惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

宝玉的分享
宝玉的分享
酷 壳 – CoolShell
酷 壳 – CoolShell
让小产品的独立变现更简单 - ezindie.com
让小产品的独立变现更简单 - ezindie.com
S
Security @ Cisco Blogs
小众软件
小众软件
D
Docker
博客园_首页
A
About on SuperTechFans
P
Privacy International News Feed
freeCodeCamp Programming Tutorials: Python, JavaScript, Git & More
A
Arctic Wolf
Spread Privacy
Spread Privacy
有赞技术团队
有赞技术团队
T
Tailwind CSS Blog
Latest news
Latest news
WordPress大学
WordPress大学
CTFtime.org: upcoming CTF events
CTFtime.org: upcoming CTF events
T
The Exploit Database - CXSecurity.com
C
Cybersecurity and Infrastructure Security Agency CISA
大猫的无限游戏
大猫的无限游戏
cs.CV updates on arXiv.org
cs.CV updates on arXiv.org
OSCHINA 社区最新新闻
OSCHINA 社区最新新闻
K
Kaspersky official blog
V2EX - 技术
V2EX - 技术
SecWiki News
SecWiki News
U
Unit 42
GbyAI
GbyAI
H
Hackread – Cybersecurity News, Data Breaches, AI and More
L
LINUX DO - 热门话题
S
Security Affairs
Y
Y Combinator Blog
aimingoo的专栏
aimingoo的专栏
Blog — PlanetScale
Blog — PlanetScale
MongoDB | Blog
MongoDB | Blog
博客园 - 【当耐特】
The GitHub Blog
The GitHub Blog
T
Tenable Blog
W
WeLiveSecurity
Cloudbric
Cloudbric
Cyber Security Advisories - MS-ISAC
Cyber Security Advisories - MS-ISAC
G
Google Developers Blog
Application and Cybersecurity Blog
Application and Cybersecurity Blog
N
Netflix TechBlog - Medium
F
Full Disclosure
N
News and Events Feed by Topic
D
DataBreaches.Net
P
Proofpoint News Feed
B
Blog RSS Feed
B
Blog
cs.CL updates on arXiv.org
cs.CL updates on arXiv.org

Hacker News - Newest: "AI"

AI can't read an investor deck AI as an attorney? Student uses ChatGPT, Gemini to sue UW over alleged racial discrimination Hacking MCP Servers in AI Systems – The Rug Pull: Tool Changes After Approval GitHub - MeepCastana/KubeezCut: Free Web based video editor GitHub - GenAI-Gurus/awesome-eu-ai-act: Curated tools, official sources, OSS, templates, and guides for EU AI Act compliance. Can AI judge journalism? A Thiel-backed startup says yes, even if it risks chilling whistleblowers Coming soon: 10 Things That Matter in AI Right Now DARPA built an AI to fact-check enemy weapons claims What explains heterogeneity in AI adoption? When AI Meets Muscle: Context-Aware Electrical Stimulation Promises a New Way to Guide Human Movements - Department of Computer Science AI Changed How We Build. It Did Not Change What Matters. Linux rules on using AI-generated code - Copilot is OK, but humans must take 'full responsibility for the… Meta spins up AI version of Mark Zuckerberg to engage with employees Code Mode: Let Your AI Write Programs, Not Just Call Tools | TanStack Blog GitHub - Delavalom/graft: Go framework for building AI agents. Type-safe tools, multi-provider (OpenAI, Anthropic, Gemini, Bedrock), zero vendor SDKs. India's TCS tops estimates, says new AI models did not dent services demand Gen Z's fading AI hype Strong feeling: we are in a folded AI reality GitHub - machinarii/total-recall-catalog: A reference catalog of latest knowledge retrieval, memory & RAG systems GitHub - mensfeld/code-on-incus: Give each AI agent its own isolated machine with root, Docker, and systemd. Active defense detects and stops threats automatically.. Quantization, LoRA, and the 8% Problem: Benchmarking Local LLMs for Production AI Iran war: We spoke to the man making Lego-style AI videos that experts say are powerful propaganda Powell, Bessent discussed Anthropic's Mythos AI cyber threat with major U.S. banks GitHub - immartian/bellamem: Persistent belief-graph memory for AI agents. Retrieves decisive context by importance — not recency, not RAG, not /compact. recursive-mode: The Repo-Native Operating System for AI Engineering After the attack on Sam Altman's home, will AI CEO's go on the offensive? The biggest advance in AI since the LLM Opus 4.6 vs GPT 5.4 One Prompt Unity World Generation Test “AI polls” are fake polls Client Challenge Can AI be a 'child of God'? Inside Anthropic's meeting with Christian leaders How to Switch AI Chatbots and Why You Might Want To GitHub - MattMessinger1/agentic_refund_guardrail: Safe refund policy layer for AI agents — Python + TypeScript. Same behavior, shared tests. Adam/papers/emergent_values_whitepaper.md at master · strangeadvancedmarketing/Adam Ask HN: How do you stop playing 20 questions with your AI coding tools How far can automation and AI support psychotherapy? - @theU GitHub - stagas/rtdiff: realtime git diff gui and AI-assisted commits A Mac Studio for Local AI — 6 Months Later A History of the Early Years of AI at the University of Edinburgh Why AI Coding Tools Still Feel Stuck on Localhost MSN AI Datacenters Are Becoming Strategic Targets twitter.com Penn Researchers Use AI to Surface Unreported GLP-1 Side Effects in Reddit Posts Show HN: MoodSense AI (ML and FastAPI and Gradio, Deployed on Hugging Face) Moodsense Ai - a Hugging Face Space by aman179102 AI models are terrible at betting on soccer—especially xAI Grok GitHub - xialeistudio/echoic GitHub - HimashaHerath/github-dev-wrapped: AI-powered weekly GitHub activity reports deployed to GitHub Pages GitHub - alejandrobalderas/claude-code-from-source: Architecture, patterns & internals of Anthropic's AI coding agent — reverse-engineered from source maps AI and Tech brief: Ireland ascendant GitHub - Titovilal/context0: Context0 - Never Surrender Training for a Marathon with an AI Coach: What Worked and What Didn't Cyber Pulse: Agentic Intel - Apps on Google Play I Built an AI PR Reviewer That Catches Bugs by Not Looking for Bugs Gen Z workers are so fearful AI will take their job they’re intentionally sabotaging their company’s AI rollout | Fortune How AI Is Reimagining the Game of Golf–For Both Players and Courses GitHub - nattergabriel/reseed: A CLI tool for managing and distributing agent skills across projects Is SVG the final frontier? My AI workflow evolved from prompts to a near-autonomous workflow MLSharp Help - 3DGS Viewer & Generator I put my cognitive field based AI's runtime on GitHub Is Numble the first AI-proof game? A3: Kubernetes for autonomous AI agent fleets | Emergent Principles Deepali Vyas ("The Elite Recruiter") GitHub - msmarkgu/RelayFreeLLM: A restful API designed to route user prompts to various AI model providers. Unionized ProPublica staff are on strike over AI, layoffs, and wages Unleashing the Advantage of Quantum AI We're heading for an AI-fueled 'dementia crisis,' brain scientist warns The AI-Assisted Breach of Mexico's Government Infrastructure [pdf] GitHub - stef41/lmscan: 🔍 Detect AI-generated text and fingerprint which LLM wrote it. Open-source GPTZero alternative. Zero dependencies, works offline. MSN GitHub - visionscaper/collabmem: Enabling long-term collaboration with Agentic AI - building up episodic and world model memory over time with in-context awareness We gave an AI a 3 year retail lease in SF and asked it to make a profit | Andon Labs AI Code is Hollowing Out Open Source, and Maintainers are Looking the Other Way What leaked "SteamGPT" files could mean for the PC gaming platform's use of AI AI is the boss at this retail store. What could go wrong? GitHub - Wuzu11517/agentic-proxy: Local proxy meant to help reduce With Drones, Geophysics and ArtificiaI Intelligence, Researchers Prepare to Do Battle Against Land Mines A Single Operator, Two AI Platforms, Nine Government Agencies: The Full Technical Report 在 Steam 上购买 FriedrichAI: Offline AI 立省 10% GitHub - inevolin/resume-cli: Hit Claude usage limits? Resume any AI coding session elsewhere. Switch tools at zero friction. GitHub - atripati/ark: AI Runtime Kernel — a context operating system for AI agents. Eliminates tool bloat, loads only what’s needed, and gives LLMs their reasoning space back. How to Build a Secure AI PR Reviewer with Claude, GitHub Actions, and JavaScript This Startup Wants You to Pay Up to Talk With AI Versions of Human Experts Intel Arc Pro B70 Brings 32GB VRAM to Local AI for $949 WordPress 7.0: The Good, the AI, and the Still Missing AI on the couch: Anthropic gives Claude 20 hours of psychiatry IatroBench: Pre-Registered Evidence of Iatrogenic Harm from AI Safety Measures AI Agents Know About Supabase. They Don't Always Use It Right. The history and future of AI at Google, with Sundar Pichai Inside an AI‑enabled device code phishing campaign How Meta Used AI to Map Tribal Knowledge in Large-Scale Data Pipelines AI for Systems: Using LLMs to Optimize Database Query Execution Forecasting the Economic Effects of AI Introducing Tinker: Play with AI, bring your ideas to life AI sheds light on an ancient gaming mystery People really hate AI but not as much as Iran—or Democrats | Fortune What is an AI Product Engineer? Phoebe Gates wants her $185 million AI startup to succeed with 'no ties to my privilege or my last name': 'I have a chip on my shoulder' | Fortune
The Ultra-Realistic AI Face Swapping Platform Driving Romance Scams
JumpCrisscro · 2026-05-09 · via Hacker News - Newest: "AI"

The Chinese-language artificial intelligence app Haotian is so effective that it’s made millions of dollars selling its face-swapping technology on Telegram. The service integrates easily with messaging platforms like WhatsApp and WeChat and claims that users can tweak up to 50 settings—including the ability to adjust things like cheekbone size and eye position—to help mimic the face they are impersonating. But while Haotian is a robust and versatile platform, researchers and WIRED’s own analysis have found that the service has been marketing to so-called “pig butchering” scammers and those running online fraud operations in Southeast Asia.

Scammers have used Haotian and other deepfake tools to more easily substantiate their deceptions by allowing victims to “videochat” with the character they believe they have been talking to as part of an investment opportunity, friendship, or even romantic relationship. Analysis by the cryptocurrency tracing firm Elliptic of four cryptocurrency wallets linked to Haotian shows the company has received at least $3.9 million in payments in recent years, including money from cryptocurrency wallets linked to alleged criminal activity, including fraud. Additionally, almost half of its payments had ties to a scam marketplace sanctioned by the US government, Elliptic says.

Hieu Minh Ngo, a reformed criminal hacker turned cybercrime investigator at the Vietnamese scam-fighting nonprofit ChongLuaDao, says that Haotian, which emerged around 2021, was “one of the first of its kind and very popular.” Ngo has conducted extensive research into Haotian and its operations. “Its results are nearly perfect,” he says. “And they are getting better and better every day. If you check in the crypto wallet, you will see the money coming in every single day.”

Haotian is just one part of the wider tech ecosystem that has emerged around Southeast Asia’s booming cybercrime industry and forced labor scam compounds. And as face swapping and other video deepfake tools have become more widely available, they have increasingly been incorporated into scamming and other types of cybercrime around the world. In the last two years, officials working for the United Nations Office on Drugs and Crime have identified more than 10 face-swapping tools potentially being used by cybercriminals in Southeast Asia, including for cryptocurrency scams and police officer impersonation.

Haotian has a website for its face-swapping tool, but it primarily promotes its desktop app via a public Telegram channel, which launched in October 2023 according to Ngo’s research. Through this channel, which now has more than 20,000 subscribers, the company markets new versions of the app, gives development updates, and offers technical support. While marketing software through Telegram isn’t inherently nefarious, researchers say that Haotian’s customer base has increasingly skewed toward scammers who already seek out information about an array of gray market services on the messaging app.

Telegram declined to comment. However, after WIRED got in touch with the company, the main public Haotian Telegram channel and some associated accounts became inaccessible or appeared to have been deleted. Telegram did not return a request for comment on whether the company took these accounts down.

Haotian is a Cambodia-based company that says it is headquartered in Phnom Penh and advertises on-site installation services and support in the region. UN researchers highlighted this “same-day on-site installation” service with a screenshot in their 2024 report that shows Haotian's logo on a phone screen at a possible scam site.

The company’s marketing materials on both its website and Telegram frequently reference the tool’s utility for what could be potentially shady activity. One post on Telegram says the technology can help to create an “elite, authentic persona” that the “client completely believes.” (Scammers often refer to people that are being scammed as customers or clients). Another message highlighted by researchers said: “The chat lacks authenticity? No Trust? Use Haotian AI face-changing software to make a video call to solve all your troubles. After all, how could such a beautiful girl lie?”

Research published in March by the security firm Tehtris tracked various domain names that appear to have been linked to Haotian in recent years, including the current site “haotian.ai,” and past addresses “haotianai.com” and “haotianai.us.” Meanwhile, Ngo’s research found that Haotian’s website has openly referred to social engineering techniques. On both Telegram and its own website, Haotian’s discussion of social engineering frequently uses the phrase “精聊” or “jingliao” that literally means “deep chat” or “spiritual chat.” In practice, though, the phrase refers to social engineering and particularly connotes “pig butchering” scams.

When WIRED reached out to a Haotian Telegram account in English with questions about the service, it responded in Chinese saying it could not communicate in English and that it does not “accept” interviews. “Our target customers are entertainment streamers or live salers,” the Haotian account said in Chinese. “We only provide face-swapping software for live streaming and do not allow our products to be used for illegal activities.” In some of its materials, the company notes, according to translations by WIRED, that it places limitations on creating deepfake pornography.

Haotian told WIRED that it would terminate accounts if it found they were being used for fraud and said it is “not true” that it advertises to scam centers. The account speculated that if such marketing exists, it is “most likely” from accounts impersonating Haotian. When asked about language on haotian.ai that appears to market to scammers, the Haotian Telegram account said that the company does not have a website. After WIRED sent the account a screenshot of the current Haotian website and a link to an archived version, the Haotian Telegram account deleted the entire conversation.

There are a few ways to use Haotian’s desktop software. Gary Warner, director of intelligence at the cybersecurity firm DarkTower, says that the most seamless face swaps come from using the company’s pre-programmed faces or inputting a number of photos of a person so the company can build a face model of them. Examples in promotional videos include Elon Musk and Leonardo DiCaprio, but users could also provide materials so the system can generate their own face or someone else’s. The less source material Haotian has to work with, the less compelling the results will be. Regardless, users can tweak their face-swapped appearance using granular tools to hone various facial attributes. The video output, according to researchers and the company’s promotional videos, can be streamed to video calls on WhatsApp, Line, Telegram, Facebook, Viber, Zoom, WeChat, and other platforms.

Additionally, Haotian advertises voice impersonation features and an AI support chatbot in an associated Telegram channel. Posts in the company’s Telegram channel say its technology supports “cloning anyone’s voice for real-time calls or voice messages” and changing a voice from sounding male to sounding female or the reverse.

Security advocates and authorities around the world have increasingly warned about the threat of cybercriminals using face-swapping tools as part of scams. One concrete measure people can take to help detect potential fraud is to require that the person they are video chatting with waves their hands in front of their face to check for glitches or distortions that could indicate a deepfake. Haotian claims in posts, though, that it has added improvements so the system will work seamlessly if someone touches their face with their hands or waves their hands in front of their face while on video. Posts on Telegram also claim that the service supports blowing kisses, blinking, licking lips, or the subject turning or shaking their head.

While a version of its software can be downloaded from the Haotian website, the firm has primarily sold its software using subscriptions. A previous version of Haotian’s website said a “fully functional” version of its software could cost $4,980 per year, while cheaper packages were also available.

Days after Haotian launched its Telegram channel in October 2023, Ngo’s research says, the company also set up a Telegram account linked to Huione Guarantee, which is sometimes known as Haowang Guarantee. The online marketplace, linked to the Cambodian company Huione Group, provided a deposit and escrow service over Telegram, facilitating the sale of many of the tools needed for scamming, including the sale of victim data, deepfake services, electrified GPS-tracking shackles used in human trafficking, and more. In January, before Huione Guarantee was shut down and then sanctioned by the US government for helping facilitate scams, researchers estimated that the platform had facilitated more than $24 billion in gray market transactions.

Huione Guarantee was Haotian’s payment processor and escrow service as well. Evidence of the relationship has been visible for years in Telegram channels related to both companies where customers are completing payments. Chat logs reviewed by WIRED as well as findings from multiple researchers reinforce this link.

Tom Robinson, cofounder and chief scientist at the cryptocurrency tracing firm Elliptic, says cryptocurrency wallets used by Haotian have received 3,558 payments totalling $3.9 million in recent years. $1.2 million of that was between Haotian and Huione entities, with transactions between them ending on November 7. The service uses the stablecoin Tether, also known as USDT. There have been more than 3,007 payments in excess of $100, Robinson says, and the biggest incoming transaction to Haotian has been for $14,890, he says, with a “large number” of transactions around $500.

Some cryptocurrency wallets paying Haotian have been linked to potential criminal activity, according to Robinson’s research. “Proceeds of at least 52 known fraud instances had ended up at these wallets,” he says, adding that accounts linked to the fraud incidents were flagged by Elliptic’s partners. “That's exactly what you'd expect if this is a platform that’s used by fraudsters—that they'd be paying for it from the proceeds of fraud that they’ve committed.”

While Haotian regularly releases new features and improves the quality of its deepfakes, it is, of course, only one of many possible tools that scammers could use as part of their operations. The broader scam economy also relies on the trade of stolen data, fake social media accounts, and websites used to scam people, in addition to the vast array of digital tools that make up the fraud tech stack.

Andrew Fierman, the head of national security intelligence at cryptocurrency tracing firm Chainalysis, says that Haotian’s operations broadly seem similar to those of other companies that operated on the sanctioned Huione Guarantee platform—tech entities that often processed a few hundred thousand dollars or a few million. The amounts are small compared with the scale of the Southeast Asian scam economy overall, but Fierman says that these incremental transactions to tech sellers help prop up the illicit ecosystem overall.

“A few thousand dollars goes a long way,” he says. “We’re not talking about technology that’s costing a hundred thousand dollars to get a pig butchering scam up and running. A buyer is likely not only buying AI voice and facial recognition software, they're looking to get data and to build websites and do the other aspects of the scam tech ecosystem.”