Get the latest market trends in your inbox

Stay on top of the latest market trends and economic insights with the Axios Markets newsletter. Sign up for free.

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Catch up on coronavirus stories and special reports, curated by Mike Allen everyday

Catch up on coronavirus stories and special reports, curated by Mike Allen everyday

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Denver news in your inbox

Catch up on the most important stories affecting your hometown with Axios Denver

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Des Moines news in your inbox

Catch up on the most important stories affecting your hometown with Axios Des Moines

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Minneapolis-St. Paul news in your inbox

Catch up on the most important stories affecting your hometown with Axios Minneapolis-St. Paul

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Tampa-St. Petersburg news in your inbox

Catch up on the most important stories affecting your hometown with Axios Tampa-St. Petersburg

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Illustration: Rebecca Zisser/Axios

In the first signs of a mounting threat, criminals are starting to use deepfakes — starting with AI-generated audio — to impersonate CEOs and steal millions from companies, which are largely unprepared to combat them.

Why it matters: Nightmare scenarios abound. As deepfakes grow more sophisticated, a convincing forgery could send a company's stock plummeting (or soaring), to extract money or to ruin its reputation in a viral instant.

  • Imagine a convincing fake video or audio clip of Elon Musk, say, disclosing a massive defect the day before a big Tesla launch — the company's share price would crumple.

What's happening: For all the talk about fake videos, it's deepfake audio that has emerged as the first real threat to the private sector.

  • Symantec, a major cybersecurity company, says it has seen three successful audio attacks on private companies. In each, a company's "CEO" called a senior financial officer to request an urgent money transfer.
  • Scammers were mimicking the CEOs' voices with an AI program that had been trained on hours of their speech — culled from earnings calls, YouTube videos, TED talks and the like.
  • Millions of dollars were stolen from each company, whose names were not revealed. The attacks were first reported in the BBC.

And in March, a Twitter account falsely claiming to belong to a Bloomberg journalist reportedly tried to coax personal information from Tesla short-sellers. Amateur sleuths said the account's profile photo had the hallmarks of an AI-generated image.

Big picture: This threat is just beginning to emerge. Video and audio deepfakes are improving at a frightening pace and are increasingly easy to make.

  • There's been an uptick in sophisticated audio attacks over the past year, says Vijay Balasubramaniyan, CEO of Pindrop, a company that protects call centers from scammers.
  • But businesses aren't ready, experts tell Axios. "I don’t think corporate infrastructure is prepared for a world where you can’t trust the voice or video of your colleague anymore," says Henry Ajder of Deeptrace, a deepfakes-detection startup.

Even if companies were clamoring for defenses, few tools exist to keep harmful deepfakes at bay, says Symantec's Saurabh Shintre. The challenge of automatically spotting a deepfake is almost insurmountable, and there are hurdles still ahead for a promising alternative: creating a digital breadcrumb trail for unaltered media.

  • Pindrop monitors for audio attacks like altered voices on customer service lines.
  • Symantec and ZeroFOX, another cybersecurity company, say they are developing technology to detect audio fakes.

What's out there already isn't cheap.

  • New Knowledge, a firm that defends companies from disinformation, says its services can run from $50,000 to "a couple million" a year.
  • Just monitoring the internet for potential fakes comes at "a substantial cost," says Matt Price of ZeroFOX. "And that's not even talking about the detection piece, which will probably be fairly expensive."

As a result, businesses are largely defenseless for now, leaving an opening for a well-timed deepfake to drop like a bomb.

  • "If you're waiting for it to happen, you're already too late," New Knowledge COO Ryan Fox tells Axios.

Go deeper: Companies take the battle to online mobs

Go deeper

7 hours ago - World

Maximum pressure campaign escalates with Fakhrizadeh killing

Photo: Fars News Agency via AP

The assassination of Mohsen Fakhrizadeh, the architect of Iran’s military nuclear program, is a new height in the maximum pressure campaign led by the Trump administration and the Netanyahu government against Iran.

Why it matters: It exceeds the capture of the Iranian nuclear archives by the Mossad, and the sabotage in the advanced centrifuge facility in Natanz.

Scoop: Biden weighs retired General Lloyd Austin for Pentagon chief

Lloyd Austin testifying before Congress in 2015. Photo: Chip Somodevilla/Getty Images

Joe Biden is considering retired four-star General Lloyd Austin as his nominee for defense secretary, adding him to a shortlist that includes Jeh Johnson, Tammy Duckworth and Michele Flournoy, two sources with direct knowledge of the decision-making tell Axios.

Why it matters: A nominee for Pentagon chief was noticeably absent when the president-elect rolled out his national security team Tuesday. Flournoy had been widely seen as the likely pick, but Axios is told other factors — race, experience, Biden's comfort level — have come into play.

Updated 9 hours ago - Politics & Policy

Coronavirus dashboard

Illustration: Sarah Grillo/Axios

  1. Health: WHO: AstraZeneca vaccine must be evaluated on "more than a press release."
  2. Politics: Supreme Court backs religious groups on New York COVID restrictions.
  3. World: Thailand, Philippines sign deal with AstraZeneca for vaccine.
  4. Economy: Safety nets to disappear in December Black Friday shopping across the U.S., in photosAmazon hires 1,400 workers a day throughout pandemic.
  5. Education: National standardized tests delayed until 2022.