Friday Phish Fry

Phishing Email Alerts

Catch of the Day: Account Version Upgrade Phish
Chef’s Special: Virus Suspected Phish
Also Serving: AI Vishing Phish

Examples of clever phish that made it past my anti-spam nets and into my inbox. Some are contributed by clients or readers like you, and other reliable sources on the Internet.

You can send phishing samples to me at phish@wyzguys.com.

My intention is to provide a warning and show current examples of phishing scams, related articles, and education about how these scams and exploits work, and how to detect them in your inbox. If the pictures are too small or extend off the page, double clicking the image will display them in a photo viewer app.


Account Version Upgrade Phish

As we will see, this exploit was taken down rather quickly.  I received the email at 4:27 am, and by the time I took a look, at 9:28 am, it was gone.

The Verify Email Now link resolved to https://eminent-bloom-cat.glitch.me/package.html#support@wyzguys.com.   This error message was running on the glitch.me project instead of a typical credential stealing log in page.


And I am posting this Virus Suspected email from my mail host.  Its nice to know the system is working.


[PROVED] Unsuspecting Call Recipients Are Super Vulnerable to AI Vishing

From KnowBe4

This post turned out to be super popular, but it did not make the top spot last week so you may have missed it. It’s important, critical and downright scary, so I’m making it the headline article this week!

By Perry Carpenter

Heads-up: I just proved that unsuspecting call recipients are super vulnerable to AI vishing

So, this is pretty exciting… and terrifying. If you attended my “Reality Hijacked” webinar back in May, you saw me do a quick demonstration of a couple AI-powered vishing bots that I’d been working on.

That experiment got its first real “live fire” test this past Saturday at the DEFCON Social Engineering Village capture the flag (CTF) competition. Well, actually, they created an inaugural event titled the “John Henry Competition” just for this experiment. The goal was to put the AI to the test.

To answer the question: can an AI-powered voice phishing bot really perform at the level of an experienced social engineer?

The answer: DEFINITELY.

The AI’s performance in its debut was impressive. The bots engaged in banter, made jokes, and were able to improvise to keep their targets engaged. By the end of our allotted 22 minutes, the AI-driven system captured 17 objectives while the human team gathered 12 during their 22-minute allotment.

But here’s where it gets interesting. Everyone in the room naturally assumed the bots had won — even the other contestants. The bots were picking-up flags so fast and obviously got more. But even though our AI bots managed to gather more flags, the human team won — by a hair (1,500 pts vs. 1450 pts).

This was one of those contest results that shocked everyone. What clenched it for the human team was an amazing pretext that allowed them to secure higher point-value flags at the very beginning of the call vs building up to those higher value objectives.

But now think about it. The difference wasn’t that the targets trusted the humans more. It wasn’t that they somehow suspected that the AI was an AI. It came down to strategy and pretext… something that can be incorporated into the LLM’s prompt. And that’s where things get real.

Here Are a Few Points of Interest:

  • The backend of what we used was all constructed using commercially available, off-the-shelf SaaS products, each ranging from $0 to $20 per month. This reality ushers in a new era where weapons-grade deception capabilities are within reach of virtually anyone with an internet connection.
  • The LLM prompting method we employed for the vishing bots didn’t require any ‘jailbreaking’ or complex manipulation. It was remarkably straightforward. In fact, I explicitly told it in the prompt that it was competing in the DEFCON 32 Social Engineering Village vishing competition.
  • The prompt engineering used was not all that complex. Each prompt used was about 1,500 words and was written in a very straightforward manner.
  • Each of the components being used was functioning within what would be considered allowable and “safe” parameters. It is the way they can be integrated together — each without the other knowing — that makes it weaponizable.
  • None of the targets who received calls from the bots acted with any hesitancy. They treated the voice on the other end of the phone as if it were any other human caller.

We’re Facing a Raw Truth

AI-driven deception can operate at an unprecedented scale, potentially engaging thousands of targets simultaneously. These digital deceivers never fatigue, never nervously stumble, and can work around the clock without breaks. The consistency and scalability of this technology present a paradigm shift in the realm of social engineering.

Perhaps most unsettling was the AI’s ability to pass as human. The individuals on the receiving end of these calls had no inkling they were interacting with a machine. Our digital creation passed the Turing test in a real-world, high-stakes environment, blurring the line between human and AI interaction to an unprecedented degree.

My Conversations with a GenAI-Powered Virtual Kidnapper

The following day, I gave a talk at the AI Village titled “My Conversations with a GenAI-Powered Virtual Kidnapper.” The session was standing room only, with attendees spilling over into the next village, underscoring the intense interest in this topic.

During this talk, I demonstrated a much darker, fully jailbroken bot capable of simulating a virtual kidnapping scenario (this is also previewed in my “Reality Hijacked” webinar). I also discussed some of the interesting quirks and ways that I interacted with the bot while testing its boundaries.

The implications of this more sinister application of AI technology are profound and warrant their own discussion in a future post.

Since the demonstration and talk, I’ve been encouraged by the number of companies and vendors reaching out to learn more about the methods and vulnerabilities that enabled the scenarios I showcased. These conversations promise to be fruitful as we collectively work to understand and mitigate the risks posed by AI-driven deception.

This Competition Serves as a Wake-up Call

So, here’s where we are: This competition and the subsequent demonstrations serve as a wake-up call. We’re not just theorizing about potential future threats; we’re actively witnessing the dawn of a new era in digital deception. The question now isn’t if AI can convincingly impersonate humans, but how we as a society will adapt to this new reality.

If you’re interested in topics like these and want to know what you can do to protect yourself, your organization, and your family, then consider checking out my new book, “FAIK: A Practical Guide to Living in a World of Deepfakes, Disinformation, and AI-Generated Deceptions.”

The book offers strategies for identifying AI trickery and maintaining personal autonomy in an increasingly AI-driven world. It’s designed to equip readers with the knowledge and tools necessary to navigate this new digital landscape. (Available on October 1st, with pre-orders open now).

Blog post with links here. Forward this post to any friend that needs to know:
https://blog.knowbe4.com/proved-unsuspecting-call-recipients-are-super-vulnerable-to-ai-vishing


 

0

About the Author:

I am a cybersecurity and IT instructor, cybersecurity analyst, pen-tester, trainer, and speaker. I am an owner of the WyzCo Group Inc. In addition to consulting on security products and services, I also conduct security audits, compliance audits, vulnerability assessments and penetration tests. I also teach Cybersecurity Awareness Training classes. I work as an information technology and cybersecurity instructor for several training and certification organizations. I have worked in corporate, military, government, and workforce development training environments I am a frequent speaker at professional conferences such as the Minnesota Bloggers Conference, Secure360 Security Conference in 2016, 2017, 2018, 2019, the (ISC)2 World Congress 2016, and the ISSA International Conference 2017, and many local community organizations, including Chambers of Commerce, SCORE, and several school districts. I have been blogging on cybersecurity since 2006 at http://wyzguyscybersecurity.com

Add a Comment


This site uses Akismet to reduce spam. Learn how your comment data is processed.