Scroll to top
New Report Factor Security releases its Q1 2025 Cyber Threat Intelligence Report — download now and stay ahead of emerging threats. Read More →
Get Demo

AI Vishing Attack — CFO Receives Fake Call From Trusted Accounting Firm

  • Home
  • Use Cases
  • AI Vishing
AI Vishing Attack
Voice Clone Detection

Case Overview

The CFO of a manufacturing company received a call on his mobile phone from a number he recognized: the managing partner at their external accounting firm. The voice matched exactly. The caller referenced real ongoing projects, used internal terminology, and requested an urgent wire transfer to cover a supplier payment gap. The CFO authorized the transfer. The caller was an AI-generated voice clone. The accounting firm had no knowledge of the call.

Factor Security's MTAD was active on the CFO's device. The anti-vishing engine detected the synthetic voice within seconds and issued an in-call warning before any action was taken.

The Attack

  1. The attacker used public recordings — earnings calls, conference presentations, LinkedIn videos — to train an AI voice clone of the accounting firm's managing partner.
  2. The call was placed to the CFO's mobile number, not a corporate line, where enterprise call screening does not apply.
  3. The cloned voice referenced real deal names, correct invoice ranges, and a plausible short-term payment request within normal authorization limits.
  4. The CFO transferred funds to a fraudulent account. The call lasted under 4 minutes.
  5. In the unprotected scenario, discovery came when the real accounting firm followed up about the overdue payment three days later.

How Factor Protected

  1. Factor's anti-vishing engine analyzed the call's audio in real time — detecting prosodic anomalies, unnatural micropausing, and acoustic signatures consistent with AI voice synthesis.
  2. Within seconds of the call beginning, Factor flagged a high-confidence synthetic voice alert directly on the CFO's device.
  3. The CFO received an in-call warning: "Potential AI-generated voice detected. Do not share financial details or approve transactions."
  4. The CFO terminated the call and verified directly with the accounting firm through a known contact — confirming the call was fraudulent.
  5. No funds transferred. The incident was logged and reported to the security team automatically.

Factor's Impact

Voice cloning has eliminated the assumption that a familiar voice means a trusted caller. Enterprise call security covers corporate lines — not the personal mobile every executive carries. Factor defends the person, in real time, on the device where the attack lands.

The CFO's instinct was to trust the voice. Factor gave him a reason not to.

See How Factor Protects Your Executives