How do criminals clone a CFO's voice for AP fraud?

CFOs and finance directors frequently appear in earnings calls, conference presentations, investor relations recordings, and media interviews — all publicly available. Criminals extract audio from these recordings and use AI voice cloning tools to generate a model that can speak any new text in the executive's voice in real time. As little as 30 seconds of clean audio produces a convincing clone. The executive's own earnings call recordings provide the ideal source material.

Why do standard AP fraud controls fail against voice scams?

Standard AP fraud controls are designed around email and document fraud: suspicious email domain checks, written authorization requirements, dual-approval workflows. AI voice fraud operates at the phone call layer — which existing AP controls treat as a trusted verification channel, not an attack surface. When a CFO voice calls AP directly and overrides the normal process with urgency, the AP staff's training says 'comply with executive instructions efficiently,' not 'this call may be fraudulent.'

Accounts Payable Voice Scams: How AI Voice Fraud Bypasses AP Controls

Q: What is an accounts payable voice scam?

An accounts payable voice scam uses AI voice cloning to impersonate a CFO, finance director, or senior executive in a phone call to AP staff, instructing them to process a fraudulent payment, update vendor banking details, or bypass the normal approval process for a 'priority' transaction. The cloned voice sounds exactly like the real executive. AP staff, trained to execute leadership instructions efficiently, comply before verification is complete.

The Structural Problem: AP Teams Are Trained to Obey

Accounts payable teams are selected, onboarded, and evaluated on their ability to process payment instructions accurately and efficiently. The instinct to comply with a direct executive instruction — especially from a CFO or finance director who calls AP personally, rather than routing through normal channels — is not a personality flaw. It is trained behavior that makes organizations function.

This is precisely what AI voice fraud exploits. When a CFO's voice calls AP directly to authorize a payment, the AP team member's entire professional training says: comply quickly and accurately. The executive bypassed normal channels because this is urgent and important. Move fast.

The attack doesn't require the AP team member to make a mistake. It requires them to do exactly what they've been trained to do.

$25B

Lost to voice fraud annually. AP teams are the primary execution point — the people who actually process the fraudulent payments that voice-impersonated executives authorize.

How the AP Voice Scam Works

Source the CFO's voice

The attacker sources audio of the target CFO or finance director from earnings calls, investor conferences, media interviews, or corporate video content — all publicly available. 30 seconds of clean audio is sufficient for a convincing real-time clone.

Identify the target and the payment

The attacker researches the target organization's AP team — often from LinkedIn — and identifies a plausible payment scenario: a "priority vendor payment," a "sensitive transaction that can't go through normal channels," or a "time-critical wire for a deal closing."

The call to AP

The cloned CFO voice calls the AP team member directly. Caller ID shows the CFO's real number (spoofed). "Hi, this is [CFO name] — I need you to process a priority payment today. It's sensitive so I'm calling directly rather than going through the portal. I'll follow up with the details by email."

Urgency and secrecy are established

The "CFO" explains the payment must be processed today, that it's confidential (often citing a deal, legal matter, or personnel issue), and asks the AP team member not to discuss it through normal channels. Both urgency and secrecy block the natural verification instinct.

Written confirmation arrives

A spoofed email from a lookalike domain arrives with the payment details — confirming what the "CFO" said by phone. The AP team member, already primed by the call, treats the email as expected confirmation rather than a suspicious document.

Payment is processed

The fraudulent payment is processed. The real CFO discovers it only after the fact — when the attacker's account has already received and moved the funds.

Why Standard AP Controls Don't Stop This

AP Control	What It's Designed For	Why AI Voice Fraud Bypasses It
Dual authorization	Requires two approvers for large payments	The "CFO" explains dual auth is waived for this sensitive transaction, or calls the second approver too
Payment portal / ERP workflow	Routes payments through structured approval system	The "CFO" explicitly instructs AP to process outside the portal — "this one is sensitive"
Vendor change verification policy	Requires callback before updating vendor banking	The "CFO" is the callback — the voice verification step itself has been compromised
Email domain checks	Catches spoofed email domains	AP has already been primed by the phone call — the follow-up email is treated as expected, not suspicious
Spend limits	Caps individual payment amounts	Attackers structure requests at or below limits, or the "CFO" voice explicitly requests limit override for this transaction
Biometric voice verification (VeriCall)	Confirms the voice is actually the real CFO	Detects the cloned voice before any payment instruction is confirmed — the only control at the phone layer

Targeting Pattern: Who Gets Called and Why

AI voice fraud targeting AP teams follows a consistent pattern — attackers choose their target within the AP function based on authority and access:

AP managers and directors — high authority, can override normal workflow, responsible for escalations. A call from a CFO to an AP director carries maximum weight.
Senior AP specialists — experienced enough to process non-standard requests, trusted enough to act without micro-supervision
Treasury and cash management staff — have direct access to outgoing wire systems; attackers prefer to reach the person closest to the payment execution point
New AP staff — less familiar with which CFO behaviors are normal vs. suspicious; more likely to comply with an unusual request from an executive rather than push back

How VeriCall Protects AP Teams

VeriCall is installed on the devices of AP managers, treasury staff, and anyone who receives direct executive calls to authorize or process payments. Setup:

Install on AP and treasury devices — all staff who receive executive phone instructions to process payments
Build voiceprints for each executive whose voice carries payment authorization authority — CFO, finance director, VP Finance, CEO. Voiceprints build automatically from genuine calls.
Adopt a hard protocol: no payment is processed on a phone instruction unless the call shows VOICE VERIFIED status for the caller. If the call shows AI DETECTED, end the call and reach the real executive through a separate verified channel.
Communicate the protocol to executives: genuine CFOs and finance directors will understand that a VOICE VERIFIED requirement protects the organization. Any executive who objects to voice verification for payment instructions is a flag, not a leader to defer to.

Frame VeriCall verification as executive protection, not staff skepticism. The protocol protects the CFO from having their voice used to authorize payments they didn't make. Genuine executives understand and support it — because the fraud risk flows back to them if their voice is cloned to authorize a fraudulent payment on their watch.

// FAQ

Frequently Asked Questions

What is an accounts payable voice scam?

An AP voice scam uses AI voice cloning to impersonate a CFO, finance director, or senior executive in a phone call to accounts payable staff, instructing them to process a fraudulent payment, update vendor banking details, or bypass normal approval processes for a "priority" transaction. The cloned voice is acoustically identical to the real executive. AP staff comply because their training says: execute executive instructions efficiently.

Why can't my AP team just ask a verification question?

Verification questions help but are not sufficient. An attacker with advance research can answer most standard questions (name of assistant, recent project, company news). More importantly, the psychological pressure of questioning a CFO directly — when they've already established urgency and authority — inhibits the AP team member's ability to ask challenging questions. The attack is designed to create compliance, not suspicion. Biometric verification is mechanical — it doesn't require the AP team member to override social pressure.

How do I train my AP team to handle these calls?

Training alone is insufficient against AI voice fraud — it asks staff to override authority compliance instincts under pressure, which is psychologically difficult. The right approach combines training with a mechanical control: install VeriCall so the voice verification happens automatically, removing the burden from the individual. Train staff that VOICE VERIFIED is required for any phone-authorized payment — and that a genuine CFO supports this policy because it protects both the organization and them personally.

// VeriCall

Give Your AP Team
A Voice They Can Trust.

VeriCall gives accounts payable and treasury staff a biometric verdict on every executive call — before any payment instruction is confirmed. On-device, zero cloud, under 1 second.

Law firms · PE/VC · Finance teams · No spam · Founding access only