Deepfake Social Engineering: Creating a Framework for Synthetic Media Social Engineering

Presented at Black Hat USA 2021, Aug. 4, 2021, 3:20 p.m. (40 minutes)

How do you know that you are actually talking to the person you think you are talking to? Deepfake and related synthetic media technologies represent the greatest revolution in social engineering capabilities over the past century. <br><br>In recent years, scammers have used synthetic audio in vishing attacks to impersonate executives to convince employees to wire funds to unauthorized accounts. In March 2021, the FBI warned the security community to expect a significant increase in synthetic media enabled scams over the next 18 months. The security community is at a highly dynamic moment in history in which the world is transitioning away from being able to trust what we experience with our own eyes and ears. <br><br>This presentation proposes the <span>Synthetic Media Social Engineering</span> framework to describe these attacks and offers some easy to implement, human-centric countermeasures. The <span>Synthetic Media Social Engineering </span>framework encompasses five dimensions: Medium (text, audio, video, or a combination), Interactivity (pre-recorded, asynchronously, or Real-Time), Control (human puppeteer, software, or a hybrid), Familiarity (unfamiliar, familiar, close), and Intended Target (human or automation, an individual target, or a broader audience). While several technology-based methods to detect synthetic media currently exist, this work focuses discussion on human centered countermeasures to <span>Synthetic Media Social Engineering </span>attacks because most technology-based solutions are not readily available to the average user and are difficult to apply in real-time. Behavior-focused methods can teach users to spot inconsistencies between behaviors of the legitimate person and a <span>Synthetic Media Social Engineering </span>puppet. Proof-of-life statements will effectively counter most virtual kidnappings. Financial transfers should require either multi-factor authentication (MFA) or multi-person authorization. These 'old-school' solutions will find new life in the emerging world of <span>Synthetic Media Social Engineering </span>attacks and this presentation will help audience members to adapt to this new reality.

Presenters:

• Matthew Canham - CEO, Beyond Layer 7, LLC.
  Dr. Matthew Canham is the CEO of Beyond Layer 7 (a cybersecurity consulting firm specializing in human security and data analytics), and a Research Professor of Cybersecurity at the Institute of Simulation and Training, University of Central Florida. Previously, Dr. Canham was a Special Agent for the FBI, in which he investigated cybercrimes, intellectual property theft, and insider threats. He holds a PhD in Cognitive Psychology with special expertise in human centric security, data analytics, and behavioral engineering.

Links:

• https://www.blackhat.com/us-21/briefings/schedule/#deepfake-social-engineering-creating-a-framework-for-synthetic-media-social-engineering-23688
• https://www.blackhat.com/us-21/briefings/schedule/#deepfake-social-engineering-creating-a-framework-for-synthetic-media-social-engineering-236881625069227

Similar Presentations:

• Black Hat USA 2022 / RollBack - A New Time-Agnostic Replay Attack Against the Automotive Remote Keyless Entry Systems
• Black Hat USA 2020 Virtual / A Framework for Evaluating and Patching the Human Factor in Cybersecurity
• Black Hat USA 2019 / Testing Your Organization's Social Media Awareness