The $25 Million Arup Deepfake: AI's Most Convincing Con

In a world where AI can mimic voices and faces perfectly, even the most secure companies can fall victim. The Arup Deepfake Hack shocked the corporate world when attackers used AI-generated video of the company’s CFO to trick an employee into wiring $25 million to a fraudulent account.

This was not just another phishing attempt, it was a sophisticated manipulation that blurred the line between reality and digital deception. The incident highlights how AI-driven attacks are evolving and why every cybersecurity leader must rethink traditional defense strategies.

In this episode of The CISO Signal: True Cybercrime Podcast, host Jeremy Ladner is joined by Mark Dorsi, CISO at Netlify, to break down one of the most alarming corporate scams of our time. Mark brings decades of experience building security programs for high-growth technology organizations, including HelloSign, Cloud Lending Solutions, and Qualys, and now leads security at Netlify. Together, they unpack how the deepfake attack happened, why traditional security controls failed, and what actionable steps leaders can take to protect their organizations from AI-powered social engineering.

💡 In this episode, we discuss:
🔹 How attackers used AI and a video conference to impersonate the CFO
🔹 The psychological tactics behind the $25 million wire transfer
🔹 Why traditional security measures were not enough to prevent the attack
🔹 Emerging strategies to defend against deepfake and AI-driven threats
🔹 Key lessons every CISO can use to strengthen their security posture

Follow The CISO Signal:
🌐 Website: www.thecisosignal.transistor.fm

🔗 LinkedIn: www.linkedin.com/company/the-ciso-signal

Don’t forget to like, subscribe, and share to stay ahead of the world’s most sophisticated cyberattacks.

#Cybersecurity #DeepfakeHack #ArupHack #CISO #TheCisoSignal #AIThreats #CyberCrime

THE SONY HACK: HOLLYWOOD, NORTH KOREA & THE CYBER WAR THAT CHANGED EVERYTHING
In 2014, Sony Pictures became ground zero for the first major nation-state cyberattack on a global corporation. The “Guardians of Peace,” linked to North Korea, crippled Sony’s networks, leaked unreleased films, and exposed troves of executive emails that forced high-level resignations. At the center of it all: The Interview, a comedy starring Seth Rogen and James Franco about a CIA plot to kill Kim Jong-un.

What started as a movie scandal quickly escalated into an international incident and a turning point for every CISO and cybersecurity leader. The Sony Hack showed the world how geopolitics, culture, and cyber warfare could collide in ways that devastate private companies.

In this episode of THE CISO SIGNAL: TRUE CYBERCRIME PODCAST, host Jeremy Ladner takes you inside the breach that changed corporate security forever. We unpack how Sony responded under pressure, why their crisis management is still debated a decade later, and what today’s security leaders must learn to defend against state-sponsored threats.

💡 IN THIS EPISODE, WE DISCUSS:
👉 How The Interview triggered a nation-state cyberattack
🔹 The impact of leaked emails and unreleased Sony films
⚠️ Why Sony’s response became a leadership case study
🛡️ How the Sony Hack reshaped global cybersecurity strategy
📈 Actionable CISO lessons for preparing against nation-state adversaries

🎙️ ABOUT OUR GUEST:
Dror Hevlin — VP Security & CISO at Cynomi. With 20+ years in defense, critical infrastructure, and enterprise security, Dror brings unique insight into nation-state threats. Learn more 👉 https://www.cynomi.com

FOLLOW "THE CISO SIGNAL" ON:
🌐 Website: www.thecisosignal.transistor.fm
🔗 LinkedIn: www.linkedin.com/company/the-ciso-signal

👍 Don’t forget to LIKE, SUBSCRIBE & SHARE to stay ahead of the world’s most dangerous cyberattacks!

#Cybersecurity #SonyHack #TheInterview #NorthKorea #NationStateAttack #CISO #TheCisoSignal

SIN CITY CYBERATTACK: INSIDE THE MGM & CAESARS CASINO BREACHES

In September 2023, Las Vegas turned into ground zero for one of the most disruptive cyberattacks in U.S. history. MGM Resorts, owner of iconic casinos on the Strip, saw slot machines go dark, hotel check-ins grind to a halt, and operations paralyzed for days. At the same time, Caesars Entertainment quietly faced its own breach, but unlike MGM, Caesars chose to pay the ransom.

In this episode of THE CISO SIGNAL: TRUE CYBERCRIME PODCAST, we take you inside the MGM Casino $100M ransomware hack and contrast it with the Caesars breach. We break down how attackers from the Scattered Spider/ALPHV ransomware group gained access, why MGM refused to pay, and what every CISO can learn from the two very different incident response strategies.

Our special guest co-host is PAZ SHWARTZ, CISO and CEO at Persist Security, who joins us to analyze the attacks, share real-world insights, and outline how leaders should prepare for ransomware scenarios that strike at the heart of critical business operations.

IN THIS EPISODE, WE DISCUSS:

👉 How the Scattered Spider group used social engineering to breach MGM and Caesars

🔹 Why MGM Resorts refused to pay ransom and Caesars paid up

⚠️ The operational and financial fallout for both casino giants

🛡️ Actionable strategies CISOs can deploy to prepare for high-stakes ransomware incidents

📈 Key leadership lessons for crisis response under public and shareholder pressure

ABOUT OUR GUEST:

Paz Shwartz is the CEO and CISO of Persist Security, with deep expertise in cybersecurity strategy, risk management, and incident response for global enterprises.

FOLLOW "THE CISO SIGNAL" ON:

🌐 Website: www.thecisosignal.transistor.fm

🔗 LinkedIn: www.linkedin.com/company/the-ciso-signal

DON'T FORGET TO LIKE, SUBSCRIBE, AND SHARE TO STAY AHEAD OF THE LATEST CYBERCRIME THREATS!

#Cybersecurity #MGM #Caesars #CasinoHack #Ransomware #CISO #TheCisoSignal