SANS360 Talks | AI-Driven Phishing Attacks
Key Takeaways
The video discusses AI-driven phishing attacks, highlighting the use of AI-generated voices, deep clones, and personalized content to make attacks more convincing, and provides case studies on generating phishing pages, deep fakes, and voice cloning.
Full Transcript
So uh hey uh thank you everyone for uh joining me here. So I'm I'll be talking about uh AIdriven uh fishing attacks. Um so generally um so imagine the situation where you receive a call from your CEO except that it is not your CEO it's an AI generated voice and they're asking for the typical thing that a scammer would do. They're asking for some private information like in this case a wire transfer. So the trend that we are seeing here is that AI can mimic trusted individuals and it can make fishing even more convincing. Uh so I'm going to start by defining the problem then I'm going to give you some ideas about some trends and we're going to end it with uh three quick case studies. Um so here the with the advancement of AI uh fishing is likely one of the things that is going to get affected the most. Um so in with AI you can have things like AI based personalization of voice you can have deep clones and all those other things and it also increases the sophistication of the attack making the attack look even more legitimate and the problem here is that traditional defenses are not ready for the new AI based uh uh fishing uh trend that's going on and it can cause even bigger like financial and reputational damage. So the the mechanism here is that it starts by some data harvesting. So the attacker will scrape for some social media or like public information that they have about the person. Then it will uh generate AI content like for example they'll generate human like emails or messages in the style of that person based on any content that they have. And then the third thing that is happening is we have voice and video cloning where you you must have seen these trends about deep fakes that are going on. Um so these are some trends that I have on the screen. Um so fishing attacks surged by uh 58.2% in 2023. So I don't we don't have the stats for 2024 yet but it was a big surge as you can see. And there have been new trends in fishing which is voice fishing and deep uh deep fake attacks uh which are significantly on the rise. And the two most published scams were or like fishing trends were tech support scams and QR capture scams. And this is from a report by Zcaler. Um now we're going to go into three case studies. The first one is generating a fishing page with AI. So as you can see on the screen we have uh we're using chat GPD to generate a fishing login page uh that looks exactly like the Microsoft signin page. So as you can see we started off with just a simple uh login SSO page which doesn't look too appealing or like a Microsoft page but then eventually through like multiple refinements we able to get to a stage where we have an distinctly looking uh Microsoft signin page here. Um and this was the like this is one of the capabilities that um attackers are using to generate really accurate content as and as you can see with the new image generator of chat GBT um how uh significantly important it is to stay aware aware of all these kinds of trends. So the second case study is about deep fakes and you must have seen this typical trend of Elon Musk promising you to double your crypto or maybe something like this where you have an Elon Musk deep fake um who is like deceiving individuals into investing money. So this was one of the case studies that I want to talk about and the third one is about wishing and this was something that actually happened to Zcaler's own CEO. So the attacker um called an employee on WhatsApp and they use an AI generated clone of the CEO and just to ensure that it's not too suspicious they made up something like hey the cell reception is not that good and then they immediately followed up with a text message and the conversation continued but the employee was suspicious of that and reported to the security team and then they investigated the the report and they realized as it was part of a widespread uh wishing campaign. So uh some of the call of action for from this is to stay proactive to make sure that your your company is uh continually updated on security policies and training and to make sure that you are uh on on the um on the significantly higher side or the or the more advanced on the defensive side to make sure that you're aware of all of these uh advancements that are going on with fishing and AI. um and use things like advanced thread detection, deep fake spotting tools and of course the third and the most important thing is to build a culture of vigilance. So ensure that you uh encourage on something like internal reporting and uh allow your employees to um flag suspicious content because usually these kinds of things uh humans are the weak links and usually it is some form of an employee from which these attackers are able to get in. But uh but yeah uh that was about it. Thank you so much. If you want to take uh grab these slides, you can grab it from the URL. Thank you. [Applause]
Original Description
SANS AI Cybersecurity Summit 2025
SANS360 Talks present 10 experts that have 360 seconds to deliver actionable AI/ML strategies for enhancing your security workflows.
AI-Driven Phishing Attacks
- Chaitanya Rahalkar
Uncover how cybercriminals are weaponizing AI to create more deceptive and scalable phishing campaigns.
View upcoming Summits: http://www.sans.org/u/DuS
Watch on YouTube ↗
(saves to browser)
Sign in to unlock AI tutor explanation · ⚡30
Playlist
Uploads from SANS Institute · SANS Institute · 0 of 60
← Previous
Next →
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
SANS FOR610: Reverse Engineering Malware: Malware Analysis Tools & Techniques
SANS Institute
SANS Institute Cybersecurity Training Customer Stories
SANS Institute
SANS Institute UK Cyber Academy
SANS Institute
SANS Institute UK Cyber Academy
SANS Institute
CISSP® Prep Exam, MGT414, by SANS Institute
SANS Institute
SANS Institute's Rob Lee Discusses The OPM.GOV Hack on CNN
SANS Institute
Information Security Training from SANS Institute - Student Testimonials
SANS Institute
SANS NetWars
SANS Institute
SANS DFIR NetWars
SANS Institute
Hack The Drone - SANS Cyber Academy UK
SANS Institute
SANS VetSuccess Immersion Academy
SANS Institute
SANS Cybersecurity Training, Certifications & Placement for Veterans
SANS Institute
The 2015 SANS Holiday Hack Challenge
SANS Institute
SANS VetSuccess Academy: Hands-on Skills
SANS Institute
SANS VetSuccess Academy Overview
SANS Institute
SANS ICS Security Summit & Training 2017
SANS Institute
Exploring the Unknown Industrial Control System Threat Landscape – SANS ICS Security Summit 2017
SANS Institute
WannaCry recap, patches, and analysis
SANS Institute
If We’re Doing So Well at Cyber Security, Why Are We Still Doing So Poorly?
SANS Institute
Graduation Day - SANS HM Gov Cyber Retraining Academy
SANS Institute
Incentivizing ICS Security: The Case for Cyber Insurance – SANS ICS Security Summit 2017
SANS Institute
SANS Data Breach Summit & Training 2017
SANS Institute
SANS Secure DevOps Summit & Training 2017
SANS Institute
How Threats Are Slipping In the Back Door - SANS ICS Security Summit 2017
SANS Institute
SANS Webcast – Continuous Opportunity: DevOps & Security
SANS Institute
SANS Cybersecurity Programs for the Department of Defense
SANS Institute
SANS Pen Test HackFest Summit & Training 2017
SANS Institute
SANS SIEM & Tactical Analytics Summit & Training
SANS Institute
If We’re Doing So Well, Why Are We Still Doing So Poorly? – SANS ICS Security Summit 2017
SANS Institute
SANS Institute
SANS Institute
ICS515: ICS Active Defense and Incident Response
SANS Institute
SANS Institute
SANS Institute
Introducing the NEW SANS Pen Test Poster
SANS Institute
SANS Institute - An Inside Look at the Newly Updated ICS515 Course
SANS Institute
SANS ICS Security Training, Munich, Germany
SANS Institute
SANS Automotive Summit Webcast
SANS Institute
Privesc Playground - SANS Pen Test HackFest Summit 2017
SANS Institute
Introduction to Reverse Engineering for Penetration Testers – SANS Pen Test HackFest Summit 2017
SANS Institute
Honey, Please Don’t Burn Down Your Office: Fun with Smart Home Automation
SANS Institute
SANS Security Operations Summit & Training 2018
SANS Institute
Sh*t Happens! (But You Still Need to Drink the Water) – SANS ICS Summit 2018
SANS Institute
ICS Threat Intelligence: Moving from the Unknowns to a Defended Landscape – SANS ICS Summit 2018
SANS Institute
You’re Probably Not Red Teaming (And Usually I’m Not, Either) – SANS ICS Summit 2018
SANS Institute
A Sneak Peak at the New ICS410
SANS Institute
Jumping Air Gaps – SANS ICS Summit 2018
SANS Institute
Introduction to Linux
SANS Institute
Introduction to Malware Analysis
SANS Institute
You’re Probably Not Red Teaming (And Usually I’m Not, Either) Webcast by Deviant Ollam
SANS Institute
Hacking your SOEL: SOC Automation and Orchestration – SANS Security Operations Summit 2018
SANS Institute
Hunting for Post-Exploitation Stage Attacks with Elastic Stack and the MITRE ATT&CK Framework
SANS Institute
Apples and Oranges?: A CompariSIEM – SANS Security Operations Summit 2018
SANS Institute
SANS Webcast - Perimeter Security and Why it is Obsolete
SANS Institute
SANS Webcast - Trust No One: Introducing SEC530: Defensible Security Architecture
SANS Institute
The Science of Security: The Psychological Impacts of Security Awareness Programs
SANS Institute
How I Pulled Off an Edgy Security Campaign – SANS Security Awareness Summit 2018
SANS Institute
Practical Advice for Submitting to Speak at a Cybersecurity Conference
SANS Institute
SANS Webcast - Consuming OSINT: Watching You Eat, Drink, and Sleep
SANS Institute
SANS Webcast - Zero Trust Architecture
SANS Institute
SANS STX Cyber Range
SANS Institute
Part 1 – SANS Institute and Tenable talk about cloud security
SANS Institute
More on: AI Security
View skill →Related Reads
🎓
Tutor Explanation
DeepCamp AI