Psychological Self-Defence is an urgent necessity in today's AI-driven world. When deepfakes, voice clones, and hyper-personalised phishing bypass every technical safeguard you have, your company's only defence is a trained human mind.
Criminals no longer need technical sophistication. With consumer-grade AI tools, they can impersonate your CEO on a video call, clone a colleague's voice from a podcast, or craft a phishing email indistinguishable from the real thing.
Real-time face and voice manipulation lets attackers impersonate executives on live video conferences, authorising fraudulent transfers.
A few seconds of publicly available audio is enough to clone someone's voice with near-perfect accuracy, enabling convincing phone-based fraud.
Generative AI creates perfectly written, hyper-personalised phishing emails that achieve a higher click-through rate than standard attempts by people.
The uncomfortable truth about AI-generated attacks is that intelligence is no protection. Fraudsters don't exploit ignorance — they exploit the very cognitive shortcuts that make high-performing people effective.
Understanding your own psychological architecture is the first step to defending it.
When a request appears to come from the CEO, the brain downgrades scepticism. AI attackers exploit this weakness by creating flawless impersonations of senior leadership, deliberately triggering deference before rational thought can kick in.
Phrases like "this must be done today" or "don't discuss this with anyone yet" create acquiescence. Urgency narrows attention, suppresses doubt, and dramatically increases compliance.
Attackers study their targets for weeks before striking — referencing real projects, known colleagues, and recent events. Familiarity creates comfort. Comfort overrides verification. That's the attack vector.
Once people believe something is legitimate — a credible email, a familiar face on a call — they unconsciously filter out signals that contradict it. Working Voices' training teaches people to actively seek out indicators that the situation might be a scam.
The goal isn't to make your people paranoid. It's to give them the intellectual humility to pause, the emotional presence to notice when something feels off, and the confidence to verify — even when under pressure from apparent authority.
A structured approach that moves from awareness, to action, to ongoing vigilance (prime, train, test) — building genuine psychological self-defence across your workforce.
A high-impact presentation designed to prepare the audience for training. Participants discover how hackers use technical and psychological tactics to achieve their aims.
Hands-on workshops exploring how the human mind processes information, creates trust, and becomes vulnerable to manipulation under pressure.
Controlled, simulated deepfake attacks deployed across the organisation in the months after training. Those who are caught out receive targeted refresher training.
eLearning can inform but it struggles to change behaviour. That requires a very specific kind of training that changes the architecture of the mind.
Psychological self-defence is learned and developed until it becomes a reflex you can rely on. Live facilitation creates the emotional context needed for real behavioural change. E-learning simply offers awareness, only in-person training instils resilience.
When a team goes through a deepfake reveal together, it becomes a shared reference point — a moment they talk about. That cultural memory is what keeps people vigilant long after the training ends.
We remember what shocks us. A live demonstration where your own colleague — or your own voice — appears as a deepfake creates the kind of visceral understanding that no video module ever could.
A skilled facilitator reads the room, adapts to your industry's specific threat profile, and answers the questions your people are actually asking. No video does that.
Roleplay scenarios, live simulations, and group challenges let people practise the "pause and verify" habit in a safe environment — so it becomes instinctive when it matters most.
Our simulated deepfake testing phase provides hard data on vulnerability after training — giving your board concrete evidence that the investment is working.
Our Psychological Self-Defence Training programme gives your people the skills to identify risk by relying on verification reflexes that become second nature.
Our training brings together a package of skills that interlock into a protective shield, protecting individuals, their team and their organisation. These abilities encourage key components of critical thinking, including self-confidence, logical thought, testing the evidence, care and caution, engaged focus, and monitoring the actions of others.
Defensive capability isn’t about better luck, it’s better thinking – in every stage of ongoing projects and productivity.
Focus is essential. Phishing attacks can unfold in a sequence of stages.
The idea behind psychological self-defence training is to keep people emotionally present, taking responsibility with intellectual humility, and being so well prepared they can see through and sidestep these attacks.Nick Smallman — Founder, Working Voices
In January 2024, an employee at engineering firm Arup joined what appeared to be a routine video call with senior colleagues. Every face, every voice was AI-generated.
Publicly available LinkedIn profiles, conference videos, podcast appearances, and company announcements are scraped to build detailed profiles of key executives. This is spear-phishing at its most targeted.
The target receives credible emails that appear to come from senior leadership, establishing context for an upcoming "confidential" financial discussion. Nothing seems unusual.
The employee joins a video call where the CFO and multiple colleagues appear to be present. Real-time face and voice manipulation makes the impersonation convincing. A series of transfers totalling $25 million to various bank accounts is authorised.
Multiple transfers were made across 15 transactions before the fraud was discovered. The employee had followed what appeared to be legitimate instructions from trusted superiors.
Particularly relevant for defence, finance, professional services, and any organisation where a single fraudulent authorisation could cause catastrophic loss.
Where information security is paramount and state-sponsored actors use increasingly sophisticated AI tools for social engineering.
$2.77 billion in Business Email Compromise losses reported to the FBI in 2024 alone. Finance teams are the primary target for AI-enabled fraud.
Any organisation where executives are public-facing, decisions move fast, and a single compromised employee can authorise significant transactions.
Book the Accelerator Talk for your leadership team and see how AI-generated attacks could target your people — before a real attacker does.
Get in Touch →robert@workingvoices.com
Established in 1998, Working Voices is a global professional skills consultancy specialising in Leadership, Communication and Critical Thinking skills. We deliver training to over 100 of the world's largest companies including:
