A user known as “来日方长” (The Future is Long) did reported significant security breach involving their OKX account, resulting in a loss of over $2 million. According to WuBlockchain, the user said that scammers obtained all his personal information through Telegram. Using this data, the attackers gained access to his email account and performed a password reset. They then used an AI-generated video to change his phone number, email address, and Google Authenticator settings. This advanced method allowed the scammers to empty the account within 24 hours.
The incident highlights the growing threat of AI-driven cybercrime in the crypto sector. Deepfake technology, which can imitate a person’s voice, face and gestures, is increasingly being used in cyber attacks. As reported by Government Technology, these AI-generated deepfakes could at some point transmit disinformation and fraudulent messages unprecedented scale and sophistication, making them harder to detect and stop. This new generation of cyber attacks undermines trust in digital interactions and poses major challenges for both individuals and organizations.
The breach involving 来日方长 is part of a broader trend of AI-related fraud. Earlier this year, Fortune marked the rise of OnlyFake, a site that can produce highly realistic fake IDs that can fool know-your-customer processes at crypto exchanges like OKX. These developments indicate that cybercriminals are increasingly using AI to circumvent traditional security measures.
In response to these threats, experts emphasize the importance of increased security awareness and training. As noted by Government Technology, effective security awareness training can change security culture, making individuals more vigilant and better equipped to detect advanced phishing attacks. Additionally, organizations are encouraged to adopt new technology tools that use AI to detect and prevent message fraud, thus fighting fire with fire.
So far, neither OKX nor cybersecurity firm SlowMist have commented on the incident involving 来日方长. CryptoSlate has reached out to OKX for comment but has not received a response at the time of writing. WuBlockchain has urged exchanges to increase their security measures and make users more vigilant about protecting their personal data to limit the risk of such advanced attacks. The incident is a stark reminder of the evolving nature of AI cyber threats and the need for continued adaptation of security practices.