020 3026 4629 4.7 rated on Google

AI-Enabled Fraud and Deepfake Awareness

Overview

The red flags you trained your staff to spot no longer exist

For years, fraud awareness training taught the same signals: bad grammar, odd phrasing, generic greetings, requests that feel slightly off. Generative AI has erased all of them. Criminals now produce perfect emails in any language and any house style, clone a voice from seconds of audio, and stage entire video calls with deepfaked colleagues. In one widely reported case, a finance worker paid out over twenty million pounds after a video call with what appeared to be the company’s chief financial officer and colleagues, every one of them fake. The techniques used are now cheap, fast and aimed at ordinary businesses, not just multinationals.

This course resets your team’s defences for the AI era. It shows how voice cloning, deepfake video and AI-written phishing actually work, using real cases, so staff stop trusting their eyes and ears as proof of identity. Then it builds the habits that actually stop these frauds: independent callback verification, agreed code words, dual authorisation for payments and detail changes, and a no-blame culture of checking, because the fraud only completes when the process fails. With the corporate failure to prevent fraud offence now in force for large organisations, documented staff training is also part of the reasonable procedures a business is expected to show.

The course is fully online and takes one to two hours, with twelve months of access from enrolment. Pass the short closing assessment and each learner’s CPD certified certificate is generated straight away, dated and named, ready to download and print.

CPD Certified
Fully Online
All Staff
1–2 Hours

What you’ll learn

What you’ll be able to do

By the end of this course you will be able to:

Explain how AI has changed fraud, and why traditional red flags no longer protect you.

Recognise voice cloning and how it is used in urgent-payment and impersonation scams.

Describe how deepfake video calls are staged, and why seeing is no longer believing.

Spot AI-written phishing by behaviour and context, not spelling and grammar.

Apply callback verification using independently sourced contact details, every time.

Use code words, dual authorisation and change-of-detail controls correctly.

Resist urgency, secrecy and authority pressure, the psychology every version of the scam relies on.

Report suspected fraud attempts quickly through the right internal and external routes.

Course content

Five modules to work through

Five short modules ending with a 15 question assessment. Most learners complete the whole course in a single sitting.

1The New Fraud LandscapeWhat generative AI has done to the economics and quality of fraud.
  • How AI removed the cost, effort and language barriers from fraud
  • Why the old red flags, bad grammar and clumsy phrasing, are gone
  • Who gets targeted: finance teams, assistants, HR and anyone who pays or approves
  • Real cases: what AI-enabled fraud has already cost businesses
  • The one principle that survives: verify through a separate channel
2Voice Cloning and Impersonation CallsA convincing voice is no longer proof of anything.
  • How seconds of audio become a usable voice clone
  • The CEO call: urgent, confidential and needed before close of business
  • Family and colleague emergency scams reaching staff on personal phones
  • Why caller ID and a familiar voice prove nothing
  • The callback rule: hanging up and dialling a number you found yourself
3Deepfake Video and Fake MeetingsEntire video calls can be staged. Your process has to assume it.
  • How deepfake video calls work, and the case that cost over twenty million pounds
  • Live face swaps, recorded loops and AI-generated participants
  • Practical checks during a suspicious call, and their limits
  • Why no payment or credential should ever rest on a video call alone
  • Escalating gracefully: verifying without accusing anyone
4AI Phishing and Business Email CompromisePerfect emails, cloned websites and thread hijacking at scale.
  • AI-written spear phishing: personalised, fluent and in your house style
  • Supplier bank-detail changes: the highest-value email fraud there is
  • Thread hijacking: fraud that arrives inside a genuine conversation
  • Cloned login pages and QR codes harvesting credentials
  • Behavioural red flags that survive AI: urgency, secrecy, new payment details, channel switching
5Verification Procedures That Beat DeepfakesThe controls that work when detection fails, and your duty to use them.
  • Callback verification: independent numbers, every time, no exceptions for seniority
  • Code words and challenge questions for high-risk requests
  • Dual authorisation for payments and detail changes
  • The no-blame rule: why checking must never need courage
  • Reporting routes: internally, Action Fraud, your bank, and the failure to prevent fraud context

Who it’s for

Is this course a good fit?

Anyone who can be reached by email, phone or video call can be the way in. This course is written for the whole workforce, with extra depth where the money moves.

Finance & accounts teams

The people who make payments and change supplier details, the primary target.

Executive & personal assistants

Staff who act on instructions from senior people at speed.

Directors & budget holders

Those whose voices and faces are cloned, and who approve the money.

HR & payroll staff

Targets for payroll diversion and data harvesting scams.

Reception & customer service

The front door for pretexting and information gathering.

All staff

Every employee with an inbox or a phone is part of the defence.

This course is designed for whole-workforce rollout, with no prior security training assumed. Volume licensing is available for businesses enrolling teams, with consolidated invoicing, a manager dashboard to track completions and seat prices reducing as team size grows. Many businesses run it annually alongside their GDPR and cyber security refresher.

Assessment

How it’s assessed

The course is assessed by a single online multiple choice test taken after the modules. It can be retaken as many times as you need at no extra cost.

End-of-course assessment

FormatMultiple choice
Questions15 MCQs
Pass mark80%
MarkingInstant, automated
ResitsUnlimited, free

Study details

Study time1–2 hours
Access period12 months
Delivery100% online
DeviceAny, phone, tablet, PC
CertificateInstant on passing

You can pause and resume at any point, and your progress is saved automatically. There is no time limit on the assessment itself.

Certification

Your CPD-certified certificate

AI-Enabled Fraud and Deepfake Awareness — CPD Certified

On passing the assessment, each learner’s CPD certified digital certificate is available to download and print immediately, with their name, the course title and the completion date. For the business, dated certificates across the workforce are evidence of the reasonable fraud prevention procedures regulators, insurers and auditors increasingly ask about, particularly relevant since the corporate failure to prevent fraud offence came into force. We recommend annual refresher training, as attack techniques change quickly.

CPD Certified
Instant download
Supports fraud prevention procedures
Annual refresher recommended

FAQs

Questions people often ask

We already do cyber security awareness training. Is this not the same thing?
There is overlap, but traditional cyber awareness focuses on links, attachments and passwords. This course focuses on impersonation fraud: cloned voices, deepfake video and AI-written business email compromise, and above all on the verification procedures that stop them. Most cyber courses written before generative AI still teach staff to spot bad grammar, which is now dangerous advice.
Can deepfakes really fool people on a live video call?
Yes. Documented cases include a finance worker who transferred over twenty million pounds after a group video call in which every other participant was a deepfake. Quality varies, and the course covers practical in-call checks, but its core message is that no verification should rest on what you see or hear alone.
What is the failure to prevent fraud offence, and does it apply to us?
It is a corporate criminal offence, in force since September 2025, under which large organisations can be liable when an associated person commits fraud intended to benefit the organisation, unless reasonable fraud prevention procedures were in place. It directly applies to large organisations, but documented staff training is considered good practice for businesses of any size, and this course contributes to exactly that evidence.
How long does it take, and do staff need any prior training?
One to two hours, with no prior training assumed. It is written for every member of staff, from reception to the finance director, and can be completed in a single sitting on any device.
What happens if someone fails the assessment?
They can retake it as many times as needed at no extra cost, revisiting the modules in between. The pass mark is 80 percent on 15 multiple choice questions.
What other training pairs well with this?
This course is a natural annual companion to our GDPR Refresher and Cyber Security Awareness course. Staff who use AI tools in their own work should add Safe Use of AI at Work, and whoever sets policy should look at Level 3 AI Governance. Ask us about bundle pricing for whole workforce rollouts.
Get 10% OFF All Products!

Special Offer!

Exclusive Discount

10% OFF

Use code NCT10 at checkout

*Valid on all products. Does not include examination resits.

X
X