Senate Foreign Relations Committee Chairman Ben Cardin was targeted by a caller who posed as a former top Ukrainian official during a recent Zoom call, according to a notice circulated to Senate offices and obtained by NBC News on Wednesday.
The caller, who was not identified, posed as former Ukrainian Minister of Foreign Affairs Dmytro Kuleba, according to the notice, which was sent to Senate offices in an effort to warn them to be cautious about similar attempts.
Punchbowl first reported the details of the deepfake.
The notice, obtained by NBC News, was issued Monday by the Senate’s security office and said that amid a rising tide of social engineering threats recently, “this attempt stands out due to its technical sophistication and believability.”
The notice detailed an email received by Cardin’s office on Sept. 19 from someone claiming to be Kuleba that turned into a conversation punctuated by what the notice characterized as “politically charged questions related to the upcoming election.”
Cardin and his staff had met previously with Kuleba “and when they connected on Zoom, it appeared to be a live audio-video connection that was consistent in appearance and sound to past encounters,” according to the notice.
The senator and members of his team began to suspect the call was fraudulent when the person posing as the former Ukrainian official “began acting out of character and firmly pressing for responses to questions like ‘Do you support long range missiles into Russian territory? I need to know your answer,’” the notice said.
According to the notice, the caller’s questioning was “likely trying to bate (sic) the Senator into commenting on a political candidate.”
Cardin and his staff ended the call, the notice said, adding that Cardin’s office contacted the State Department, which confirmed the caller was not Kuleba.
The State Department and Capitol Police did not immediately respond to requests for comment on Wednesday night. The FBI declined to comment.
Cardin had referred to the caller as a “malign actor” in a statement released by his office Wednesday night about the incident.
Cardin said the caller “engaged in a deceptive attempt to have a conversation with me by posing as a known individual.” The senator said he quickly ended the call and notified authorities, who are investigating the incident.
“After immediately becoming clear that the individual I was engaging with was not who they claimed to be, I ended the call and my office took swift action, alerting the relevant authorities,” Cardin said.
Cardin’s office declined to comment further on the details of the call.
The incident also prompted a separate notice to Senate offices that warned of “an active social engineering campaign” that is “targeting Senators and Senate staff.”
That notice, which was sent by the cybersecurity awareness center and was also obtained by NBC News, directs offices on how to respond if they receive a suspicious message or a request for a video call with a foreign dignitary.
“Targets are contacted by threat actors posing as representatives of a foreign dignitary requesting an official video call that is, in reality, malicious,” that second notice states. “This technique is used to discredit the victim or gain additional information. Threat actors leverage existing relationships and other known information to appear legitimate.”
The apparent deepfake call comes after the FBI and other government agencies confirmed last month that Iran was behind efforts this year to send stolen materials from former President Donald Trump’s campaign to President Joe Biden’s campaign, which did not solicit the information, according to intelligence officials. NBC News reported this month that the Justice Department plans to file criminal charges in connection with the hacking of Trump’s campaign, according to two law enforcement officials.
Ken Dilanian contributed.
Leave a Reply