About this program
CEO / CFO LinkedIn clones, executive deepfakes and impersonation accounts targeting your customers and staff. Detect and respond.
Risks addressed
- Critical Clone CEO LinkedIn used in CEO-fraud phishing
- Critical Deepfake voice / video used in wire-transfer scam
- High Customer-facing scam runs on a lookalike support handle
Controls (6)
-
Monitor for impersonation accounts on top platforms
HighMonitor for impersonation accounts on top platforms
How to test + evidence
Testing procedure: Brand-protection tool (or manual sweep) flags clones of named executives + corporate handles.
Evidence to collect: Monitoring tool config / weekly report.
-
Reporting workflow with each platform
HighReporting workflow with each platform
How to test + evidence
Testing procedure: Documented contacts + workflow at LinkedIn / Meta / X / TikTok for impersonation takedowns.
Evidence to collect: Takedown contacts + last 5 cases.
-
Executive accounts verified (blue badge / equivalent)
MediumExecutive accounts verified (blue badge / equivalent)
How to test + evidence
Testing procedure: Where available, verification reduces clone effectiveness.
Evidence to collect: Verification screenshots.
-
Out-of-band verification for finance requests
CriticalOut-of-band verification for finance requests
How to test + evidence
Testing procedure: Wire-transfer / payment changes require call-back on a known number, not from new requester.
Evidence to collect: Finance policy + call-back log.
-
Awareness training covers deepfake + CEO-fraud
HighAwareness training covers deepfake + CEO-fraud
How to test + evidence
Testing procedure: Annual training + simulated CEO-fraud phishing test.
Evidence to collect: Training content + simulation results.
-
Public PR / comms response plan for executive scam
MediumPublic PR / comms response plan for executive scam
How to test + evidence
Testing procedure: Pre-drafted public response if an impersonation campaign scales.
Evidence to collect: Comms template library.