Deepfake statistics 2026: key facts for Australian CFOs and finance leaders

deep fakestatistics
Deepfake statistics 2026: key facts for Australian CFOs and finance leaders

In 2024, a finance worker at Arup transferred $25 million after joining a video call where every other participant, including the CFO, was an AI-generated deepfake, the kind of exposure Australian finance teams face too. While 89% of Australians believe they could spot a deepfake scam, only 42% actually could when tested, and Australia's total deepfake fraud losses already sit at $44 million, with almost 80% of that hitting organisations through CEO or executive impersonation.

This page tracks the latest deepfake fraud statistics for Australia, alongside global context from leading fraud and identity verification researchers, and is updated as new figures become available. For real examples of how these attacks play out, see how deepfake-enabled fraud is already targeting Australian finance teams.

Australian deepfake statistics

89% think they could spot a deepfake scam, but only 42% actually could.

The gap held across the board, with respondents aged over 65 performing 6% worse than the national average when tested against real and AI-generated images.

27% of Australians witnessed a deepfake scam in the past year.

40% of those scams were business email compromise or payment redirection attempts, the second most common category after investment scams.

55% of small businesses cross-checked supplier payment details in the last six months.

The figure leaves nearly half of small businesses without a recent independent check on the accounts they're paying into.

Australia's deepfake fraud losses total $44 million.

Australia ranks 10th of 36 countries analysed. 79.6% of that total came from attacks on organisations, typically CEO or executive impersonation used to authorise fraudulent transfers.

Global context: deepfake fraud statistics

Deepfake fraud made up 11% of all fraud detected globally in 2025.

Deepfake fraud made up 11% of all fraud detected globally in 2025.

62% of organisations experienced a deepfake attack in the past 12 months.

This is a global figure from a survey of 302 cybersecurity leaders, not a projection.

Only 0.1% of people correctly identify every deepfake shown to them.

In a 2025 study of 2,000 UK and U.S. consumers, participants were explicitly told to watch for synthetic content and were still 36% less likely to correctly identify a fake video than a fake image.

Author

anonymous

Published

9 Jul 2026

FAQs

A deepfake is synthetic media created with artificial intelligence, typically video, audio, or images altered to show someone saying or doing something that never happened. Fraudsters use the same technology to impersonate executives, vendors, and colleagues in payment scams. Read more on how deepfake AI works.

Estimates put online deepfake volume at roughly 500,000 in 2023, rising to approximately 8 million by 2025, a figure also cited by the UK government. The pace of growth means any fixed count is out of date within months.

Deepfake fraud is the use of AI-generated audio or video to impersonate a real person, usually an executive, vendor contact, or colleague, in order to authorise a fraudulent payment or extract sensitive information. Read the full breakdown of how deepfake fraud works.

Creating and sharing non-consensual sexually explicit deepfakes is a specific criminal offence in Australia, covered by Commonwealth Criminal Code amendments together with separate state laws in jurisdictions including New South Wales and South Australia, with penalties varying by jurisdiction. Deepfake-enabled fraud, such as executive impersonation used to authorise a payment, isn't a separately named offence. It's prosecuted under existing fraud and deception laws instead, which apply regardless of the method used to deceive. For finance teams, this distinction matters in practice: prosecution can follow after a loss occurs, but it doesn't recover a payment already sent to a fraudster's account, which is why independent verification before payment remains the more reliable safeguard.

security-image

The New Security Standard for Business Payments

security-image
security-image