Chinese hackers exploit facial scans to steal data and access bank accounts
Scammers have recently adopted the sinister practice of facial scanning to circumvent biometric measures. This trend highlights serious gaps in verification technologies for years and poses serious threats to individuals’ privacy.
For a long time, verification technologies have been the subject of criticism for potential privacy risks. Recently, an association of vetting providers downplayed public concerns by claiming that scanning the faces of site visitors is a security measure without serious privacy consequences. However, a recent report reveals that Chinese hackers managed to trick people into scanning their own faces, resulting in the theft of personal data and bank information.
Cybersecurity company Group-IB has identified the first banking Trojan that uses stolen human faces. Users were tricked into revealing their personal identification numbers and phone numbers, and then asked to perform facial scans. The hackers then used these images to create AI-generated deepfakes, which successfully avoided security checks.
This method, which originates from a Chinese hacking group, has reportedly already been used in Vietnam. During the attack, the victims were tricked into installing a malicious app, scanning their faces, and then the attackers withdrew significant sums of money from their bank accounts. This highlights the seriousness of the drinks stemming from the misuse of age-checking technologies and raises questions about the effectiveness of current security measures.
Source: ITmixer