In Thailand and Vietnam, cybercriminals exploit biometric authentication by creating fraudulent apps like GoldPickaxe.iOS, which deceive users by posing as legitimate services, such as digital pension access. These apps prompt victims to provide facial data, under the guise of authentication, including instructions for various facial expressions, enabling the creation of deepfake videos. Once in possession of these videos, hackers can infiltrate victims' banking applications, perpetrating financial fraud with ease. Group-IB advises caution, recommending users to avoid clicking on suspicious links, downloading apps only from official platforms like Google Play Store or Apple App Store, and scrutinizing app permissions diligently. Signs of malware infection include unusual battery drain, unfamiliar apps, and erratic behavior such as unauthorized calls or messages.