LEGALAUDIT

Scam Radar

How can you recognize Deepfake CEO/CFO video call fraud: real time face & voice swap on Teams/Zoom authorising urgent wires?

TLDR

Following the Arup HK$200M (~USD 25.6M) case, real time deepfake video call fraud has spread: finance staff are invited to a Teams/Zoom call where the 'CFO' and 'colleagues' are AI generated, instructing urgent, confidential wire transfers...

How it works

Following the Arup HK$200M (~USD 25.6M) case, real time deepfake video call fraud has spread: finance staff are invited to a Teams/Zoom call where the 'CFO' and 'colleagues' are AI generated, instructing urgent, confidential wire transfers...

Red flags

  • Urgent pressure to click, pay, or share codes immediately.
  • A link or sender that does not match the official organization.
  • Requests for card data, passwords, OTPs, wallet signatures, or bank transfers.

What to do

  1. 1Tells: every 'executive' responds but never references shared private context; lip sync drifts on long sentences; unnatural fixed gaze; participants never naturally interrupt or talk over each other; pressure for secrecy and speed.
  2. 2Defence: enforce a callback/dual authorisation policy for any payment or banking detail change, independent of the meeting; verify via a separately known channel; treat any 'urgent + secret + new account' request as fraud until verified.

Source

Hong-Kong-Police-Force

Source reviewed by Mythos Forensic Team

https://www.fbi.gov/contact-us/field-offices

FAQ

Is Deepfake CEO/CFO video call fraud: real time face & voice swap on Teams/Zoom authorising urgent wires a real scam pattern?

Yes. Treat the message, call, or payment request as suspicious until you verify it through an official channel.

What are the first warning signs?

Urgent pressure to click, pay, or share codes immediately.; A link or sender that does not match the official organization.; Requests for card data, passwords, OTPs, wallet signatures, or bank transfers.

What should I do first?

Tells: every 'executive' responds but never references shared private context; lip sync drifts on long sentences; unnatural fixed gaze; participants never naturally interrupt or talk over each other; pressure for secrecy and speed.; Defence: enforce a callback/dual authorisation policy for any payment or banking detail change, independent of the meeting; verify via a separately known channel; treat any 'urgent + secret + new account' request as fraud until verified.

Can LegalAudit check my case?

Yes. Start a free chat and paste the message, link, sender, or payment details for triage.