A Singaporean businessman just watched Prime Minister Lawrence Wong look him in the eye during a live Zoom meeting and thank him for his patriotism. The video looked real. The voice matched perfectly. Alongside PM Wong on the screen sat President Tharman Shanmugaratnam, Minister Indranee Rajah, representatives from the Monetary Authority of Singapore, and even the Foreign Minister of Canada.
It was an elite, high-level diplomatic briefing regarding an urgent national security crisis in the Strait of Hormuz.
Except every single person on that call was a synthetic puppet controlled by AI. By the time the victim realized he was staring at a digital wall of ghosts, S$4.9 million (US$3.8 million) was gone, scattering into unrecoverable corporate accounts across the globe.
Stop thinking this is just another story about a gullible person clicking a bad link. This case, detailed by the Singapore Police Force, marks a terrifying leap in corporate social engineering. If you think you're too smart to get fooled, you don't understand how deepfake technology actually hits a target.
The Perfect Psychological Setup
Scammers don't start with the deepfake. They build a runway of legitimacy so long and flawless that by the time you join the video call, your critical thinking is completely turned off.
The attackers specifically targeted business professionals who have legitimate, prior interactions with government agencies. They knew who they were hunting.
The trap opened with a WhatsApp message from a profile bearing the face and name of Wong Hong Kuan, the actual Secretary to the Cabinet. The message was formal, urgent, and highly confidential. It instructed the victim to prepare for an emergency briefing with the Prime Minister.
Then came the paperwork. An email arrived from an address designed to look official: WongHongKuan.secretarycabinet@proton.me. To access the meeting, the victim had to do two things:
- Sign a legally binding Non-Disclosure Agreement (NDA).
- Provide a scanned copy of his official identification card.
The email also attached a beautifully forged government-issued Letter of Guarantee. It bore Prime Minister Lawrence Wong's signature and explicitly stated that any emergency funds advanced by the businessman would be fully reimbursed by the Singapore government within 15 business days.
Think about the psychological framing here. You're a high-net-worth individual. You've done work with the state before. You receive a secret briefing request, sign an NDA to protect state secrets, and hold a signed guarantee from the Prime Minister. Your brain registers this as an exclusive, high-level civic duty.
Inside the Phantom Boardroom
When the victim clicked the Zoom link, he wasn't looking at a grainy, glitching video. He entered a highly coordinated virtual environment.
The scammers introduced the businessman as an esteemed private-sector participant. The meeting proceeded with various simulated officials giving a structured brief on how the geopolitics of the Strait of Hormuz were threatening trade and required immediate, temporary private-sector liquidity.
The climax of the call was a deepfake video of PM Wong delivering closing remarks. The AI clone turned toward the camera and explicitly acknowledged the victim's presence and willingness to step up for the country.
Once the call ended, a scammer masquerading as a high-profile lawyer followed up immediately via WhatsApp to execute the operational details. Under the spell of what he had just witnessed, the victim initiated a series of massive wire transfers to a specified corporate account.
He didn't realize anything was wrong until days later when he bypassed the middleman and reached out directly to the real Secretary to the Cabinet. By then, the trap had snapped shut.
The Technical Flaws That Exposed the Illusion
The Singapore Police Force managed to obtain the actual footage used in this operation. While the psychological manipulation was flawless, the AI execution left behind a few subtle forensic fingerprints. If you know what to look for, these three technical anomalies reveal a synthetic video hack:
1. The Monolithic Audio Stream
In a real Zoom meeting, each participant's audio feeds through their individual connection. If the President speaks, his box lights up and his audio channel activates. In this scam, the police noticed that the entire meeting's dialogue—regardless of who was speaking—was broadcast through one single main account. The scammers were essentially playing a pre-recorded video track with a layered, master audio file over the stream.
2. Lip-Sync Latency
While the visual rendering of the faces was highly realistic, the synthetic audio wasn't perfectly synchronized with the micro-movements of the speakers' lips. The audio was layered on top of pre-recorded footage of the ministers, creating a tiny, unnatural delay that screams AI manipulation.
3. Background Distortion and Alignment Artifacts
AI deepfakes struggle with edge detection, especially when a digital background is applied. Investigators found a distorted background where the edges of the figures blurred unnaturally, alongside a partially obscured Zoom logo that failed to align correctly with the foreground layer.
Why Traditional Identity Verification is Dead
The implications of this heist are brutal. We've spent a decade training employees and executives to look for phishing emails, verify SSL certificates, and check domain names. This case proves that your eyes and ears can no longer be trusted to verify identity.
If a criminal can summon the Prime Minister, the President, and a foreign diplomat into a live digital room to talk to you, the old playbook is useless.
The Singapore government has made its stance clear: state officials will never use WhatsApp or personal encrypted email services like ProtonMail to broker official state funding. They won't ask you to transfer money during a video call, they won't demand immediate banking login details, and they won't pass you around to "police officers" over a digital line.
How to Protect Your Organization Today
If you run a business or handle significant corporate funds, you need to rewrite your security protocols immediately to survive the deepfake era.
- Establish Out-of-Band Verification: Never use the contact information provided in an unverified email or message. If the Cabinet Secretary messages you, look up the official ministry directory, call the main switchboard, and verify the request through a completely separate infrastructure.
- Create Shared Secrets: For high-value corporate actions, rely on pre-arranged, offline cryptographic keys or verbal safe-words established face-to-face. If the person on the screen cannot provide the secondary offline token, treat the call as hostile.
- Audit Visual Artifacts: Force unexpected interactions during suspicious high-stakes video calls. Ask the participant to turn their head fully to the side or wave their hand directly in front of their face. Deepfake algorithms frequently break down, distort, or glitch when forced to calculate extreme lateral profiles or sudden foreground interruptions.
- Report through Official Channels: In Singapore, immediately leverage the ScamShield helpline (1799) or portal to report suspicious solicitations before moving a single dollar.
