Security researchers have been tracking a sophisticated fake betting scam across social media platforms that uses AI technology to help deliver the con. According to Group-IB’s computer emergency response team, a global gambling fraud campaign involving more than 1,300 malicious websites and 500 deceptive adverts is ongoing. The payload comes by way of fraudulent betting applications that victims are tricked into downloading that actually do nothing but steal their data and money. Up to $10,000 of it in cases reviewed by Group-IB.
Gambling Fraudsters Employ AI To Give The Big Con An Appearance Of Legitimacy
If it sounds too good to be true it is. A maxim that often falls on deaf ears, especially if the person listening is a gambler and the promise is of easy money in a matter of seconds through using a new betting app. This is exactly what the Group-IB CERT team researchers have found to be the case, as detailed in a new in-depth analysis—Shady Bets: How to Protect Yourself from Gambling Fraud Online.
What binds the 500 fraudulent adverts and 1,377 malicious websites uncovered by Group-IB is that the threat actors behind the global scam are using AI-generated voices to give everything a local and trustworthy feel, no matter where in the world the adverts land.
The use of social media platforms for the malicious advertising reflects what the researchers said was a broader trend in online fraud: “Scammers take advantage of social media’s large audience and advanced targeting features to reach vulnerable users.” The often sophisticated and flashy advertisements promise easy money, and they make use of sideloading techniques to trick victims into bypassing official app stores and the protections they offer. These apps are increasingly distributed through third-party websites and Android APK files in order get around device and operating system security barriers.
Genuine Local Languages And Fake Reviews Contribute To An Enticing AI Fraud Recipe
“A major factor in the success of these scams is the use of fake reviews and testimonials,” the researchers said, which is hardly surprising given how easy it is to produce such fakery with the help of AI these days. Generating a multitude of convincing sounding, just unique enough from each other, but totally fraudulent reviews is just an AI prompt away. Moreover, converting these reviews into diverse languages, right down to regional differences in local dialects, is just as easy. “These fake reviews often include detailed narratives, screenshots, and even photos of successful players,” the report stated, “users are tricked into thinking that others have won large sums of money, further drawing them into the scam.”
The threat intelligence specialists recommended that people:
- Avoid Untrusted Downloads.
- Be cautious of third-party APK files.
- Be Skeptical of Quick Money Promises.
- Verify Authenticity.
Group-IB CERT found the gambling scams were being deployed across multiple regions, including Egypt, the Cooperation Council for the Arab States of the Gulf, Europe and Asia. “The momentum of such scams has rapidly increased,” it said, “with scammers continually expanding into new markets.” Regardless of where the campaigns were, Group-IB found the use of AI to generate believable local voices was consistent.