DEF CON 33 3- Red teaming fraud prevention systems with GenAI
Karthik Tadinada, Martyn Higson
DEF CON 33 · Day 1 · Main Stage
This talk, presented by Karthik Tadinada and Martyn Higson, delves into the escalating threat of payment fraud, specifically how **Generative AI (GenAI)** is democratizing sophisticated attack techniques and challenging traditional fraud prevention systems. Tadinada and Higson, both veterans in building robust fraud systems for major financial institutions, highlight that the ease and accessibility of GenAI tools are creating an "impending and significant fraud crisis," a sentiment echoed by figures like Sam Altman. The presentation serves as a critical wake-up call for the financial industry, demonstrating through practical examples how GenAI can be leveraged for **red teaming** to expose vulnerabilities in identity verification, authentication, and transaction monitoring controls.
AI review
Competent applied-security talk that walks through real GenAI tooling against fraud controls — docs, liveness, voice, and LLM-assisted rule analysis — with working demos. The work is honest and the threat framing is grounded, but the findings are incremental rather than novel: deepfakes beat detectors, voice is cracked, LLMs find rule edge cases. Practitioners who haven't done this themselves will leave with a useful playbook; anyone who has will leave nodding.