Scams and phishing threats are on the rise [1] [2], as reported by over half of the respondents in a survey conducted by the FIDO Alliance. This article explores the factors contributing to this trend and offers recommendations for stronger security measures.


The increase in suspicious messages and scams online can be attributed to the accessibility of generative AI tools like FraudGPT and WormGPT, available on the dark web [3]. These tools have made it easier and more convincing for cybercriminals to craft social engineering attacks. Furthermore, threat actors are utilizing deepfake voices and videos to deceive individuals into believing they are interacting with a trusted person. Phishing remains the most commonly used tactic by cybercriminals [2], making passwords vulnerable [2].

The FIDO Alliance recommends the use of stronger and simpler options, such as passkeys and on-device biometrics [1] [2], instead of relying solely on passwords and one-time codes [2]. By adopting these measures, individuals can better protect themselves against phishing attacks.


The rise in scams and phishing threats poses significant risks to individuals and organizations alike. The accessibility of AI tools and the use of deepfake technology have made these attacks more sophisticated and convincing. To mitigate these risks, it is crucial to implement stronger security measures, such as passkeys and on-device biometrics [1] [2]. By doing so, individuals can enhance their protection against phishing attacks and safeguard their personal information. Looking ahead, it is essential for both individuals and technology providers to remain vigilant and proactive in adapting to evolving cyber threats.