Incident 428: BBC Reporter's Twin Brother Cracked HSBC's Voice ID Authentication

Description: HSBC’s voice recognition authentication system was fooled after seven repeated attempts by a BBC reporter's twin brother who mimicked his voice to access his bank account.

Tools

New Report New Response DiscoverView History

Entities

View all entities

Alleged: Nuance Communications developed an AI system deployed by HSBC UK, which harmed HSBC UK customers and Dan Simmons.

Incident Stats

Incident ID

428

Report Count

Incident Date

2017-05-19

Editors

Khoa Lam

Applied Taxonomies

MIT

MIT Taxonomy Classifications

Machine-Classified

Taxonomy Details

Risk Subdomain

2.2. AI system security vulnerabilities and attacks

Risk Domain

Privacy & Security

Entity

Human

Timing

Post-deployment

Intent

Intentional

Incident Reports

Reports Timeline

BBC fools HSBC voice recognition security system

bbc.com

HSBC voice recognition system breached by customer's twin

theguardian.com

Twin brother’s voice cracks bank security

thetimes.co.uk

bbc.com · 2017

Security software designed to prevent bank fraud has been fooled by a BBC reporter and his twin.

BBC Click reporter Dan Simmons set up an HSBC account and signed up to the bank's voice ID authentication service.

HSBC says the system is secu…

theguardian.com · 2017

HSBC’s voice recognition ID system used by half a million customers for secure access to their bank accounts has been breached by a customer’s twin mimicking his voice.

When it was launched last year HSBC’s head of retail banking claimed th…

thetimes.co.uk · 2017

HSBC's voice recognition security system has been tricked by an account holder's twin brother mimicking his speech.

The system is used by half a million customers and when it was introduced last year the bank's head of retail banking said t…

Variants

A "variant" is an incident that shares the same causative factors, produces similar harms, and involves the same intelligent systems as a known AI incident. Rather than index variants as entirely separate incidents, we list variations of incidents under the first similar incident submitted to the database. Unlike other submission types to the incident database, variants are not required to have reporting in evidence external to the Incident Database. Learn more from the research paper.

Similar Incidents

By textual similarity

Did our AI mess up? Flag the unrelated incidents

Facial Recognition Trial Performed Poorly at Notting Hill Carnival

Similar Incidents

By textual similarity

Did our AI mess up? Flag the unrelated incidents

Incident 428: BBC Reporter's Twin Brother Cracked HSBC's Voice ID Authentication

Tools

Entities

Incident Stats

MIT Taxonomy Classifications

Incident Reports

Reports Timeline

BBC fools HSBC voice recognition security system

HSBC voice recognition system breached by customer's twin

Twin brother’s voice cracks bank security

BBC fools HSBC voice recognition security system

HSBC voice recognition system breached by customer's twin

Twin brother’s voice cracks bank security

Variants

Similar Incidents

By textual similarity

Facial Recognition Trial Performed Poorly at Notting Hill Carnival

Passport checker Detects Asian man's Eyes as Closed

Hackers Break Apple Face ID

Similar Incidents

By textual similarity

Facial Recognition Trial Performed Poorly at Notting Hill Carnival

Passport checker Detects Asian man's Eyes as Closed

Hackers Break Apple Face ID