Deepfakes are killing biometric trust - TechTarget
A 2024 deepfake incident in Hong Kong saw a finance employee transfer $25 million after being deceived by AI-generated video and audio of senior executives
- Incident date
- Jan 2024
- Target
- an unnamed multinational company finance employee
In early 2024, a finance employee at a multinational company in Hong Kong was tricked into transferring approximately $25 million after participating in a video call where they believed they were speaking with senior executives, including the company's CFO. The incident highlights the growing threat of AI-driven impersonation in corporate environments.
What happened
The attackers utilized sophisticated AI-generated audio and video to convincingly impersonate trusted colleagues. By creating a high-pressure business context, the fraudsters successfully manipulated the employee into authorizing the large financial transfer. This case demonstrates that the primary risk often lies not in bypassing the biometric technology itself, but in the ability of AI to manufacture enough trust to defeat established business processes. Experts note that because individuals frequently expose their faces and voices in public settings—such as recorded earnings calls, podcasts, or public videos—attackers have easy access to the training data required to build highly accurate synthetic models. This incident serves as a stark reminder that biometric signals are no longer sufficient as standalone proof of identity and that organizations must move toward layered security models that incorporate device trust, behavioral signals, and contextual risk scoring to verify identity.