ycliper

Популярное

Музыка Кино и Анимация Автомобили Животные Спорт Путешествия Игры Юмор

Интересные видео

2025 Сериалы Трейлеры Новости Как сделать Видеоуроки Diy своими руками

Топ запросов

смотреть а4 schoolboy runaway турецкий сериал смотреть мультфильмы эдисон
Скачать

Stopping Deepfake Fraud: Identity at the Exact Moment Money Moves | How Payments Fight Back | PEP088

deepfake fraud

social engineering

identity verification

payments security

wire fraud

help desk security

2FA

step-up auth

vendor bank changes

post-payment risk

Traceless

Peter Segerstrom

payments operations

PayFac

ISO

acquirer risk

dispute evidence

TC40 RDR

treasury controls

POS IoT segmentation

risk playbook

Global Legal Law Firm

Payments Experts Podcast

Stopping Deepfake Fraud: Identity at the Exact Moment Money Moves | How Payments Fight Back | PEP088

Автор: Global Legal Law Firm

Загружено: 2025-12-10

Просмотров: 184373

Описание: Stopping Deepfake Fraud: Identity at the Exact Moment Money Moves

A familiar voice on Zoom. A “known” face on video. A routine request that moves millions. Today’s most dangerous attacks look like business as usual—until the funds are gone. With guest Peter Segerstrom (Traceless) and host Christopher Dryden, Esq., The Payments Experts Podcast tears into how AI has supercharged social engineering—and what payments teams can do about it right now.

Why this matters to payments & fintech

Fraud has shifted from stealing numbers to stealing people—their voice, face, and work patterns. Help desks, payment ops, treasury approvals, and VIP inboxes are the new perimeter. If you move money, change bank details, or provision access, your identity workflow is your risk model.

What we cover (built for operators)
• AI-enabled impersonation: Voice/video spoofs that pass a quick “does it sound like them?” test—and how to break the illusion in seconds
• The help desk as your identity perimeter: Password resets, SSO unlocks, and privileged access handoffs that attackers abuse first
• Ephemeral data, not permanent secrets: Why short-lived artifacts and least-retained data shrink both breach blast radius and audit pain
• Payments risk beyond PCI: Real controls where losses happen—supplier changes, wire approvals, card-on-file changes, and refund pivots
• POS/IoT exposure: The quiet attack surface growing with each new device and integration
• Wire-fraud playbooks: Out-of-band verification that actually works when time is tight
• Audit, insurance, and exit readiness: Controls that lower loss and premiums, and survive technical diligence

Field patterns you’ll recognize
• Friday-afternoon wires after weeks of mailbox surveillance
• “Urgent” VIP resets that turn into lateral movement and payout edits
• Deepfake calls that pressure teams to skip second-factor checks
• Vendor banking changes greenlit on trust instead of verification

The 12-control checklist (deploy this quarter)

1. Two-channel verification on money moves: Approver must touch a second, pre-registered channel before any bank-detail change or high-value transfer
2. Reset hardening at the help desk: No single-factor resets; require device signals + OTP + recent-activity challenge
3. Short-lived secrets: Replace static screenshots and passwords-in-tickets with ephemeral artifacts that expire after use
4. Privileged session guardrails: Time-boxed elevation and approvals logged to an immutable trail
5. Vendor change surgeries: Treat IBAN/routing edits like production releases (staging → review → two-person control → deploy)
6. Location/device reputation checks: Deny or step-up when posture is off (new device, TOR/VPN, geo anomalies)
7. Tiered approvals by risk: Amount, corridor, and beneficiary novelty drive extra checks automatically
8. POS/IoT segmentation: No flat networks; isolate devices, push updates, and monitor laterals
9. CRM/ticketing hooks: Embed identity challenges directly in the tools teams already use (no swivel-chairing)
10. Automated 2FA for call centers: IVR + OTP + account-specific knowledge before any sensitive action
11. Evidence kits for disputes/insurance: Bank-change logs, step-up auth events, device IDs, call recordings, and approval artifacts
12. Tabletop monthly: Rehearse the top two fraud scenarios with legal, ops, and finance; patch the slow steps immediately

Who should watch/listen

Acquirers, PayFacs, ISOs, PSPs, marketplaces, vertical SaaS, treasury, payment ops, and support leaders who own identity, wires, bank edits, refunds, and card-on-file changes.
Bottom line

Even as AI raises the ceiling for scammers, disciplined identity at the moment of action makes them fail when it counts. Treat bank-detail changes and high-value approvals like surgery. Keep secrets short-lived. Put layered verification where your teams already work. Then sleep better.
If this sparks an idea, share it with the colleague who handles wires or help-desk resets—and tell us which control you’re implementing first.

*Matters discussed are all opinions and do not constitute legal advice. All events or likeness to real people and events is a coincidence.*

If you're playing to win, you hire Global.

We track markets, influence outcomes, and put the best people in the room.
We know the players. We know the playbook. We execute.
We don’t make noise. We move the needle.

Clients don’t come to us for effort. They come for outcomes.
For leverage, access, intelligence, and clarity when everything’s on the line.

Global isn’t the alternative. It’s the advantage.

Visit Global Legal Law Firm today: https://www.globallegallawfirm.com/

Не удается загрузить Youtube-плеер. Проверьте блокировку Youtube в вашей сети.
Повторяем попытку...
Stopping Deepfake Fraud: Identity at the Exact Moment Money Moves | How Payments Fight Back | PEP088

Поделиться в:

Доступные форматы для скачивания:

Скачать видео

  • Информация по загрузке:

Скачать аудио

Похожие видео

© 2025 ycliper. Все права защищены.



  • Контакты
  • О нас
  • Политика конфиденциальности



Контакты для правообладателей: [email protected]