Cable reveals fake Marco Rubio with AI voice tricked global diplomats, FMs

No direct cyber threat, but third-party data could be exposed if targets compromised, says State Dept

By
Reuters
|
US Secretary of State Marco Rubio looks on during a meeting. —AFP/File
US Secretary of State Marco Rubio looks on during a meeting. —AFP/File

WASHINGTON: A person pretending to be US Secretary of State Marco Rubio used an AI-generated voice to contact several foreign ministers and US officials last month, a diplomatic cable has revealed.

The spoof took place in mid-June when the impersonator reached out through the Signal messaging app, leaving fake voicemails to at least two of them. 

The impersonator also tried to start the private conversation by sending a text message inviting the targeted person to communicate on Signal.

Officials believe the aim was to gain sensitive information or access to accounts by tricking people with realistic-sounding voice and text messages.

‘The actor likely aimed to manipulate targeted individuals using AI-generated text and voice messages with the goal of gaining access to information or accounts,’ the cable said.

The Washington Post first reported the attempt.

The episode comes weeks after the administration faced a crisis when President Donald Trump’s former national security adviser Mike Waltz created a group chat on Signal where a journalist was accidentally added. Information about military strikes in Yemen was subsequently shared on the chat.

‘There is no direct cyber threat to the department from this campaign, but information shared with a third party could be exposed if targeted individuals are compromised,’ it said.

The State Department has warned its staff and partners to be alert to such impersonation attempts.

The State Department cable, dated July 3, was sent to all diplomatic and consular posts and suggests that staff warn external partners about fake accounts and impersonations.

It did not reveal further details about the identities of the foreign ministers and US politicians contacted.

‘The State Department is aware of this incident and is currently investigating the matter,’ a senior State Department official said, speaking on the condition of anonymity.

‘The Department takes seriously its responsibility to safeguard its information and continuously takes steps to improve the department’s cybersecurity posture to prevent future incidents,’ the official added.

‘Extensive knowledge’

In mid-May, the FBI said malicious actors were using text messages and AI-generated voice messages to impersonate senior US officials in a scheme to gain access to the personal accounts of state and federal government officials.

Access to targets’ accounts could be used to go after other government officials or their associates and contacts, and could also be used to elicit information or funds, the FBI said in a public service announcement.

The FBI declined to comment.

Neither the cable nor the US officials pointed to a suspected perpetrator, but the cable referred to a second effort in April that was attributed to a Russia-linked hacker who conducted a phishing campaign targeting think tanks, Eastern European activists and dissidents, and former State Department officials.

In that attempt, the perpetrator copied a fake “@state.gov” email address on the messages as well as logos and branding used by the State’s Bureau of Diplomatic Technology, it said.

‘The actor demonstrated extensive knowledge of the department’s naming conventions and internal documentation,’ it said.

In that campaign, the person posed as a State Department official in messages sent to private Gmail accounts.

The State Department said industry partners attributed that campaign to a cyber actor associated with the Russian Foreign Intelligence Service.

The incident comes weeks after The Wall Street Journal reported that US federal authorities were investigating an effort to impersonate White House chief of staff Susie Wiles.