Title: Post Deep-Fake: Can We Stop Identity Fraud?

• Host: Mike Schwartz, Founder/CEO Gluu
• Guest: Ofer Friedman, Chief Business Development Officer, AU10TIX
• Co-Host: David Mahdi, CIO Transmit Security

Linkedin Event

Description

Identity fraud is becoming big business. New web sites like OnlyFake.org (now residing under a new name) are enabling fraudsters to purchase realistic AI-generated fake IDs, and deepfake tech has advanced to the point that one facial swap tool can even manipulate selfie/ID comparisons -- when a person holds up a photo ID to their phone or computer camera, a false face appears on both the person and the ID! AU10TIX's Chief Business Development Officer Ofer Friedman can speak with you about the specific identity fraud threats posed by AI, deepfakes, digital injection attacks and more -- especially in the hands of organized crime gangs.

Homework

• “The arms race is on” – AU10TIX’s Ofer Friedman on the AI deepfake threat

• Alex Banks Post with Deepfake Video

Takeaways

• AI tech can inject / transform generated actors into a live video stream, replacing not only the person, but also the details on a fake id. Hackers have time and money to invest in advanced software and techniques, which is even better then what you see on social media (like Alex Banks' post in the homework). To rely on remote ID Verification, the AI behind it needs to detect AI!

• David pointed out that hackers think out of the box... they are trying to use any advantage, and any channel to get some kind of access from which they can escalate. Mike is also worried that hackers could use this to hack the people... like in the 2012 movie Compliance. David expects to see both a higher volume of these attacks, and a greater variety of different attacks--based on what works.

• According to Au210tix's website, early adoption of this technology is strong from companies where identity verification is critical for compliance for example, Payoneer, Fiver, and online gambling. But as remote identity proofing becomes more mainstream, even in the government sector, detecting deep fake fraud is going to be increasingly important.

• Offer suggested that collecting behaviorial biometrics combined with device protected credentials like passkeys are some strategies to mitigate the deep fake risk. And for companies that rely on the video stream for identity proofing, test the solution you buy. Trust but verify!

Livestream Audio Archive

Here