Practical guides to protect yourself, your family, and your business from AI-driven scams, deepfakes, and emerging cyber threats.
A Singapore businessman was told he had been invited to a confidential meeting with Prime Minister Lawrence Wong. He joined the Zoom call and saw the people he expected: the prime minister, President Tharman Shanmugaratnam, a cabinet minister, officials from the central bank, even representatives from BlackRock. Over the following days he transferred at least 4.9 million Singapore dollars, around 3.8 million US dollars, to a bank account the meeting had given him. Every government official on that call was a fabrication.
The Singapore Police Force took the unusual step of releasing the actual deepfake footage on May 16, 2026, so the public could see what a convincing fake now looks like. The figure is alarming, but the method is the part worth studying, because it is the same method now draining money from companies and individuals across the region.
The approach began not with the video call but with a message. The victim received a WhatsApp message from someone posing as the Secretary to the Cabinet, a real senior post, telling him to attend a meeting with the prime minister. Attached was an official-looking government letter of guarantee, complete with PM Wong's signature, promising that his funds would be returned by the Singapore government within 15 business days. Only after that groundwork was laid did the Zoom invitation arrive.
The call itself was a deepfake (synthetic video and audio generated by AI to impersonate a real person). According to the police, the scammers took pre-recorded video of the real officials and layered fabricated audio over the top, which is why the speech did not match the speakers' lip movements. The cast was built to overwhelm doubt. Alongside Wong and Tharman sat Minister Indranee Rajah, staff from the Monetary Authority of Singapore (MAS, the country's central bank and financial regulator), the foreign minister of Canada, an adviser to the UAE president, and private-sector names such as BlackRock and the Dubai International Financial Centre. Faced with that room, the victim followed instructions and wired the money in stages to a corporate account.
The direct cost here is one wire transfer and one ruined balance sheet, but the reason this case is being studied in boardrooms is the playbook it confirms. Two years ago, a finance employee at the engineering firm Arup paid out roughly 25 million US dollars after a video call in which every colleague, including the chief financial officer, was a deepfake. Singapore's case shows the same technique aimed higher, dressed in government authority instead of corporate hierarchy. If someone on your finance team joins a video call tomorrow and sees an executive they recognise asking for an urgent transfer, the old proof, I saw their face and heard their voice, now certifies nothing. The shift underneath is that synthetic audio has crossed the point where people can reliably tell it from the real thing, and attackers have learned to pair it with the oldest lever in fraud: a trusted authority applying time pressure. Governments, regulators, and banks are the institutions whose names still command instant compliance, which is exactly why they are being cloned.
The Singapore police published the footage for a reason. They wanted people to see that a deepfake good enough to cost one man S$4.9 million is no longer a rare, high-end production. It is a repeatable service, and the next version will fix the lip-sync. The defence cannot be trust what you see on the call, because that is the exact instinct the attack is built to exploit. Bring one question to your next finance or security review: if an instruction to move money arrived tomorrow from a video call full of faces your team recognised, what step in your process would stop the wire before it left?


