>

AI Copilots and Phishing

AI Copilots and Phishing

WRITTEN BY

Adaptive Security

Whitepaper

5 min read

Download article

AI Credential Phishing and Security Risks

Credential phishing - a common cyber crime where hackers attempt to steal sensitive login information - has increased by 217% in the last 6 months alone. As the strength of AI continues to increase, spear-phishing and data breaches will increase.

A recent expose in Wired revealed how Microsoft's new Copilot AI could be turned into a “phishing machine.” At this summer’s Black Hat, Michael Bargury demonstrated five proof-of-concept ways that Copilot, which runs on its Microsoft 365 apps, such as Word, could be manipulated by malicious attackers, including using it to provide false references to files, exfiltrate some private data, and dodge Microsoft’s security protections. By gaining access to an email account, attackers can manipulate Copilot to impersonate the user through emails; From there, the attacker can use Copilot to send off emails to all of the user's contacts in a matter of minutes; these emails can contain malware or links that put all of its recipients at risk. On top of this, attackers can use Copilot to obtain sensitive information through compromised emails or by bypassing security measures. These phishing attacks were already dangerous, but the personalization and efficiency of AI makes them even more dangerous and more common. Learn more at wired.com.

As AI continues to advance and introduce new risks, particularly around phishing and social engineering, advanced phishing simulations and security awareness training become increasingly critical. These attacks are easy to fall for, so companies need employees who have practice dealing with these threats. Adaptive’s AI phishing simulations provide a crucial tool for organizations looking to improve their defenses and ensure that employees can identify and respond to increasingly advanced phishing schemes. This training can be revolutionary in protecting a company.

For more information on how phishing simulations can strengthen your company’s security, visit Adaptive's product page.

‍

WRITTEN BY

Adaptive Security

Blog

5 min read

Download article

U.K. engineering group loses $25M in Hong Kong deepfake video scam

Thousands impacted in SMS road toll scam

Deepfakes on financial services firms rise 700%

Voice cloning and social engineering

AI threats and cyber insurance

SMS phishing: is your business protected?

4151% increase in phishing since the launch of ChatGPT

Warren Buffett calls AI scamming “the growth industry of all time”

LastPass targeted in AI voice phishing scam

Getting Started with Adaptive

A short overview about getting started on the Adaptive platform

GDPR, Data Privacy, and The Role of Security Awareness Training

Discover the evolving landscape of data privacy regulations in the United States, from the EU's GDPR to state-level privacy laws like CCPA and CDPA. Learn how businesses are adapting to new data protection requirements, the importance of security awareness training, and how Adaptive helps companies navigate complex privacy challenges through innovative, personalized training solutions.

Red Teaming: Cybersecurity Testing and Its Role in Combatting AI Social Engineering Threats

Explore the evolution of red teaming in cybersecurity, from military origins to cutting-edge AI-driven threat assessment. Discover how ethical hackers use advanced techniques like social engineering, credential harvesting, and AI simulations to test organizational defenses and protect against sophisticated cyberattacks.

Deepfakes and Security Awareness Training

Uncover the rising threat of deepfakes: Learn how AI-powered synthetic media is transforming cybersecurity risks, from financial fraud to social engineering. Explore the technology behind deepfakes, their growing accessibility, and how Adaptive Security offers security awareness training to protect organizations against these sophisticated attacks.

Human Error & Cyber Incidents

Discover how human error drives 90% of cybercrime, costing businesses $8.25 trillion in 2023. Learn from real-world examples like Uber and Marriott's data breaches, and explore how Adaptive Security's AI-powered training can help organizations prevent phishing attacks and strengthen cybersecurity through employee education.

North Korean Hackers Breach German Defense Firm Diehl Defence

Uncover how the North Korean Kimsuky APT group breached Diehl Defence through sophisticated phishing tactics, targeting a critical defense manufacturer. Learn about the evolving cyber threats, social engineering techniques, and the importance of comprehensive security awareness training in protecting sensitive infrastructure.

Hackers Steal Hundreds of Millions of American Social Security Numbers in Major Data breach

Learn about a massive data breach affecting 2.9 billion individuals, exposing Social Security numbers and personal data. Explore the critical implications for cybersecurity, identity theft risks, and the urgent need for comprehensive security awareness training to prevent future attacks.

AI Copilots and Phishing

Uncover the alarming rise of AI-powered credential phishing, with a 217% increase in just six months. Explore how advanced AI tools like Microsoft Copilot can be manipulated for sophisticated cyber attacks, and learn how Adaptive's AI phishing simulations can help organizations defend against these evolving threats.

Wiz Security Targeted in Deepfake Attack

American Express Targeted in Deepfake Attacks

Deepfakes on financial services firms rise 700%

Thousands impacted in SMS road toll scam

U.K. engineering group loses $25M in Hong Kong deepfake video scam

Get your team ready for Generative AI

Schedule your demo today

Thank you! Your submission has been received!

Oops! Something went wrong while submitting the form.