Attackers today are weaponizing generative AI to steal identities and extort millions of dollars from victims via deepfakes and pretext-based cyberattacks. Well-orchestrated attacks that exploit victims’ trust are growing, with the latest Verizon 2023 Data Breach Investigations Report (DBIR) finding that pretexting has doubled in just a year. The risks of compromised identities have never been higher, making identity and access management (IAM) a board-level topic across many companies today.
Generative AI is the new weapon attackers are using to create and launch identity-based attacks. Michael Sentonas, president of CrowdStrike, told VentureBeat in a recent interview that attackers are constantly fine-tuning their tradecraft, looking to exploit gaps at the intersection of endpoints and identities: