AI Security Certificates
A Singapore finance director authorized a US$499,000 transfer after attending a fraudulent Zoom call featuring synthetic colleagues
- Incident date
- Mar 2025
- Target
- unnamed Finance director
On March 12, 2025, a finance director in Singapore was targeted in a sophisticated deepfake operation that resulted in the unauthorized transfer of US$499,000. The incident prompted an immediate joint advisory from the Monetary Authority of Singapore (MAS), the Cyber Security Agency (CSA), and the Police, highlighting the escalating risk synthetic media poses to financial institutions.
What happened
The attack unfolded when a finance director joined a Zoom call with individuals they believed to be their colleagues. During this interaction, the perpetrators utilized synthetic audio and video to impersonate the director's coworkers, successfully deceiving the target into authorizing a transaction of US$499,000. The deception was effective enough to bypass initial human intuition and standard call-back verification procedures. Following the authorization, the funds were only secured after the Anti-Scam Centre initiated swift cross-bank coordination to freeze the assets. In response to this and other emerging threats, MAS issued guidance (TCRS/2025/06) urging financial institutions to move beyond traditional security models. Authorities now emphasize that deepfake technology can circumvent standard verification, necessitating the adoption of multi-factor authentication, liveness checks, and the requirement for independent verification channels for all high-pressure financial transactions.