IC3 issues warning on deepfake use in remote work applications

Image from Pixabay

The Federal Bureau of Investigation (FBI)'s Internet Crime Complaint Center (IC3) issued a warning on the use of deepfakes and stolen personally identifiable information (PII) by individuals attempting to earn remote work positions.

According to the warning, jobs in the information technology (IT) field are being targeted by the fraudulent activity, as well as positions related to software and database management and computer programming.

Complaints submitted to IC3 noted tactics such as voice spoofing or potential voice deepfakes being used during online interviews with job candidates. Stolen PII was also used by some applicants to attempt to gain a remote position. Stolen PII was intercepted during the pre-employment background check stage of the job applications, according to a complaint.

The fraudulent applications may represent an effort to gain employee access to corporate networks. As the deepfakes and stolen PII tactics have been targeting roles with significant access privileges to enterprise systems, security teams should watch for insider threats within their networks. Security and HR teams can collaborate to identify fraudulent job applications and prevent an insider threat from escalating to a cyberattack.

Madeline Lauver is a former Editor in Chief at Security magazine. Within her role at Security, Lauver focused on news articles, web exclusives, features and several departments for Security’s monthly digital edition, as well as managing social media and multimedia content.

ON DEMAND: In this webinar, Regina Lester, Vice President of Security & Safety Operations at Toledo Zoo, will share her insights on implementing security technologies in the entertainment sector and the challenges all organizations face — large and small — when it comes to balancing budget and security.