An employee of LastPass was attacked through a sound deepfake call.

Criminals used dipfake technology to impersonate the CEO of LastPass and attempt to conduct a fraudulent scheme. The attack occurred last week when an employee of the company was targeted. Fortunately, the employee was vigilant and did not fall for the ruse.

Deepfakes are created using artificial intelligence, which allows malicious actors to manipulate audio and/or visual data to create content that targets specific individuals. The quality level and accessibility of deepfake technology raise concerns in both political and private sectors, as there are numerous tools available for their creation.

An employee ignored the contact and reported an attempted attack to the security team.

In October 2022, the cybersecurity firm Resecurity identified a new surge in underground services that allow criminals to create deepfakes. According to the company, this can be used for political propaganda, external influence, disinformation, fraud, and deception.

“It is important to verify suspicious contacts from individuals claiming to represent your company through approved internal communication channels,” the report concludes.