Showing posts with label brandjacking. Show all posts
Showing posts with label brandjacking. Show all posts

Thursday 29 August 2024

After half-a-million views, "Dr Noakes" erection dysfunction "advert" taken down by Facebook + suggested actions for META to do better

I am pleased to report that The Noakes Foundation has succeeded in getting a fake 'Dr Noakes' advert for erectile dysfunction pills removed from META. This is after a month of trying varied methods without success to stop the brandjacking of Professor Tim Noakes' identity, and his impersonation via deepfake reels and accounts on Facebook.

Brandjacking is the ‘allegedly illegal use of trademarked brand names - on social network sites’ (Ramsey, 2010 p851). Cybercriminals misuse the trademarks of others without authorization. For example, ‘Facebookjacking’ and ‘Instajacking’ see public figures’ usernames, account names, and/or digital content being used for fake accounts and video "adverts" on Meta’s respective popular social networks- Facebook and Instagram. Such brandjacking via fake celebrity endorsement spans several types of crime: (1) Impersonation, (2) Non-consensual image sharing, and (3) the Infringement of a public figure's  intellectual property through copyright violation of still images and audio-video. In addition to causing (4) Reputation damage to the public figure through suggesting association with a scam, cybercriminals may use it for (5) Financial fraud and hacking. Given that these are serious crimes, it is worrying that public figures in South Africa seem to receive minimal, if any, support from social media companies for stopping the fake endorsement digital crime. There is also a gap in scholarship for how public figures worldwide, and in SA, might best tackle this persistent crime.

Figure 1. Screenshot from the fake 'Dr Noakes' erection dysfunction advert on Facebook (2024)  

On Thursday the 25th of July we were first alerted to a deep fake advert featuring Emeritus Professor Tim Noakes that ran on META's Facebook, and Tik Tok. As Figure 1 shows, the Facebook advert had been viewed over 584,000 times, liked by 637 accounts, and received 56 comments. While much of the likes and comments may be from bots, such high viewership of the reel itself is highly concerning. It suggests how rapidly a cybercriminals' adverts spread to potential victims- at over 16,000 views per day! 

Figure 2. Screenshot of scammers' Facebook account featuring "Dr Tim Noakes" erection pill adverts (2024).jpg
Figure 2. Screenshot of scammers' Facebook account featuring "Dr Tim Noakes" erection pill adverts (2024)
Figure 3. Scammer account location behind fake Facebook Dr Tim Noakes adverts (2024)  

Our initial Facebook advert lookup revealed that one page was running four adverts (Figure 2). This account ("Tristan") was managed from Nepal and India (Figure 3).

Figure 4. Screenshot of fake Tristan account header behind Dr Tim Noakes adverts on Facebook.jpg
Figure 4. Screenshot of fake Tristan account header behind Dr Tim Noakes adverts on Facebook (2024) 


This fake account page also leveraged fake interactions to suggest that it was liked, and followed (Figures 4 and 5).
Figure 5. Screenshot of fake Tristan account header behind Dr Tim Noakes adverts on Facebook
Figure 5. Screenshot of fake "Tristan" Facebook account details behind Dr Tim Noakes adverts (2024)

This account was reported to Facebook via a third-party. During this “warning period”, the account's owners launched four new "Dr Tim Noakes" campaigns. Each was documented and reported to Facebook. Interestingly, the links to the online store “sites” were dead ends. However, a 'Call Now' button could still support a call agent's phishing of victims financial details.

The absence of a link for data gathering suggested that this scam was primarily not for phishing such sensitive data, or selling fake products. Rather the advert's design seems geared for stealing advertising revenue via deepfake creation. The scammers hack into the "advertiser"'s Meta account to distribute fake adverts that run up tens-of-thousands of dollars in spend. In this case it was a government-based account from an unknown location. Such adverts may also carry malware, with users clicking on them being vulnerable to hacking. These paid ads also have the impact of pushing potential followers to the advertiser’s page. More followers results in more people seeing the content, and Meta indirectly benefiting from the cybercrime's increased visibility by achieving higher advertising rates.


Figure 6. Screenshot of scammers' "Hughles" Facebook account (2024).jpg
Figure 6. Screenshot of scammers' "Hughles" Facebook account (2024)


Figure 7. Screenshot of scammers' "Hughles" Facebook account's Dr Tim Noakes adverts (2024).jpg
Figure 7. Screenshot of scammers' "Hughles" Facebook account's Dr Tim Noakes adverts (2024)

The scammers flick-flacked between varied accounts in committing this cybercrime- they initially used "Hughles" (Figures 6 and 7), "Cameron Sullivan Setting", and "Murthyrius" in launching the same deepfake ads. By the 28th of July, 13 of these "adverts were taken down by Facebook, but the scammers shifted to new accounts, "Longjiaren.com" (Figure 8) and "Brentlinger" (renamed "Brentlingerkk" after we reported it). On the 29th of August, these accounts and their adverts were disabled by Facebook.

Screenshot of Longjiaren.com scammers Facebook account for fake adverts.jpeg
Figure 8. Screenshot of Longjiaren.com scammers Facebook account for fake adverts (2024)

Such adverts typically reach viewers outside The Noakes Foundation, Nutrition Network and Eat Better South Africa’s networks. Their audiences know Professor Noakes does not endorse miracle weight loss and other cures. To reach vulnerable publics, The Noakes Foundation has run Facebook alerts to warn about this latest cybercrime. Ironically, the most recent advert attempting to flag the "Dr Noakes" scam was blocked by Facebook advertising (Figure 9)!

Screenshot of Facebook rejecting anti scam ad from The Noakes Foundation.jpg
Figure 9. Facebook rejects anti scam ad from The Noakes Foundation (2024)

Actions for META to do better in fighting cybercrime on its platforms


As Anna Collard (KnowBe4) spotlights in her recent interview with eNews, social media platforms are a vital source for news in Africa. Consequently, these platforms must be held more accountable for any slow responses to synthetic- and deep-fakes. It is greatly concerning that META's Facebook platform is so rife with many serious crimes (ranging from sextortion and child-trafficking to drug pushing). 

META can be more pro-active in tackling such cybercrimes {plus less serious ones like fake celebrity endorsement}, by prioritising these seven steps below:

1) Actively communicate that all users' must have a 'zero trust' mindset;
2) Create a compliance team that is dedicated to thwarting cybercriminals' activities;
3) Offer at least one human contact on each META platform for serious reports of criminal misuse;
4) Promote frequent reporters of cybercrime by referring them to META's Trusted Partners or Business Partners for rapid aid;
5) Encourage external research on every platform regarding cybercriminals' activities (such initiatives could develop inexpensive tools. For example, for celebrities' reps to protect public figures from being deep faked in "adverts");
6) Provide more feedback on what was influential in reporting cybercrime for accounts and content to be removed. Without such feedback, fraud reporters may not be sure which reports are most effective;
7) Have a recommendation system in place for support networks that cybervictims can approach (such as referring South Africans to its national CyberSecurity hub).

In addition, META might consider these suggestions from The Noakes Foundation's Report Fake Endorsement initiative, to: (8) enhance deepfake detection technology, (9) apply stricter verification processes, (10) increase transparency and reporting tools, (11) support local educational initiatives, (12) promote collaborations with local cybercrime experts, (13) implement proactive monitoring systems to detect unusual patterns in ads, and (14) reinforced consequences for violations.

By sharing this "Dr Noakes" case study (and developing others), The Noakes Foundation hopes to raise awareness of the fake celebrity endorsement cybercrime, plus the importance of Big Tech guardians stepping up to fulfil their responsibilities. We are also liaising with sympathetic allies (KnowBe4® Africa Security AwarenessOrange Defence, Wolfpack Information Risk and others) to grow the networks necessary to better support cybercrime prevention in South Africa. 

Much can be done for targeted digital literacy education for vulnerable targets of cybercrime (such as #StopTheScam for silver surfers). We will also continue advocating that capable guardians (such as META, Twitter and TikTok) become more pro-active in protecting vulnerable publics on their platforms. Their gatekeeping role is vital, as the traditional bulwarks against crime (education, the police and the law) seem unable to catch-up with the "evolution"of global cybercrimes!

Total pageviews since 2008's launch =

+ TRANSLATE

> Translate posts into your preferred language

+ SEARCH

> Search travisnoakes.co.za

+ or search by labels (keywords)

research (56) education (43) design (22) nvivo (16) multimodal (9) visual culture (4)

+ or search blogposts by date

+ FOLLOW
+ RELATED ONLINE PRESENCES

> Tweets

> ORCID research profile

> Web of Science


> Social bookmarks + Edublogs listing
diigo education pioneer Find this blog in the education blogs directory

> Pinterest
> Create With Pinterest