DAO Hack
· 24 reports
Similar Incidents
Selected by our editors
Did our AI mess up? Flag the unrelated incidents
Fake LinkedIn Profiles Created Using GAN Photos
· 4 reports
The DAO Hack
· 24 reports