概要: AI生成のディープフェイクは、「HTML/Nomani」フィッシングキャンペーンで使用されたと報告されています。このキャンペーンは、予約サービスなどの正規のプラットフォームを模倣し、被害者を投資詐欺に誘い込むために使用されました。これらの詐欺は、ソーシャルメディア上でユーザーを欺き、金融詐欺を行うために、リアルな偽コンテンツを利用したとされています。このキャンペーンは、2024年後半に増加したサイバー犯罪におけるAIの悪用事例の一環でした。
Editor Notes: For more information, see the full ESET threat report, including how Lumma Stealer malware reportedly surged in targeting macOS and mobile users, and how RansomHub ransomware allegedly employed AI-driven techniques to enhance evasion and effectiveness, at the following URL: https://web-assets.esetstatic.com/wls/en/papers/threat-reports/eset-threat-report-h22024.pdf. See also: Incident 870: Meeten Malware Campaign Reportedly Undermines Web3 Security Using AI-Legitimized Branding.
Alleged: Deepfake technology developers developed an AI system deployed by HTML/Nomani と Scammers, which harmed Phishing victims , Booking.com customers , Booking.com , Airbnb users と Airbnb.
インシデントのステータス
Risk Subdomain
A further 23 subdomains create an accessible and understandable classification of hazards and harms associated with AI
4.3. Fraud, scams, and targeted manipulation
Risk Domain
The Domain Taxonomy of AI Risks classifies risks into seven AI risk domains: (1) Discrimination & toxicity, (2) Privacy & security, (3) Misinformation, (4) Malicious actors & misuse, (5) Human-computer interaction, (6) Socioeconomic & environmental harms, and (7) AI system safety, failures & limitations.
- Malicious Actors & Misuse
Entity
Which, if any, entity is presented as the main cause of the risk
Human
Timing
The stage in the AI lifecycle at which the risk is presented as occurring
Post-deployment
Intent
Whether the risk is presented as occurring as an expected or unexpected outcome from pursuing a goal
Intentional