LastPass reported an incident involving a company where a malicious actor utilized Deepfake voice software to contact an employee through various channels such as phone calls, messages, and WhatsApp, impersonating the CEO of LastPass. Despite the attempts to deceive, the employee was skeptical due to several odd characteristics, like contacting outside of working hours and not using official company communication channels. The urgency of the situation raised suspicions of a Social Engineering attack, prompting the employee to report the incident to the company’s security department.
LastPass stated that this incident did not impact the company’s operations but highlighted the escalating sophistication of voice impersonation, especially when targeting high-level executives for Social Engineering purposes. Organizations should exercise caution and skepticism when encountering suspicious communication attempts.
TLDR: LastPass alerts of a Deepfake voice incident where an employee was contacted by a fake CEO through various channels, emphasizing the need for vigilance and reporting of suspicious communications within organizations.
Leave a Comment