fbpx
PaymentsJournal
SUBSCRIBE
  • Analysts Coverage
  • Truth In Data
  • Podcasts
  • Videos
  • Industry Opinions
  • COVID-19
  • News
  • Resources
No Result
View All Result
PaymentsJournal
  • Analysts Coverage
  • Truth In Data
  • Podcasts
  • Videos
  • Industry Opinions
  • COVID-19
  • News
  • Resources
No Result
View All Result
PaymentsJournal
No Result
View All Result

AI Experts Claim Bank AI Vulnerable to Cyber Attack

Tim Sloane by Tim Sloane
March 22, 2022
in Analysts Coverage, Artificial Intelligence
0
AI Experts Claim Bank AI Vulnerable to Cyber Attack

AI Experts Claim Bank AI Vulnerable to Cyber Attack

0
SHARES
0
VIEWS
Share on FacebookShare on TwitterShare on LinkedIn

The experts have proposed a few approaches that could cripple the processes AI manages, but mitigation approaches seem relatively clear. The experts argue that misleading inputs, such as fake trading data, would trip up the AI. But if fake data can be easily injected without notice, it would likely also fool a human. More importantly, assuming the model was trained in a controlled environment and the model tested before deployment, then it can be tested for how it would behave if it is fed fake data. Better yet, a model could be trained to detect fake data and shut the system down.

A specific example given is that the lending model might be flooded with phony loan applications that would alter the model in a negative way. In the 2017 Report Bringing AI Into the Enterprise: A Machine Learning Primer, Mercator identified the importance of thoroughly vetting training data. A machine learning professional should never train a model on data that hasn’t been carefully evaluated to assure it matches reality and is also not including biased data. Even after validating the training data the model needs to be tested. Perhaps testing should include ingestion of malicious data, but that shouldn’t be difficult to implement.

To inflict systemic damage to the bank or the entire financial system would require the system be operating without human observation and executing either extremely high value transactions or many relatively low value transactions extremely quickly. Consider for example card authorizations. Large banks process millions of transactions every day, but the input data is highly secure and is forced to adhere to a strict ISO format. Altering the input on a large scale isn’t likely. Perhaps more likely is that an AI-based fraud detection company is infiltrated and a trojan model distributed to the endpoints. This could be catastrophic but it isn’t an AI-based attack, it’s a traditional cyber-attack that in my opinion is far more likely to be pursued because it uses existing capabilities and create maximum damage downstream:

Machine-learning models vary in their levels of sophistication, from those that use relatively simple algorithms to complex black-box AI systems, so named because, like human brains, they can’t be simply opened up to see exactly how decisions are being made. And like human brains, AI platforms can be susceptible to being fed faulty information, including by attackers seeking to manipulate them.

Russian expertise in using the Internet and social media to disseminate disinformation could easily be turned against machine-learning models that, like other investors, turn to the Internet to try to gauge market sentiment.

‘Misinformation about a takeover being imminent, or a public-relations debacle unfolding, could easily fool a financial institution’s trading systems, Mr. Gupta said’”

I expect this would also fool human traders?

Overview by Tim Sloane, VP, Payments Innovation at Mercator Advisory Group

Tags: AIArtificial IntelligenceBanksCybercrimeCybersecurityDataMachine Learning
0
SHARES
0
VIEWS
Share on FacebookShare on TwitterShare on LinkedIn

    Analyst Coverage, Payments Data, and News Delivered Daily
    Sign up for the PaymentsJournal Newsletter to get exclusive insight and data from Mercator Advisory Group analysts and industry professionals.

    Must Reads

    Embedded Finance: Digital  Innovation in the Cloud

    Embedded Finance: Digital Innovation in the Cloud

    August 16, 2022
    How Payments Integration Can Revolutionize Accounts Receivable

    How Payments Integration Can Revolutionize Accounts Receivable

    August 15, 2022
    Fed Survey Finds Access to Faster Payments Important to Most Businesses

    How to Ensure Accurate, Efficient Payments Amidst Economic Uncertainty

    August 12, 2022
    eCommerce Payments Fraud money mules

    Money Mules, You Are Already Have Them – Now What?

    August 11, 2022
    Why Banks and Credit Unions Need to Adopt Real-Time Payments Now

    Why Banks and Credit Unions Need to Adopt Real-Time Payments Now

    August 10, 2022
    Making Sense of Online Identity

    Making Sense of Online Identity

    August 9, 2022
    Account Takeover Fraud Is Getting More Sophisticated. How Can We Beat It?

    How to Protect Consumers from Account Takeover Fraud

    August 8, 2022
    Technical Challenge or Business Enabler? Seizing the Opportunity of PCI DSS Compliance

    PCI DSS v4.0 Compliance: Raising Your Script Security Awareness

    August 5, 2022

    • Advertise With Us
    • About Us
    • Terms of Use
    • Privacy Policy
    • Subscribe
    ADVERTISEMENT
    • Analysts Coverage
    • Truth In Data
    • Podcasts
    • Videos
    • Industry Opinions
    • COVID-19
    • News
    • Resources

    © 2022 PaymentsJournal.com

    • Analysts Coverage
    • Truth In Data
    • Podcasts
    • Industry Opinions
    • Faster Payments
    • News
    • Jobs
    • Events
    No Result
    View All Result

      Download the complimentary eBook - The power of today’s market‑ready AI to reduce transaction fraud