CyberHappenings logo
☰
🏠 Home πŸ“‚ Browse ℹ️ About

Track cybersecurity events as they unfold. Sourced timelines, daily updates. Fast, privacy‑respecting. No ads, no tracking.

AI-Driven Sign-Up Fraud Targeting Customer Acquisition

First reported
Last updated
πŸ“° 1 unique sources, 1 articles

Summary

Hide β–²

AI-powered sign-up fraud is rapidly increasing, targeting customer acquisition systems. Attackers use AI to create fraudulent accounts, exploiting weak defenses in sign-up processes. This trend is reversing previous declines in login attacks like credential stuffing and MFA fatigue. The retail/e-commerce sector is particularly affected, with fraudulent sign-ups outnumbering legitimate ones by a factor of 120 in some cases. The financial impact can be significant, with potential losses in the millions. Attackers are leveraging AI to automate the creation of new accounts, bypassing stronger defenses on existing accounts. This shift is driven by improvements in MFA and increased user awareness, pushing attackers to exploit the weaker sign-up phase. AI tools like v0 are used to create convincing phishing sites, impersonating legitimate login pages and increasing the likelihood of successful phishing attacks. Additionally, the rise of AI agents introduces new cybersecurity risks, particularly identity debt, where static secrets accumulate and are exploited by attackers. Machine-to-machine authentication methods often lack robust security, making them vulnerable to credential stuffing and password spray attacks.

Timeline

  1. 17.09.2025 17:00 πŸ“° 1 articles Β· ⏱ 4h ago

    AI-Powered Sign-Up Fraud Targeting Customer Acquisition

    AI-driven sign-up fraud is rapidly increasing, targeting customer acquisition systems. Attackers use AI to create fraudulent accounts, exploiting weak defenses in sign-up processes. This trend is reversing previous declines in login attacks like credential stuffing and MFA fatigue. The retail/e-commerce sector is particularly affected, with fraudulent sign-ups outnumbering legitimate ones by a factor of 120 in some cases. The financial impact can be significant, with potential losses in the millions. Attackers are leveraging AI to automate the creation of new accounts, bypassing stronger defenses on existing accounts. This shift is driven by improvements in MFA and increased user awareness, pushing attackers to exploit the weaker sign-up phase. AI tools like v0 are used to create convincing phishing sites, impersonating legitimate login pages and increasing the likelihood of successful phishing attacks. Additionally, the rise of AI agents introduces new cybersecurity risks, particularly identity debt, where static secrets accumulate and are exploited by attackers. Machine-to-machine authentication methods often lack robust security, making them vulnerable to credential stuffing and password spray attacks.

    Show sources
    Open in new tab

Information Snippets

  • In 2024, 46% of all registration attempts were flagged as sign-up attacks.

    First reported: 17.09.2025 17:00
    πŸ“° 1 source, 1 article
    Show sources

  • AI tools like v0 are used to create convincing phishing sites, impersonating legitimate login pages.

    First reported: 17.09.2025 17:00
    πŸ“° 1 source, 1 article
    Show sources

  • The retail/e-commerce sector saw fraudulent sign-ups outnumber legitimate ones by a factor of 120 in some cases.

    First reported: 17.09.2025 17:00
    πŸ“° 1 source, 1 article
    Show sources

  • AI agents introduce new cybersecurity risks, particularly identity debt, where static secrets accumulate and are exploited by attackers.

    First reported: 17.09.2025 17:00
    πŸ“° 1 source, 1 article
    Show sources

  • Machine-to-machine authentication methods often lack robust security, making them vulnerable to credential stuffing and password spray attacks.

    First reported: 17.09.2025 17:00
    πŸ“° 1 source, 1 article
    Show sources