Summary: Microsoft has identified members of a cybercrime group named Storm-2139, accused of creating tools to bypass AI safeguards for generating harmful content, including celebrity deepfakes. The group utilized stolen credentials to access generative AI services unlawfully and sold access to these capabilities to others for malicious purposes. Microsoft is currently pursuing legal action against the identified actors to disrupt their operations and prevent further misuse of AI technology.
Affected: Microsoft, Generative AI Services
Keypoints :
- Storm-2139 consists of key members from various countries involved in cybercrimes focused on AI-generated content.
- The group exploited exposed credentials to alter AI services and create non-consensual intimate images and other illicit material.
- Microsoft initiated legal actions and seized a key website to disrupt the groupβs operations and encourage internal conflict among its members.
Views: 8