Delilah blackmail bot
Occurred: July 2016
Discovered in 2016 by Gartner analyst Avivah Litan, Delilah was the first known 'insider' threat bot. Spread through downloads on multiple adult and gaming sites, the bot is said to gather sensitive information on the victim which can later be used for espionage, blackmail, and extortion.
Dubbed 'Delilah', the bot likely uses a combination of social engineering and automated ransomware to enable its operators to capture footage of victims through their webcams, which can then be used to extort the victim or convince them to carry out actions that would harm their employer.
According to Litan, 'Once installed the hidden bot gathers enough personal information from the victim so that the individual can later be manipulated or extorted. This includes information on the victim's family and workplace.'
Sector: Banking/financial services
Technology: Reinforcement learning
Issue: Ethics; Security
Gartner (2016). Meet Delilah – the first Insider Threat Trojan
News, commentary, analysis
Published: August 2023