AI-Powered Biometric Spoofing Used to Steal Over 1,000 Bank Accounts in Vietnam

The event involves the use of an AI-enabled software tool that manipulates biometric authentication processes, which is an AI system by definition. The criminal use of this AI system directly caused harm by enabling unauthorized access to bank accounts and facilitating illegal financial transactions, fulfilling the criteria for an AI Incident. The harm is materialized and significant, involving violations of property rights and financial theft. The involvement of AI in the development and use of the biometric spoofing software is central to the incident, not merely incidental or potential. Hence, the classification as AI Incident is appropriate.

The event involves the use of software that manipulates biometric authentication, which is an AI system component (facial recognition AI). The software's use directly caused harm by enabling unauthorized access to bank accounts, leading to financial theft and associated criminal harms. Therefore, this qualifies as an AI Incident because the AI system's use directly led to violations of property rights and facilitated criminal harm.

The event explicitly describes the use of software that manipulates biometric authentication, which is an AI system or closely related technology, to commit fraud and illegally access bank accounts. The harm is realized and significant, involving theft and misuse of financial accounts, which constitutes harm to property and breaches of legal rights. Therefore, this is an AI Incident due to the direct and malicious use of AI-enabled biometric spoofing software causing harm.