4TB of voice samples just stolen from 40k AI contractors at Mercor
6 hours ago
- #voice-cloning
- #cybersecurity
- #data-breach
- A 4TB data leak from AI contractor platform Mercor exposed voice samples and ID documents of 40,000 contractors, enabling high-quality voice cloning.
- The breach uniquely combines clean voice recordings with verified identity documents, meeting the input requirements for synthetic voice cloning services.
- Attackers can weaponize the stolen data for bank verification bypass, vishing scams, deepfake video calls, insurance fraud, and impersonation scams targeting families.
- Affected individuals should audit their public audio footprint, set up verbal codewords, rotate voiceprint enrollments, and disable voice verification at banks.
- Forensic analysis can detect synthetic audio through artifacts like codec mismatches, irregular breath patterns, micro-jitter, and inconsistent room acoustics.
- ORAVYS offers free forensic checks for Mercor breach victims, using multiple engines to detect watermarks, spoofing, and synthetic voice artifacts.