Practical guides to protect yourself, your family, and your business from AI-driven scams, deepfakes, and emerging cyber threats.
In early 2024, a finance employee at engineering firm Arup transferred roughly $25 million USD across fifteen separate wires. The order came from his CFO during a routine video call with several colleagues. He had hesitated at first — the initial email request had felt off — but the live call put him at ease. He recognized the faces. He recognized the voices.
Every single person on that call, except him, was a deepfake.
The Arup case is now the textbook example of multi-party deepfake fraud, and it broke a piece of received wisdom that companies had relied on for years: asking for a video call to confirm an unusual request is no longer a safety check. The video call itself has become an attack surface.
Three factors made this possible at scale in 2024 and have only intensified since:
The defenses are procedural more than technical. Three to prioritize:
Deepfake fraud has moved from possibility to playbook. The companies that adjust process — not the ones that buy detection tools — will be the ones still standing.


