The Rise of Deepfake and Synthetic Identity Attacks in the Crypto Industry

As the digital landscape evolves, so do the threats facing major financial institutions. The crypto industry, once thought to be immune, is now a prime target for deepfake and synthetic identity attacks. In 2025, a staggering $17 billion was stolen in crypto scams and fraud, a significant increase from the $12 billion reported in 2024, highlighting the growing prevalence of impersonation and AI-enabled scams, according to Chainanalysis.

While the industry often focuses on asset theft such as wallet breaches and compromised private keys, the real root cause of these attacks lies in identity vulnerabilities rather than custody or cryptography. The failure occurs much earlier in the process, when the wrong person is mistaken for the right one.

Recently, researchers at Google Cloud’s Mandiant Threat Intelligence uncovered a sophisticated campaign linked to a North Korean threat group targeting cryptocurrency firms using deepfake video calls. In this scheme, attackers impersonate executives in seemingly legitimate meetings to build trust before deploying malware and harvesting credentials.

This incident is not isolated but reflects a broader trend in how financial systems are being exploited. A 2025 anti-scam report from Bitget, SlowMist, and Elliptic revealed that nearly 40% of high-value fraud cases involve deepfake technology, indicating the prevalence of identity-based attacks in the crypto space.

Traditionally, the concern surrounding crypto was anonymity, but now the focus has shifted to false legitimacy. Outdated systems may authenticate synthetic or manipulated identities that appear valid, creating a complex challenge for identity verification.

Advancements in generative AI have made it easier for fraudsters to create convincing digital personas with realistic video, voice, and behavior, leading to a surge in identity-based attacks. Fraudsters now target onboarding processes, account recovery, and internal communications to exploit trust within systems.

Existing frameworks such as Know Your Customer (KYC) processes, designed to establish trust at the point of entry, are struggling to keep up with evolving fraud tactics. Deepfakes can replicate facial movements and voice, while synthetic identities can generate supporting documentation, creating a growing gap between verified identity and falsified information.

In the decentralized world of crypto, where transactions are fast and pseudonymous, the challenge of verifying identities becomes even more critical. The emergence of AI agents interacting with financial systems adds another layer of complexity, as autonomous actors introduce new risks that traditional identity models are ill-equipped to handle.

Without stronger identity assurance, crypto faces barriers in integrating with traditional financial infrastructure. Trust hinges on distinguishing between legitimate participants and synthetic ones, emphasizing the need to strengthen the identity layer in response to evolving threats.

Identity verification must evolve to be continuous, adaptive, and context-aware, requiring companies to assess individual authenticity throughout the lifecycle of each account and interaction, not just at onboarding.

As digital interactions replace in-person verification across financial services, crypto must adapt to enhance institutional and consumer trust. Addressing the identity problem is crucial for security, shifting the focus from mitigating losses reactively to preventing them proactively.

The future of digital finance rests on securing transactions and restoring confidence in the identities behind them.

About the Author: Ricardo Amper, CEO of Incode Technologies

Ricardo Amper is the visionary founder and CEO of Incode Technologies, a San Francisco-based company at the forefront of transforming the digital identity space. With a focus on AI- and ML-powered solutions, Incode helps various industries combat fraud, increase revenue, and enhance user experiences. Ricardo’s extensive entrepreneurial background includes founding La Burbuja Networks, Co-Founding Amco Foods (acquired by Grupo Bimbo), and leading Grupo Amco before its acquisition by Brenntag. Born in Mexico and based in San Francisco, Ricardo continues to drive Incode’s mission of “One Identity Everywhere,” empowering users to control their identity information while accessing services securely.

Conclusion

The prevalence of deepfake and synthetic identity attacks in the crypto industry signals a critical inflection point. Strengthening identity assurance is essential for crypto to gain trust in traditional financial systems. By focusing on continuous, adaptive identity verification, the industry can address evolving threats and enhance security measures. The future of digital finance hinges on restoring confidence in identities and securing transactions effectively.