惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

WordPress大学
WordPress大学
Cyberwarzone
Cyberwarzone
The GitHub Blog
The GitHub Blog
云风的 BLOG
云风的 BLOG
P
Proofpoint News Feed
小众软件
小众软件
Recent Announcements
Recent Announcements
博客园 - 三生石上(FineUI控件)
Security Archives - TechRepublic
Security Archives - TechRepublic
W
WeLiveSecurity
Cloudbric
Cloudbric
博客园 - 司徒正美
美团技术团队
N
News and Events Feed by Topic
Exploit-DB.com RSS Feed
Exploit-DB.com RSS Feed
PCI Perspectives
PCI Perspectives
宝玉的分享
宝玉的分享
H
Help Net Security
H
Hackread – Cybersecurity News, Data Breaches, AI and More
Google DeepMind News
Google DeepMind News
Help Net Security
Help Net Security
Last Week in AI
Last Week in AI
S
Schneier on Security
N
News | PayPal Newsroom
B
Blog RSS Feed
L
LINUX DO - 最新话题
T
Troy Hunt's Blog
S
Secure Thoughts
雷峰网
雷峰网
aimingoo的专栏
aimingoo的专栏
L
Lohrmann on Cybersecurity
G
Google Developers Blog
Microsoft Azure Blog
Microsoft Azure Blog
Hacker News - Newest:
Hacker News - Newest: "LLM"
T
Tenable Blog
S
Securelist
L
LangChain Blog
Recent Commits to openclaw:main
Recent Commits to openclaw:main
I
InfoQ
H
Heimdal Security Blog
Cisco Talos Blog
Cisco Talos Blog
F
Full Disclosure
Y
Y Combinator Blog
酷 壳 – CoolShell
酷 壳 – CoolShell
K
Kaspersky official blog
T
Tailwind CSS Blog
奇客Solidot–传递最新科技情报
奇客Solidot–传递最新科技情报
钛媒体:引领未来商业与生活新知
钛媒体:引领未来商业与生活新知
阮一峰的网络日志
阮一峰的网络日志
C
Cisco Blogs

The Register - Security: Cyber-crime

Election interlopers register 5K+ domains, hope to catch some voting phish Palo Alto VPN bug graduates from advisory to active exploitation ShinyHunters adds Charter to trophy shelf after 4.9M customer records leak Carnival confirms ShinyHunters cruised off with 6M customer records after April breach CrowdStrike, Google shatter Glassworm botnet MyPillow must decide whether to be firm or soft as ransomware crims demand pay A Russian speaker and jailbroken Gemini went on a hacking spree and emptied at least one MAGA victim's crypto wallets Shai-Hulud copycat worm infects yet another npm package Grafana Labs admits all its codebase are belong to someone who popped its GitHub account Nobody believes the 'criminals and scumbags' who hacked Canvas really deleted stolen student data Malware crew TeamPCP open-sources its Shai-Hulud worm on GitHub Foxconn confirms cyberattack after ransomware crew claims it stole confidential Apple, Nvidia files Cache-poisoning caper turns TanStack npm packages toxic 'CopyFail' attackers start cashing in on Linux flaw Cushman & Wakefield confirms vishing cyberattack ShinyHunters claims dump puts 119K Vimeo emails in the wild ShinyHunters claims 119K Vimeo emails in the wild Critical cPanel exploited: 'Millions' of sites could be hit Pro-Iran group turns Ubuntu DDoS into shakedown French prosecutors link 15-year-old to gov mega-breach UK business breach rate stuck at 43%... blame the phishing What type of 'C2 on a sleep cycle' do they leave behind? Novel Chinese spy group found in critical networks in Poland, Asia Chinese spy group caught lurking in Poland, Asia networks Don’t pay VECT a ransom - your big files are likely gone Pitney Bowes the latest victim of ShinyHunters’ breach-spree Ongoing supply-chain attack targets security, dev tools Medical and utility tech companies admit digital breakins Burglar alarm biz gets burgled, ShinyHunters pursues ransom Crime crew impersonates help desk, abuses Teams chats ShinyHunters claim they have cruise giant Carnival’s booty CISA, NCSC issue Firestarter backdoor warning 500k Biobank volunteers' data listed for sale on Alibaba Another npm supply chain worm hits dev environments France's 'Secure' ID agency probes breach as crooks claim 19M records France's 'Secure' ID agency probes claimed 19M record breach macOS ClickFix attacks deliver AppleScript stealers to snarf credentials, wallets macOS ClickFix attacks deliver AppleScript stealers Yet another ex-ransomware negotiator admits turning rogue after payoff from crimelords Third ransomware pro pleads guilty to cybercrime U-turn AI-assisted intruders pwned Vercel via OAuth abuse and a pilfered employee account AI-pwned: Vercel breach traced to stolen employee creds Crook claims to leak 'video surveillance footage' of companies Crook claims to leak 'video surveillance footage' of firms Adaptavist Group breach spawns imposter emails as ransomware crew claims mega-haul Adaptavist Group breach: Ransomware crew claims mega-haul Scot becomes second Scattered Spider-linked crook to plead guilty in US US gets second Scattered Spider-linked guilty plea North Korea targets macOS users in latest heist McGraw Hill linked to 13.5M-record data leak McGraw Hill linked to 13.5M-record data leak Autovista blames ransomware for service disruption Autovista blames ransomware for service disruption No honor among thieves as 0APT threatens rival ransomware gang Krybit 0APT ransomware gang extorts Krybit amid doxxing threat Fake Linux leader using Slack to con devs into giving up their secrets Fake Linux Foundation leader using Slack to phish devs Booking.com warns of possible reservation data exposure Booking.com warns of possible reservation data exposure Gym giant Basic-Fit breached with at least 1M affected US, UK, Canadian cops disrupt $45M global crypto scam www.theregister.com Old Adobe Reader zero-day uses PDFs to size up targets Zephyr Energy loses £700K to contractor payment fraud Russia's Fancy Bear still attacking routers to boost fake sites, NCSC warns Russia's APT28 behind latest wave of router, DNS attacks AI recruiting biz Mercor says it was 'one of thousands' hit in LiteLLM supply-chain attack Mercor says it was 'one of thousands' hit in LiteLLM attack Telnyx package latest hit in PyPI supply-chain compromise Telnyx package latest hit in PyPI supply-chain compromise European Commission admits breach of public web systems European Commission admits breach of public web systems AFC Ajax drops ball as hackers transfer tickets, lift bans AFC Ajax drops ball as hackers transfer tickets, lift bans HackerOne slams supplier for delayed breach notice after staff data exposed HackerOne slams supplier over delayed breach notice Russian initial access broker jailed for 81 months in US Russian initial access broker jailed for 81 months in US Smooth criminals talking their way into cloud environments, Google says Chip tester shrugged off ransomware – then came the leak Chip tester shrugged off ransomware – then came the leak Russians posing as Signal support to launch phishing raids JLR cyber bailout risks dangerous precedent, watchdog warns Unknown attackers exploit yet another critical SharePoint bug Microsoft Intune: Lock it down, warn feds after Stryker Ransomware crims abused Cisco 0-day weeks before disclosure North Korea's 100,000-strong fake IT worker army rake in $500M a year for Kim Jong Un Robotics surgical biz Intuitive discloses phishing attack Cybercrime up 245% since the start of the Iran war Credential-stealing crew spoofs Ivanti, Fortinet, Cisco VPNs Interpol sinkholes 45,000 IPs linked to global cybercrime SocksEscort fraud-enabling proxy service taken down CISA warns max-severity n8n bug is being exploited in the wild Iran-linked cyber crew claims hit on US med-tech firm Meta, cops deploy AI and handcuffs in scam crackdown Dutch police collar teen over string of bank card frauds EU law advisor wants cybercrime protections fast-tracked Cybercrime isn't just a cover for Iran's government goons Crooks compromise WordPress sites, spread infostealers Ericsson breach blamed on third party vendor vishing attack Polish cyber police busts gang of alleged teen DDoS peddlers
AI-driven fraud far more profitable, Interpol warns
Connor Jones Connor Jones · 2026-03-17 · via The Register - Security: Cyber-crime

AI is apparently good for the bottom line if your business is crime. Financial fraud schemes carried out with the help of artificial intelligence are 4.5 times more profitable than those that aren't enhanced, according to Interpol's latest estimates.

The crime agency said that AI "greatly boosts both efficiency and effectiveness," making each interaction with a fraudster more convincing and all the more likely to continue growing in popularity.

Cybercriminals most commonly use generative AI tools to eliminate the small details that may have otherwise given them away.

Using AI to rephrase text messages or emails to victims can help iron out the quirks that may betray a non-native speaker. It could mean the difference between success and failure when impersonating major brands, for example.

On the more advanced end of the scale, deepfake technology is far more sophisticated now than it was even two years ago. Interpol said that criminals can create convincing voice clones with just ten seconds of reference material, such as audio ripped from a social media post.

Dark web marketplaces offer full-service synthetic identity kits, commonly referred to as deepfake-as-a-service products, which make it even easier for criminals to trick victims into thinking they're speaking to a known individual.

These kits come at affordable prices, Interpol said in its annual financial fraud report, and have accelerated the industrialization of this type of cybercrime.

"Over the past two years, technology has continued to enable and enhance financial fraud, empowering criminal networks to scale operations exponentially with minimal investment," said Interpol. "Digital technology and AI, in particular, have dramatically transformed social engineering techniques and victim profiling, enabling fraudsters to construct highly persuasive fraud environments.

"The proliferation of AI-driven tools, large language models, cryptocurrencies, and the rapid expansion of the fraud-as-a-service platforms have collectively lowered barriers to entry, enabling widespread access to sophisticated fraud capabilities, elevating the generation of financial gain through fraud schemes to an efficient, global industry."

Agentic AI is the trendy autonomous new kid on the AI block, and while the benefits it offers for both sides of the cybercrime divide are well told, it still isn't being used at scale yet.

However, when that day comes, Interpol is concerned about the capabilities it will hand attackers. Deploying agents will take much of the legwork away from a fraudster, who can simply prompt a bot to return all the pertinent information about an individual, including their credentials or a business's system vulnerabilities that could be exploited for ransomware attacks.

In the latter example, the agent could also scour stolen data and advise the crook about how to price their ransom demands, based on the value of the data the bot stole and the victim's financial position.

Whether the agentic AI security threat reaches that reality remains to be seen. Some cyber experts, like Kevin Mandia, have staked millions on the notion that the tech will usher in the next big trend in cybercrime, while others are exercising a little more restraint.

AI sextortion and scam centers

Member countries have also informed Interpol of a rise in sextortion schemes that rely on AI-generated imagery to blackmail victims into paying the criminals.

Some cases have seen targets reject the scammers' initial attempts to carry out traditional financial fraud schemes, such as crypto, forex, romance scams, and more, but are then subjected to AI-assisted sextortion campaigns.

This development is closely linked to the rapid expansion of scam centers across the world. Originating in Southeast Asia (SEA) around four years ago, these facilities often see humans trafficked into online scam work from other countries.

Crime-fighting organizations have worked to shut these down, but in recent years the number of centers has expanded, as has their geographic footprint.

Scam centers of this kind are being seen increasingly in regions beyond SEA, including Central and South America, North Africa, and some parts of Europe. Police reports suggest that humans are being trafficked to these compounds under false pretenses, regardless of the region.

Alleged scammers arrested and lined up following Interpol-led Operation Sentinel, carried out in Benin

Alleged scammers arrested and lined up following Interpol-led Operation Sentinel, carried out in Benin

Interpol believes that this scamming phenomenon now involves hundreds of thousands of individuals globally, many of whom are thought to be victims of human trafficking.

The growth of scam centers appears to be outpacing the ability of international police to shut them down.

Interpol routinely publicizes the successful operations it coordinates with regional police forces, often yielding a large number of arrests each time.

The results of one eight-week operation announced in February revealed that 651 arrests were made following probes across 16 countries in Africa, with over 1,200 victims identified.

A further 574 arrests were announced earlier in December, and 260 in the September before that, all of which took place in Africa, illustrating the spread of the crime outside of SEA.

In 2025 alone, the global losses associated with financial fraud were around $442 billion, Interpol reckons, and this is only expected to rise over the next three to five years, largely because of AI.

Valdecy Urquiza, secretary general at Interpol, said: "Enabled by artificial intelligence, low-cost digital tools and increased global criminal collaboration, we are witnessing the industrialization of fraud.

"It is vital to remember that the cost of financial crime is not just money – it is people's life savings, their dignity, and in the worst case, their life.

"Strengthening cooperation between law enforcement, the private sector, and raising public awareness is key in tackling this global security threat." ®