How to Defend Against AI-Powered Identity Fraud
Discover how deepfakes, voice cloning, and AI-powered phishing are reshaping digital deception—and learn practical strategies to strengthen identity security with real-time, AI-driven defenses.
Stay informed with the latest on Deepfakes: explore news, trends, and insights into how AI-generated fakes impact information security.
Search across headline titles and summaries.
Background for this topic.
Deepfake technology uses artificial intelligence to create realistic but fabricated audio or video that depicts people saying or doing things they never did. This synthetic media can convincingly mimic voices and faces, making it difficult to distinguish genuine content from manipulated material. The technology relies on machine learning models trained on large datasets of real images and sounds to generate these forgeries.
In information security, deepfakes pose risks such as enabling sophisticated social engineering attacks where attackers impersonate trusted individuals to extract sensitive information or authorize fraudulent transactions. They also threaten biometric authentication systems that use facial or voice recognition, potentially allowing unauthorized access. Defending against deepfake threats involves deploying detection tools that analyze inconsistencies in media, implementing multi-factor authentication beyond biometrics, and training users to verify unusual requests through independent channels.
Weekly headline count for the current query.
Discover how deepfakes, voice cloning, and AI-powered phishing are reshaping digital deception—and learn practical strategies to strengthen identity security with real-time, AI-driven defenses.
Two new alleged victims detailed how Grok was used by friends and family to generate sexual images of them as minors. The suit also adds Stability AI as a defendant. The post Deepfake CSAM lawsuit against xAI, Grok expands appeared first on CyberScoop.
While preventing third parties from profiting off unauthorized deepfakes of artists and performers is a bipartisan concern, some business and digital rights groups are opposed. The post Congress tees up No FAKES Act, aiming at AI-generated deepfakes appeared first on CyberScoop.
The U.S. Department of Justice announced Friday that it has seized the CFAKE.com and SOCFAKE.com websites, which allegedly hosted nonconsensual AI-generated nude images and videos of women, in what appears to be the first publicly announced domain seizure under the TAKE IT DOWN Act. [...]
The website specialized in non-consensual sexual images of famous women, including politicians, first ladies, royalty, journalists, television presenters, athletes, and entertainers, and others. The post US, France, and Italian authorities shut down massive deepfake porn site appeared first on CyberScoop.
Gartner analysts issued a call to action to bolster defenses against several emerging critical threats, such as deepfakes and prompt injections.
Google is introducing a new Android security feature that will detect and flag phone calls in which scammers use artificial intelligence to impersonate a user's personal contacts. [...]
South Korea's local elections next month will be a test bed for how effective regulations might be to stymie the flow of deepfakes.
The commission will dole out hefty fines and promises investigations for Take It Down Act violators. Experts say questions remain around the agency’s resources and priorities. The post Here’s how the FTC plans to enforce the Take It Down Act appeared first on CyberScoop.
Frame's AI Models Build Contextualized Security Lessons Automatically in MinutesFrame Security, founded by former Wiz product and sales leader Tal Shlomo, emerged from stealth with $50 million to build AI-generated cyber training and simulations designed to prepare employees for phishing, deepfakes, voice cloning and other personalized social engineering attacks.
Three seconds of audio is all it takes to clone a voice for fraud. Adaptive Security shows how deepfake calls trick employees into sending real money—and why most defenses don't catch them. [...]
The commission is preparing to enforce key parts of a new law against sexual deepfakes and searching for ways to block AI-driven scamming using voice clones. The post The FTC’s AI portfolio is about to get bigger appeared first on CyberScoop.
Why CISOs Must Rethink Trust, MFA and Machine Identity GovernanceAI-driven phishing emails, voice deepfakes and synthetic identities have changed the threat landscape. Attackers now mimic trusted users with precision. Security teams can no longer rely on static controls or traditional verification methods.
Appearing before Parliament, Meta, Google and X struggle to explain how fake political video circulated for so long A member of the UK Parliament's lower house who was the victim of a deepfake AI campaign this week had a rare chance to confront the Big Tech executives who helped spread it. Their answers disappointed.…
Artificial Intelligence (AI) is changing how individuals and organizations conduct many activities, including how cybercriminals carry out phishing attacks and iterate on malware. Now, cybercriminals are using AI to generate personalized phishing emails, deepfakes and malware that evade traditional detection by impersonating normal user activity and bypassing legacy security models. As a result,
Gartner's Apeksha Kaushik on Why Detection Alone Can't Stop ID ImpersonationOrganizations facing deepfake-driven impersonation attacks must move beyond traditional detection strategies and build stronger identity resilience. Security leaders should adopt layered defenses that combine detection, prevention and broader risk signals to disrupt attackers.
The OpenID Foundation warns that fragmented policies on posthumous digital accounts could open the door for fraudsters to exploit AI deepfakes
Cloudflare Threat Report warns that AI tools enable attackers who lacked required skills to generate effective attacks rapidly and at scale
Deepfakes and injection attacks are targeting identity verification moments, from onboarding to account recovery. Incode explains why enterprises must validate the full session—media, device integrity, and behavior—to stop synthetic and injected attacks in real time. [...]
Analysts Urge Mandatory Guardrails on AI Agents, Identity and PrivilegeSecurity leaders are pressing Treasury to embed enforceable guardrails - covering adversarial testing, AI inventory, identity privilege mapping and real-time monitoring - into its forthcoming financial-sector AI guidance as deepfake fraud, data poisoning and autonomous agent risks escalate.