Breacher.ai, an AI social engineering simulation platform, announced the addition of live deepfake video conferencing to its simulation platform. This update provides enterprise security teams and MSSP partners with a unified platform to execute the complete AI social engineering attack chain, encompassing deepfake email, voice cloning, SMS phishing, and now live video impersonation on Microsoft Teams, Zoom, and Google Meet. The integration allows organizations already using Breacher for email, voice, and SMS simulations to incorporate video into any campaign they design, enabling testing of the attack vectors most relevant to their specific threat models.
Jason Thatcher, CEO and Founder of Breacher.ai, emphasized the critical nature of this development, stating that video represents an attack vector currently untested by most organizations. He noted that while finance workers might identify phishing emails, they are unlikely to detect a CFO impersonation during a live Zoom call. The platform now addresses the full spectrum of AI social engineering threats, including AI-generated phishing across email, Microsoft Teams, Slack, SMS, and social media, with multi-stage attack chains that mimic real adversary tactics. It also features real-time voice clone calls impersonating executives, vendors, and help desk staff, with clone creation times under five minutes, designed to test verbal verification procedures and callback protocols.
The new live video capability deploys deepfake avatars on Teams, Zoom, and Google Meet that are interactive and conversational, allowing targets to ask questions and receive responses from synthetic participants. This functionality is built for live, adaptive conversation rather than pre-recorded clips. The platform further includes awareness training with micro-training modules delivered at the moment of failure, role-specific and mobile-accessible content aimed at driving retention, and educational bots powered by agentic AI that guide employees through realistic scenarios interactively. Risk scoring and reporting features offer patent-pending risk scoring that benchmarks individual and department vulnerability against industry peers, with reports tailored for boards and auditors and automated compliance documentation aligned to regulations such as NIS2, DORA, and ISO 27001.
The platform supports three deployment models without requiring IT integration. Enterprise security teams can access fully managed red team assessments with bespoke engagements based on the organization's actual structure, personnel, and threat model, coordinating phishing simulations, voice attacks, and video impersonation as multi-stage campaigns. MSSP and security consulting partners can utilize the same capabilities through a white-label self-service platform at breacher.ai, deploying under their own brand, using built-in playbooks, and delivering board-ready reports to clients. A self-managed option provides security teams with direct platform access, API integration, multi-tenant MSP support, and full control over campaign design and reporting.
Early access clients have reported significant impacts, with an IT Manager in Financial Services noting that users were surprised by the quality of the deepfakes, describing the experience as "really crazy talking to a deepfake." A CEO in Cybersecurity compared it to an episode of Black Mirror, expressing surprise at the advancement of the technology. A CISO at a bank highlighted that the entire company is already discussing voice cloning and its risks, calling it a "huge win." The urgency of this update is underscored by industry data, with AI social engineering fraud exceeding $200 million in Q1 2025, as reported in the Resemble AI Q1 2025 Deepfake Incident Report. Deepfake video attacks contributed to a single $25 million wire fraud loss in 2024, where the target followed standard verification procedures yet still transferred funds. Regulations like NIS2 and DORA now require organizations to deliver and demonstrate effective human layer training, with auditors demanding proof of behavior change rather than mere completion records.
Unlike most awareness platforms that confine security teams to template-based simulations with limited customization, Breacher offers both ready-made playbooks for rapid deployment and full campaign control for tailored threat modeling. The updated platform is currently available, with enterprise assessments delivered as a fully managed service yielding results in two to three weeks. MSSP and partner access is provided through the Breacher Early Access Partner program, featuring dedicated onboarding support and white-label deployment live within 24 hours. This expansion addresses a critical gap in cybersecurity testing, empowering organizations to proactively identify vulnerabilities in the human layer before malicious actors exploit them, thereby enhancing resilience against evolving AI-driven threats.
