Criminals are constantly trying to circumvent fraud prevention and identity verification methods using creative methods like deepfakes. This often requires overriding validation steps to ensure that bots do not gain access.
Deepfake apps are now able to produce images of real people in arbitrary situations or even create legitimate-looking videos of people who don't exist. Platforms that rely on identity verification will therefore be forced to require more complex evidence to verify that access requests come from real people. When using financial platforms, users are often required to make a video recording of themselves turning their head in a certain pattern while holding their ID card. This may seem silly, but it makes deception by a deepfake much more difficult. However, there is a risk that these methods and data could be used to train better models to recognize or imitate humans.
Detect deepfakes
The term “deepfake” is usually associated with criminal activity. But there is a legitimate market for the underlying technology. Some software companies offer ways to use deepfake capabilities in the entertainment industry, usually with the consent of the impersonated person. You can even archive your voiceprint for use if you are unable to speak due to a medical condition. The same technologies used to create deepfakes are also essential to detecting their misuse. As with any powerful technology, legality depends on intent, consent and disclosure.
The threats posed by deepfakes must be taken seriously. In addition to a fake ID for a fraudulent transaction, these forgeries can cause psychological trauma and damage to personal reputation. In the last month alone, an election campaign using deepfakes and the exploitation of AI-generated images of Taylor Swift have sparked public interest. While these deepfake abuses are not new, the number of victims of these crimes is increasing at an alarming rate. Deepfakes allow criminals to steal money, carry out psychological terror, ruin careers or even influence political decisions. It is clear that education, regulation and sophisticated prevention measures will play a role in protecting society. Some companies are already training their employees to recognize attempts at fraud that play a role in everyday work. These education and awareness campaigns need to be expanded to create basic awareness about deepfakes. At the same time, companies should deploy additional layers of verification for sensitive workflows and transactions – it is no longer enough to trust a text message, phone call, or even a video call as a form of identity verification.
More at Tanium.com
About Tanium Tanium, the industry's only Converged Endpoint Management (XEM) provider, is leading the paradigm shift in traditional approaches to managing complex security and technology environments. Only Tanium protects every team, endpoint, and workflow from cyber threats by integrating IT, compliance, security, and risk into a single platform. The Tanium platform provides comprehensive visibility across all devices, a unified set of controls, and a common taxonomy.