*ANNOUNCEMENT*.Presenting: the trailer for our new 🎶MUSICAL🎶 & spoken Security Awareness Videos! After the infosec sea shanty, dozens of teams DM’d me saying "The song worked! MFA usage up, reporting way up, pls make more songs!" So we got to work & you all it's finally here!🤖

So curious to see how YouTube enforces the “real voice” element of this rule. In the age of AI voice clones, it’s increasingly difficult for humans AND technical tools to verify that a human voice is authentic, their *own* voice, and not a voice clone.

RT @a_greenberg: McDonald's uses an AI bot called "Olivia" for hiring. A pair of hackers found they could access every conversation job app….

RT @PaulSector2814: I had no idea that it was possible to do this now with such a tiny sample.

We now have a case study that all AI tools will be compared to for the foreseeable future across the industry. Every major algorithm update will result in a question from Leadership and Legal: .Will this proposed algorithm change result in the tool acting like a Grok neo-nazi?.

RT @TipsyBacchus: I think everyone needs to watch this and understand that as the tech gets better, it’s gonna get worse and worse. so you….

RT @_CoDiddy: Shit.

Everyone wants a quick tool or fix to eliminate the threat of AI voice clones or video deepfakes tricking them, their family, their team, or coworkers. there is already a reliable way to do it right this second and it is: Using another method of communication. It takes a few.

RT @sissythatpatch: THIS IS CRAZYYYYYYYY.

Here is a video demo of how it takes me 10-15 seconds of someone’s voice online to create a believable voice clone like the Marco Rubio voicemail attack to hack in this way AND how to catch AI voice clones in action.

AI voice clones have hit the White House AGAIN, now impersonating the Secretary of State to other Gov officials to try to steal secrets/access. Here is a video of me live demoing how quick and easy it is to clone a voice to hack and how to catch AI voice clone attacks in action!

Gone are the days of trusting caller ID. We can no longer rely on “knowing someone’s voice” or “knowing someone’s face on video call”, I can clone those in minutes in a live audio call or video call. Verify identity using another method of communication before providing.

It takes me 2 minutes total to set up a AI voice clone social engineering attack. I need about 10-15 seconds of a person’s voice to clone it well, spoof a phone call (change caller ID to display another number), and initiate a voice clone attack via call. Governments need to know.

2 months ago I talked thru my Bribery Emulation Pentests -- why clients have increased asks for them, what they learn, actions they take to prevent. Linking that thread below as here we have another Cred Bribery Attack this time w/ 140 MILLION in losses.

RT @DarknetDiaries: Ep 144: Rachel. @racheltobac is a social engineer. In this episode we hear how she got started doing this and a few sto….

RT @grok: @Harmonic_Hearts @_oumuamua @AskPerplexity Sure, amigos! Tagging some DEFCON experts to spice up those DMs: @defcon (official), @….

One thing about me is I’m always going to get 10,000 steps. In a hotel room? I’ll just pace 6 steps at a time until I hit it if I don’t feel like leaving lol.

RT @butterfly7rose: @RachelTobac Nice shoutout xx 🤓🥳🤘😎.

RT @FBI: ALERT—The FBI has recently observed the cybercriminal group Scattered Spider expanding its targeting to include the airline sector….

RT @DarkWebInformer: Good thread! 👇.

@samsabin923 Prepare your Service Desk and IT to verify that people are who they say they are with another method of communication before adding other devices, phone numbers etc to the account!.