Potential reason for the collection of Russian vote recordings by cybercriminals identified

[НСК-СБ]

Potential reason for the collection of Russian vote recordings by cybercriminals identified

To make banking transactions with their help

The RIA Novosti edition published a new material, in which the potential reason for the collection of Russian voices by the attackers was named.

Attackers often are calling victims on behalf of employees of various banks, asking repeatedly the name and patronymic of the interlocutor, hoping to get an answer “yes”. Experts believe that this is done in order to collect customer votes. This, in turn, could allow fraudsters to contact the bank via a voice assistant. Alexei Drozd, head of the information security department at SearchInform, noted that a number of operations can be performed by calling a voice assistant, which cybercriminals can try to do.

According to Natalia Pshenichnikova, senior lecturer at Synergy University, the attackers, in addition to answering “yes,” hope to get the phrase “I confirm”, “it's me,” or even a code word.

By eliciting such information, fraudsters receive a voice cast of the victim's voice and can try to trick the bank's security system, for example, to confirm the transfer of funds. Also, voice data can be resold to third parties.


Natalia Pshenichnikova
Senior Lecturer at Synergy University

Названа потенциальная причина сбора злоумышленниками записей голосов россиян

Издание “РИА Новости” опубликовало новый материал, в рамках которого была названа потенциальная причина сбора злоумышленниками записей голосов россиян.

www.ferra.ru

 

[Матушкин Андрей Николаевич]

To make banking transactions with their help

The RIA Novosti edition published a new material, in which the potential reason for the collection of Russian voices by the attackers was named.

Attackers often are calling victims on behalf of employees of various banks, asking repeatedly the name and patronymic of the interlocutor, hoping to get an answer “yes”. Experts believe that this is done in order to collect customer votes. This, in turn, could allow fraudsters to contact the bank via a voice assistant. Alexei Drozd, head of the information security department at SearchInform, noted that a number of operations can be performed by calling a voice assistant, which cybercriminals can try to do.

According to Natalia Pshenichnikova, senior lecturer at Synergy University, the attackers, in addition to answering “yes,” hope to get the phrase “I confirm”, “it's me,” or even a code word.

By eliciting such information, fraudsters receive a voice cast of the victim's voice and can try to trick the bank's security system, for example, to confirm the transfer of funds. Also, voice data can be resold to third parties.


Natalia Pshenichnikova
Senior Lecturer at Synergy University

Thanks.