A hacker used Artificial Intelligence (AI) to access an IT company's information by spoofing an employee's voice. This cyber-attack is a real case: the incident took place at a multinational company and involved 27 cloud clients. The hacker started the offence by sending several of the company's employees SMS text messages, supposedly from an IT team member, who was contacting his colleagues to resolve a problem relating to the employees' payslips, which would prevent them from receiving their health cover.

Of the several employees impacted by the phishing message, one responded by clicking on the URL of the message which directed him to a fake web portal where he was supposed to log in. After the employee logged in, including a multi-factor authentication form, the hacker called the employee using an AI-powered deepfake.

This real case is published in the 'Real Cases of Cyberattacks' section and presents a situation that is expected to become increasingly frequent due to the mass use of technology. Since there is no way to eliminate cyber-attacks, there are prevention measures and good practices that can help avoid a cyber-attack situation or mitigate the harm caused by an intrusion.

Learn about this case in particular, as well as some prevention measures that can be implemented to avoid this type of situation. It's important for you to know how to act before, during, and after a cyber-attack, whether it's an individual or a corporate entity, by implementing good prevention practices.

Find out more about this case here.