AI deepfake scams rise in health supplement fraud
A recent report by Bitdefender has shed light on a disturbing trend in the realm of health-related fraud. Cybercriminals are increasingly using AI and deepfake technology to exploit unsuspecting individuals by promoting fake supplements and miracle cures through social media platforms.
Researchers at Bitdefender Labs conducted an exhaustive analysis of global health-related scams over a three-month period from March to May 2024. Their findings reveal a marked increase in the use of AI-generated images, videos, and audio clips to craft convincing but entirely fraudulent advertisements for various supplements. These ads are predominantly found on Metas platforms including Facebook, Messenger, and Instagram.
The report highlighted several key discoveries, one of which is the sheer volume and reach of these fraudulent campaigns. For instance, Bitdefender found that some fake pages promoting false advertisements had amassed follower counts exceeding 350,000. Over 1,000 different deepfake videos, impersonating celebrities and healthcare professionals, were employed across various communities. Moreover, more than 40 distinct medical supplement advertisements were promoted through these illicit channels.
Among the impersonated figures are high-profile celebrities and professionals such as Brad Pitt, Cristiano Ronaldo, George Clooney, Dr. Ben Carson, and Dr. Heinz Lütscher. In Romania, notable impersonated individuals include Andreea Esca, Dr. Mihail Pautov, and Dr. Monica Pop. One particularly egregious example involved a boosted advertisement impersonating a well-known Romanian priest, which garnered over 6,000 reactions and 900 shares.
The geographical reach of these campaigns is extensive, targeting millions of recipients in Europe, North America, the Middle East, Asia, and Australia. Bitdefender's findings underline how modern technological advancements, particularly AI, enable scammers to tailor scam messages and ads to the specific interests and vulnerabilities of individuals. This significantly increases the engagement with and success rate of the fraudulent content.
Deepfake technology plays a pivotal role in these scams, creating videos and audio clips that are highly convincing. While some of these deepfakes show clear signs of tampering, others are so well-made that they are difficult to identify. The deepfakes span a multitude of languages including English, Romanian, Italian, Spanish, Portuguese, German, French, Russian, Czech, Slovak, Slovene, Latvian, Lithuanian, Hungarian, Bulgarian, Polish, Greek, and Croatian.
Bitdefender's research also sheds light on the internal workings of these fraudulent campaigns. Cybercriminals craft social media pages to disseminate their misleading advertisements. These pages typically have a modest number of likes and low engagement, but they are adept at using flashy images, deepfake videos, and bold statements to attract attention. These campaigns are meticulously coordinated, with ads targeting specific demographics based on country, age, and gender.
Many of these fraudulent pages lead victims to websites that promote health products with limited-time discounts, fake reviews, and fabricated endorsements from respected individuals in the targeted community. These websites are often poorly designed one-product e-shops or clones of popular news outlets.
Bitdefender warns that the ads and websites commonly require users to enter personal information or make orders via phone calls, where agents aggressively push for the purchase of multiple products. The fake products are marketed as miracle supplements promising to cure various health conditions, thus exploiting the vulnerabilities and desperation of individuals searching for solutions to their ailments.
In conclusion, Bitdefender emphasises the importance of vigilance and due diligence when encountering health-related advertisements on social media. Users are advised to research supplement companies and products thoroughly, consult healthcare professionals, and use security solutions with anti-phishing and anti-fraud technologies to protect themselves against such scams.