"A new report from Visa says AI is reshaping both cyberattack and defense tactics and, specifically, is compressing the fraud cycle, making it easier to dupe consumers into authorizing malicious transactions."
"In ClickFix attacks, victims are lured into performing a malicious action themselves by being presented with a problem to solve -- a problem that has an easy solution. For example, you may come across a fake malware alert on a website that urges you to open up a command prompt, copy and paste a code, and submit it to fix a PC "issue" in only a few steps."
"In reality, this "solution" leads you to execute malicious commands yourself, resulting in malware deployment, data theft, and more. Standard digital defenses can't prevent us from performing malicious or destructive actions ourselves, which makes this social engineering tactic far more effective than basic drive-by downloads or standard phishing campaigns."
AI is being used to reshape both cyberattacks and defenses, while also accelerating fraud. Fraud is shifting away from credential theft and account hijacking toward social engineering tactics that exploit human decision-making. AI compresses the fraud cycle, making it easier to dupe consumers into authorizing malicious transactions. ClickFix-style attacks lure victims into performing harmful actions themselves by presenting a problem with an easy solution. Fake malware alerts can prompt users to open a command prompt, copy and paste code, and submit it to “fix” a PC issue. Executing the provided steps can deploy malware and enable data theft, bypassing standard phishing and drive-by download defenses.
Read at ZDNET
Unable to calculate read time
Collection
[
|
...
]