Basic Concept: AI-generated content including personalized text, synthetic voice, and deepfake video has dramatically enhanced the effectiveness and scalability of social engineering attacks. Understanding how AI amplifies specific attack types is key to CompTIA SecAI+ basic AI concepts in the cybersecurity context.
Why B is Correct: Phishing attacks are most dramatically enabled by AI-generated content. AI can generate highly personalized, grammatically perfect phishing emails tailored to individual targets using publicly available information. It can create convincing deepfake audio and video for voice phishing (vishing) and video phishing, replicate executive communication styles for business email compromise, and generate phishing campaigns at massive scale. The quality and personalization that previously required skilled human social engineers can now be automated with AI.
Why A is Wrong: Model poisoning is a specific attack against AI systems that corrupts training data to manipulate model behavior. While sophisticated, it is a targeted AI security attack rather than a broad cybercrime enabled by AI-generated content at scale.
Why C is Wrong: Ransomware is malware that encrypts victim data and demands payment for decryption keys. While AI can assist in ransomware development, ransomware deployment relies on code execution and network propagation techniques more than AI-generated content.
Why D is Wrong: Remote code execution involves exploiting vulnerabilities to run arbitrary code on a target system. It relies on technical vulnerability exploitation rather than AI-generated content. AI might assist in finding vulnerabilities, but RCE is not primarily enabled by content generation.
Submit