2024-09-19 –, Stage 1
The current threat landscape has seen an exponential increase in synthetic media use (deepfake technology). These tools can be leveraged against systems that automatically verify one's identity, or even be used in social engineering attacks against business processes and people in order to appear as a different person. Threat actors are using this more and more in their business-as-usual, so how can assessors test these attacks in an ethical, legal and non-impactful way? This presentation will hopefully shed a light on how we developed our approach.
I work at a large US-based company and have worked in the cyber security industry for the last four years.