S&P 5005,842.10 0.42%
NASDAQ19,210.55 0.88%
NVDA1,184.22 2.41%
MSFT478.90 0.88%
GOOGL210.11 1.12%
META612.50 0.34%
AAPL239.80 0.21%
AMZN248.66 1.40%
AVGO1,902.40 3.12%
TSLA298.10 1.05%
BTC98,420 1.88%
ETH4,210 2.24%
10Y4.18% 0.02%
DXY104.12 0.18%
S&P 5005,842.10 0.42%
NASDAQ19,210.55 0.88%
NVDA1,184.22 2.41%
MSFT478.90 0.88%
GOOGL210.11 1.12%
META612.50 0.34%
AAPL239.80 0.21%
AMZN248.66 1.40%
AVGO1,902.40 3.12%
TSLA298.10 1.05%
BTC98,420 1.88%
ETH4,210 2.24%
10Y4.18% 0.02%
DXY104.12 0.18%
Back to homepage
AI & Cybersecurity

When AI Becomes the Bait: How Deepfakes and LLMs Are Changing Phishing

From synthetic voices to hyper-personalized emails, attackers are using generative AI to scale deception. Here’s what companies and investors should actually do next.

P
Pedro Marini
July 2, 2026 · 4 min read
When AI Becomes the Bait: How Deepfakes and LLMs Are Changing Phishing

Illustration by IMF Alpha editorial · Reviewed by Pedro Marini

Listen to this article
AI narration · ~4 min
Tickers mentioned
MSFT+0.00%GOOGL+0.00%CRWD+0.00%PANW+0.00%FTNT+0.00%

The new phishing economy is not a technological accident — it's an adaptation. What started as crude mass-mail scams has quietly become something much more precise: targeted, high-fidelity attacks that use large language models and voice deepfakes. The result feels both familiar and unnervingly new.

Why this matters now

  • Large language models can crank out convincing, context-aware emails in seconds, tuned to a recipient’s social profile or a recent company announcement.
  • Voice cloning has reached a point where a few seconds of audio can be enough to make a phone scam sound authentic — picture a CFO’s cadence reproduced to authorize an urgent transfer.
  • Cost and skill barriers have fallen. The same AI tools marketers use to write copy can, with little tinkering, produce spear-phishing content that bypasses basic suspicion.

What's interesting is how ordinary these tools are becoming. In practice, though, the attacks are not magical — they're just better at sounding human.

A short history lesson

Phishing has always been an arms race. In the 2000s attackers traded sophistication for volume; by the 2010s business email compromise showed the damage a well-placed impersonation could do. Now generative AI acts as a force multiplier: not only smarter lies, but more believable ones delivered at scale.

What defenders are getting wrong

  • Treating AI purely as an offensive threat misses half the picture. Security teams are piloting defensive AI, but too often pilots turn into streams of alerts that still need human triage.
  • Heavy reliance on scripted trainings creates blind spots. Attackers do quick reconnaissance and craft messages that slip past canned scenarios.
  • Signature-based detection is inadequate. For generative attacks, behavioral and contextual signals are far more telling.

These are not absolutes; many teams are adapting. But too many organizations are learning this the hard way.

Practical steps that work

  • Nail the basics: enforce DMARC, DKIM and SPF, and use MTA-STS and BIMI where you can to limit domain spoofing.
  • Add behavioral XDR and anomaly detection that highlights odd transfer requests or atypical language patterns in communications from high-risk roles.
  • Combine tech with ritualized human checks: a short callback on a pre-registered number, or multi-person approval for fund movements. Small frictions save big losses.
  • Run red-team exercises that explicitly use AI-generated phishing so staff see how convincing the messages can be.

Those steps won’t stop every attack, but they raise the bar where it matters.

Market implications and where investors should look

  • Vendors that build AI-native defensive tools — combining telemetry, active threat intelligence, and behavioral ML — should see differentiated demand.
  • Big cloud providers that fold detection into mail, voice, and identity services can gain an edge; many enterprises prefer integrated stacks to one-off products.
  • Watch margins. Smaller vendors may see quick revenue growth, but R&D costs are rising as the arms race heats up.

In short: bet on companies that treat detection as a platform problem rather than a bolt-on feature.

Counterpoint: AI can be a defender, too

Attackers do not have a monopoly on these techniques. Automated triage, AI-driven forensics, and models that simulate attacker playbooks can speed detection and response. The danger is complacency — tools without governance or realistic testing can create a false sense of security.

A human closing note

This is not science fiction. It’s an old scam wearing modern clothes. The human element still matters most: policies, incentives and a culture that treats money and identity flows as inherently risky will blunt impact more reliably than any single product.

If you run security, start by stress-testing the highest-risk business processes with AI-generated attacks. If you follow markets, favor companies that weave detection into core identity and communications services rather than those selling a single silver-bullet appliance.

Actions to take this week

  • Verify MFA and transaction approval workflows for everyone with payment authority.
  • Run one AI-based phishing simulation focused on executive assistants and finance staff.
  • Audit email authentication settings and add behavioral analytics to monitor critical roles.

Bold threats deserve bold hygiene. The next phishing wave will be fast; the best defense is speed, layered controls, and sustained skepticism.

Advertisement
Continue reading

Related coverage

The IMF Brief · Daily Newsletter

The AI economy, decoded before the open.

Five minutes. One email. The signal cutting through the noise at the intersection of artificial intelligence and Wall Street. Free, forever.

Join 184,000+ readers · No spam · Unsubscribe anytime