{"id":201598,"date":"2026-04-02T11:16:00","date_gmt":"2026-04-02T15:16:00","guid":{"rendered":"https:\/\/testing.news-you-need.com\/index.php\/2026\/04\/02\/cybersecurity-pro-demonstrates-iad-importance-for-facial-recognition-at-rsac-2026\/"},"modified":"2026-04-02T11:30:43","modified_gmt":"2026-04-02T15:30:43","slug":"cybersecurity-pro-demonstrates-iad-importance-for-facial-recognition-at-rsac-2026","status":"publish","type":"post","link":"https:\/\/testing.news-you-need.com\/index.php\/2026\/04\/02\/cybersecurity-pro-demonstrates-iad-importance-for-facial-recognition-at-rsac-2026\/","title":{"rendered":"Cybersecurity pro demonstrates IAD importance for facial recognition at RSAC 2026"},"content":{"rendered":"

Cybersecurity pro demonstrates IAD importance for facial recognition at RSAC 2026<\/a><\/p>\n

https:\/\/www.biometricupdate.com\/202604\/cybersecurity-pro-demonstrates-iad-importance-for-facial-recognition-at-rsac-2026<\/a><\/p>\n

Publish Date: 2026-04-02 11:16:00<\/a><\/p>\n

Source Domain: www.biometricupdate.com<\/a><\/p>\n

Author: <\/a><\/p>\n

Using an unordered list, summarize the following article with between 4 and 8 key points. <\/p>\n

\t\t\t\tJake Moore believes the identity stack is broken. But instead of just willing his belief into reality, the global cybersecurity advisor for ESET demonstrated why his assertion has truth.
\nAt the RSAC 2026 Conference in San Francisco, Moore delivered an entertaining and enlightening session titled \u201cFacing Reality: Hacking Facial Recognition\u201d that illuminated how AI tools are affecting security. His demonstration clearly illustrated the importance of biometric Presentation Attack Detection (PAD) and Injection Attack Detection (IAD).<\/p>\n

He did this by conducting tests and experiments. Opening a bank account using an AI-enabled false identity, for example, or tricking a facial recognition system into believing that he is Tom Cruise. He conducted these tests \u2014 with the aid of a lawyer friend to avoid legal trouble \u2013 on institutions that the general public interacts with.
\nIn Moore\u2019s opinion, the market has adopted facial recognition technology \u201ca little bit too early.\u201d He wanted to make a point about how exposed people have become in an era of affordable facial recognition and off\u2011the\u2011shelf AI tools. Prior to ESET, Moore worked for 14 years in the UK police\u2019s Digital Forensics and Cyber Crime Unit.
\nExperimenting with bank accounts, live CCTV feeds, with Amy\u2019s legal help
\nSo, with the blessing of a lawyer friend named \u201cAmy,\u201d he ran a simple experiment. He uploaded Amy\u2019s face into PimEyes \u2014 a public facial\u2011search engine \u2014 to see where her image appeared online. The results, he told the audience, were a reminder of how easily a stranger could gather material for social engineering attacks without technical know-how.
\nFrom there, Moore escalated the demonstration. He bought a pair of Meta Ray\u2011Ban smart glasses, the kind with a built-in camera and real\u2011time information features. Then he paired them with a colleague running Corsight, a commercial facial recognition system.
\nAs he walked around his office, the colleague fed information back to him through the glasses visually and orally. Nothing he did required hacking. He relied on consumer hardware and enterprise software as they were designed.
\nMoore referenced Facewatch \u2014 another system used in retail environments \u2014 to indicate how widespread these tools have become. But can facial recognition be hacked? Moore talked about \u201cface fraud factories,\u201d which are identity manipulation services. Crucially, these aren\u2019t even always on the dark web but can be found on the open web.
\nTo illustrate the risk, he talked through an experiment in which he created a doctored ID using a commercially available image tool, then used an AI tool to inject a video to pass a biometric liveness check. Using the fabricated identity, he was able to open a bank account, which he immediately closed and disclosed to the institution.
\nMoore then explored the opposite scenario: what if someone wanted to add themselves to a watchlist? He visited Waterloo Station in London to speak with security staff about running a controlled test. Using Corsight, he asked whether they could identify him in real time as he walked through the station and alert guards. The idea was to show how easily surveillance systems could be manipulated \u2014 or overwhelmed.
\nIn the second stage of the demonstration, he used face\u2011swapping software to alter his appearance in a live feed. To human operators, the CCTV looked normal. But to the facial recognition system, he appeared as someone else entirely \u2014 in his example, as Tom Cruise. The system failed to recognize him as Jake Moore.
\nMoore showed the tools that enable identity manipulation, impersonation and evasion are accessible, inexpensive and increasingly sophisticated. The message was that organizations that rely on facial recognition or automated identity checks need to understand both the power and the fragility of the systems they deploy.
\nThe cybersecurity specialist revealed that new research he is in the process of conducting is on deepfake calls, with a preview that \u201cit can really fool people.\u201d
\nMoore\u2019s prediction and solutions in a rapidly evolving environment
\nMoore warned that current identity verification systems are not prepared for the threat.
\nMost systems still assume that a camera feed is real, even though deepfakes can now inject synthetic video into trusted channels. Basic active liveness challenges \u2014 blinking, head turns \u2014 no longer offer meaningful protection, and people continue to trust what they see on screen.
\nMoore noted that deepfakes still have weaknesses such as rapid movement, extreme lighting, side angles, audio drift and multi\u2011camera verification. Detection tools are improving, using AI to spot artefacts, compression issues and cloned\u2011voice patterns, but they remain imperfect and prone to false positives.
\nHe argued that organizations must move beyond visual checks and adopt multi\u2011signal identity verification, combining device trust, location, behavior and hardware\u2011backed credentials like passkeys. Challenge\u2011based verification can also strengthen resilience.
\nDeepfake tools are improving weekly, are cheap and widely available, and will scale identity attacks dramatically. Future wearables may include cameras, making continuous identity verification essential. Moore described the current identity stack as broken: faces and voices are easily spoofed because most systems rely on weak liveness checks, behaviour can be modelled, while device signals and cryptography remain the strongest anchors of trust.
\nHis guidance was to assume video identity can be manipulated. As oft-repeated in the biometrics community, do not rely on facial recognition alone. Use multiple signals, test systems against synthetic media and train staff to verify identity through independent channels.
\nHis prediction: seeing is no longer believing \u2014 and identity systems must evolve fast.<\/p>\n

\t\t\t\tArticle Topics
\n\t\t\t\tbiometric liveness detection \u00a0|\u00a0 biometrics \u00a0|\u00a0 cctv \u00a0|\u00a0 Corsight \u00a0|\u00a0 deepfake detection \u00a0|\u00a0 deepfakes \u00a0|\u00a0 ESET \u00a0|\u00a0 Facewatch \u00a0|\u00a0 facial recognition \u00a0|\u00a0 injection attacks \u00a0|\u00a0 PimEyes \u00a0|\u00a0 presentation attack detection \u00a0|\u00a0 RSAC 2026<\/p>\n

\t\t\t\t\tLatest Biometrics News<\/p>\n

\t\t\t\t\t\u00a0\t\t\t\t\t\t\t\t<\/p>\n

\t\t\t\t\t\t\t\tApr 2, 2026, 6:00 am EDT
\n\t\t\t\t\t\t\t\t\t\t\tNuggets is in the business of a universal trust layer, which adds \u201ccryptographic trust where identity stops\u201d with the company\u2026<\/p>\n

\t\t\t\t\t\u00a0\t\t\t\t\t\t\t\t<\/p>\n

\t\t\t\t\t\t\t\tApr 2, 2026, 5:00 am EDT
\n\t\t\t\t\t\t\t\t\t\t\tAround a third of organizations (35 percent) rank AI agent certificates among the top three emerging trends in Public Key\u2026<\/p>\n

\t\t\t\t\t\u00a0\t\t\t\t\t\t\t\t<\/p>\n

\t\t\t\t\t\t\t\tApr 2, 2026, 4:00 am EDT
\n\t\t\t\t\t\t\t\t\t\t\tThe Canadian province of Alberta is targeting deepfakes and misinformation with a new bill proposing amendments to four existing pieces\u2026<\/p>\n

\t\t\t\t\t\u00a0\t\t\t\t\t\t\t\t<\/p>\n

\t\t\t\t\t\t\t\tApr 1, 2026, 4:32 pm EDT
\n\t\t\t\t\t\t\t\t\t\t\tThe Office of the Australian Information Commissioner (OAIC) is seeking feedback on its draft Children\u2019s Online Privacy Code, calling for\u2026<\/p>\n

\t\t\t\t\t\u00a0\t\t\t\t\t\t\t\t<\/p>\n

\t\t\t\t\t\t\t\tApr 1, 2026, 4:19 pm EDT
\n\t\t\t\t\t\t\t\t\t\t\tMore than 60 civil society groups, led by the Consumer Federation of America and UltraViolet Action, have written to the\u2026<\/p>\n

\t\t\t\t\t\u00a0\t\t\t\t\t\t\t\t<\/p>\n

\t\t\t\t\t\t\t\tApr 1, 2026, 4:10 pm EDT
\n\t\t\t\t\t\t\t\t\t\t\tUnico has opened a new global headquarters in Silicon Valley as it takes a leap into the U.S. and other\u2026<\/p>\n

<\/p>\n","protected":false},"excerpt":{"rendered":"

Cybersecurity pro demonstrates IAD importance for facial recognition at RSAC 2026 https:\/\/www.biometricupdate.com\/202604\/cybersecurity-pro-demonstrates-iad-importance-for-facial-recognition-at-rsac-2026 Publish Date: 2026-04-02…<\/p>\n","protected":false},"author":1,"featured_media":201599,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/d1sr9z1pdl3mb7.cloudfront.net\/wp-content\/uploads\/2025\/11\/04130837\/surveillance-deepfake-injection-attack-scaled.jpg","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[26,24],"class_list":["post-201598","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-ai","tag-cybersecurity"],"_links":{"self":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/201598"}],"collection":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=201598"}],"version-history":[{"count":1,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/201598\/revisions"}],"predecessor-version":[{"id":201600,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/201598\/revisions\/201600"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/201599"}],"wp:attachment":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=201598"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=201598"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=201598"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}