Pro Blog | PK Tech

Is AI Voice Phishing the Next Big Security Threat to Small Businesses?

Written by Megan Schutz | August 9, 2019

We’ve all heard the term Artificial Intelligence (AI) and in many ways it refers to futuristic possibilities: innovation and an exciting future of artificial intelligence. But what about the flip side of AI? While there are many, let’s take a glance into the possible risks of AI to cybersecurity in years to come.

AI-based voice attacks are emerging as a growing security threat that much of the world is not aware of or ready for. Think of “fakeable voices” — essentially copycat voices of trusted people in your life serving as an agent to complete a scam for money or sensitive data. The risk of one thing — the lack of awareness that this risk exists — is what’s dangerous. Imagine you get a call from your mother or sibling, calling from a strange number, but you recognize the voice as someone you know. Because you recognize that person’s voice, you immediately trust what they have to say and ask. The risk lies within the trust of a recognizable voice that is actually a voice clone. Typically the voice clone will ask for some kind of sensitive information, such as social security number, password or other private detail. You are likely to give the information because you recognize and trust the voice. 

Now imagine this “fake” phone call takes place between an employee and a CEO. The employee does whatever the CEO asks simply because of whom the call seems to come from. Now imagine the implications of that unwarranted action by the employee: not only are they a victim of a phishing attack, but they must now answer for their actions and run the risk of damages to the business (either data or financial loss). 

While AI-based voice phishing attacks are few and far between at this point in time, they are likely to surprise a world that is not ready for this sort of phishing. 

AI-based risks also define a growing contingent of changing entry points for cybercriminals and a changing landscape for how companies should best respond to cybersecurity threats–whether potential or existing. 

Tip from PK Tech

You might be wondering: is AI-based voice phishing something your business should be concerned about? Should you be preparing data breach responses specifically for AI imposters? These are both great questions. We’re here to help. As a general rule, with any growing threat or change to the cybersecurity landscape, every business should be self-informed and communicate with their IT team about concerns or potential threats. While AI voice phishing threats are still relatively new and uncommon, it’s still prudent to take precautionary steps as we introduce new technologies and when we gain new information like the threat of AI. Ask our team how your business can be better prepared to prevent a successful voice phishing attack. Contact PK here