What identity signals does it use?

Trusted identity signals combined with the conversation and the instruction on the call rather than a one-time check.

Can it flag a SIM-swapped number or a new email domain?

Yes. Those are exactly the payment-instruction fraud signals Diopter raises before the change is accepted.

Does this replace our IdP?

No. It works alongside your identity provider, adding a check at the moment of the call where money or access is on the line.

Will it flag every call?

No. Diopter scores the manipulation pattern, not isolated artifacts, so a normal call with real urgency does not trip it. Only the combination, an authority claim plus pressure plus an escalating ask, crosses the threshold. Your team sees fewer alerts with higher signal.

What about privacy and recordings?

Diopter supports on-prem and hybrid deployments, with configurable retention including a zero-data-retention option. It runs with a meeting bot or bot-free, and needs no caller-side install. SOC 2 Type II is in progress.

How hard is it to deploy?

Diopter works alongside the video and voice tools your team already uses, and rolls out through your existing MDM such as Intune or Jamf. There is no caller-side install and no change to how your team takes calls.

Capability

Tie identity to the action before it goes through

Confirm who is really on the call and validate the instruction in the same step, whether that is a wire, a vendor banking change, an executive approval, or a new hire's access.

Book a walkthrough

30 minutes · NDA-safe · Built for security and fraud teams at private equity firms and large enterprises

$16.6B

total fraud losses in 2024, up 33%

Source · FBI IC3

1 in 4

job candidates projected synthetic by 2028

Source · Gartner

~$200M

redirected on closing wires in one quarter

Source · Q1 2025

The risk

Where verification breaks down

Unverified callers on high-stakes calls

Approvals, payments, and access granted on the strength of a familiar voice or face, with no second check on who is really there.

Last-minute instruction changes

Payment details or access requests changed under urgency, often from a brand-new email domain or a freshly ported number.

Identity gaps in onboarding

A new hire or vendor contact whose identity was never tied to the access or payments they are granted.

The attack playbook

How an identity and payment attack unfolds

These attacks move through a recognizable sequence. Diopter scores that sequence while the call is still in progress.

Authority

A trusted identity is claimed

The caller presents as an executive, a vendor, or a verified person the team already knows.

Urgency

Pressure shortens the check

Urgency makes a second verification step feel like an obstacle rather than a control.

Isolation

The request goes off-policy

The ask routes around the normal approval path, a new channel, a new contact, a new account.

Escalation

The change escalates

A detail update becomes a payment, an access grant, or an onboarding step.

The ask

Money or access moves

The instruction is executed before identity was ever tied to the action.

How Diopter helps

What Diopter looks for

Identity signals

Compare the person on the call against trusted identity signals, including the context and channel of the request.

Payment instruction validation

Check wire and payment details for fraud signals like a brand-new email domain or a SIM-swapped number.

Out-of-policy asks

Flag requests that skip your normal approval and verification controls.

Where it shows up

One capability across every call where trust moves.

The same detection applies wherever an attacker uses a call to push money, access, or a hire through.

Hiring & staffing

Confirm a new hire's identity before access and payroll are granted.

Financial wire fraud

Validate wire instructions against the verified caller before funds move.

Vendor payments

Verify the vendor and the banking-detail change together, not separately.

Executive impersonation

Tie an executive approval to a verified identity before staff act.

The verdict

From signals to one action your team can take.

What drove this verdict

IdentityUnconfirmed
InstructionNew domain
PolicyOut of policy

Verdict

Hold for verification

Diopter holds the action for a second check before money or access moves.

Why Diopter

Most tools check one clip. Diopter reads the whole call.

Point-in-time detectors answer a single question: is this video or voice fake? A good clone passes that test. Diopter scores the whole conversation, the authority claims, the manufactured urgency, the push to go off-channel, and the escalating ask, then raises a verdict on the pattern a single frame cannot show.

Verifying a face or voice once is not enough. Diopter ties identity to the instruction and the conversation around it.

Deployment & trust

Light to deploy, clear about what runs where.

Pilot in days, roll wider through MDM, and keep sensitive call media inside your perimeter.

Deployment & trust

On-prem and hybrid deployments supported
No caller-side install
Bot or bot-free capture
Configurable retention, including ZDR
MDM rollout (Intune, Jamf)
SOC 2 Type II in progress

Common questions

What security and fraud teams ask first.

Walkthrough · 30 min · NDA-safe

Walk an attack arc with Diopter.

In 30 minutes, we will replay a real deepfake incident, show the signals Diopter would score, and map the verdict your team could act on.

Book a walkthrough