The nature of data stolen in data breaches affecting companies such as software provider, Progress Corp, and payroll provider Zellis, could indicate what other advanced techniques hackers are prepared to use to compromise businesses, the Financial Times has suggested.
Progress Corp publicly confirmed the targeted data attacks on its file system, MOVEit, which exposed sensitive information after a previously undetected vulnerability in its MOVEit software meant that some of its customers were affected.
Deepfake ID fraud is just one growing type of scam as hacking techniques continually evolve and become more advanced. The article suggests a potential rise of ID fraud, using deepfake software, could be another result of data being compromised and stolen in this way.
The data breach, also affecting companies including the BBC, British Airways and Boots, were levelled at Russian cyber criminal network called Clop who denied any wrongdoing.
Compromising data attacks are on the rise; Optus publicly announced it suffered a major data breech in 2022 after a ransom of US $1 million in cryptocurrency was demanded for the recovery of 10 million exposed accounts, although it is not known whether the ransom was paid.
A spokesperson for the BBC addressed the breach: “We are aware of a data breach at our third-party supplier, Zellis, and are working closely with them as they urgently investigate the extent of the breach”.
Personal information stolen included identity-related documents including driving licenses, health records and pension information.
According to a Regula report, one third of businesses have experienced voice and video deepfake scams.
