Show HN: Air-gapped device to stop deepfake wire fraud

3•reutinger•2h ago

i build air-gapped hardware that verifies wire transfers before they hit the banking rail.

Microsoft's VALL-E 2 clones any voice from 3 seconds of audio. someone deepfakes your CFO on a video call, authorizes a $50M wire, the bank sends it. Arup lost $25.6M this way in February 2024. the phone callback is dead.

detection is a losing arms race. so: physics.

credit-card-sized device. no wifi, no bluetooth, no data ports. displays transaction details on a screen hardwired to the chip. the CFO reads the destination, the amount, the sender. physically confirms. authorization is cryptographically signed on an NXP EdgeLock SE051 (EAL 6+, same chip in banking cards and government passports). signing kernel is ~200 lines of code.

you can clone a voice. you can clone a face. you cannot clone a physical device on someone's desk.

flew to Davos to demo it during the World Economic Forum. swiss counter-terrorism detained me for 13 hours because the prototype looked like an IED. line-by-line code review, cleared the device in under 20 minutes. the 13 hours was bureaucracy, not the code.

since davos: first meetings with J.P. Morgan, BBVA, and UBS.

happy to answer technical questions.

Links:

- Semafor wrote it up: https://www.semafor.com/article/01/22/2026/an-entrepreneurs-...

- original thread (103K views): https://x.com/s_heyneman/status/2014519007244656652

- deepfaked myself authorizing a $60,000 wire for the YC demo. one photo, one voice sample, off-the-shelf AI, 20 minutes: https://x.com/s_heyneman/status/2021100304436191630

Comments

jsalesale•1h ago

how is this different from just using a hardware security module? banks already have HSMs in their infrastructure.

reutinger•1h ago

hsms are server-side. they secure the pipe, not the instruction.

deepfake clones your cfo, authorizes a wire, the bank's hsm cryptographically signs the theft. signature is valid. intent is fake.

verdico is client-side. secures the moment of authorization before the packet hits the rail.

banks solved double-spend. this solves double-speak.

5-century tree-ring record reveals intensification of West Mediterranean storms

Russia Further Restricts Telegram, Escalating Internet Clampdown

Private RAG and marketplace to sell your knowledge to AI agents

Debugging random slow writes with GIN indexes in PostgreSQL

FOSDEM 2026: RISC-V Hardware Is Here. What About Software? [video]

The Future of the Global Open-Source AI Ecosystem: From DeepSeek to AI+

Ask HN: What useful knowledge do you have that LLMs don't?

Show HN: Give your OpenClaw agent a serverless back end

10xBench – one-shot coding in Astro, React and Tailwind

Chasing Satellites with My Geodesic Dome [video]

Lamp Rubbers

Humanity's Last Programming Language

An Innocuous Blog Post about vPMU in QEMU

The Linux Load Average

US embassy in London denies visas to executives over minor offences

Adventures in Neural Rendering

Localstack will require an account to use starting in March 2026

It's Over. The iPad Won

WeWatch AI – The fix took 5 mins, the RCA took 8 hours. So we built this

Amazon CloudFront Global Outage

The Concussive Geode: When Recurrent BPPV Creates Sensory Mismatch

Two Million Is Small

Exploring AI Driven Coding: Using Xcode 26.3 MCP Tools in Cursor, Claude, Codex

The Tavistock Clinic scandal: 1k court cases that never materialised

Hands-Free Claude Code with the Agent SDK

Show HN: Cube – The Agentic Analytics Platform [video]

Why Modern Systems Keep Functioning After They Stop Making Sense [pdf]

FAW installs semi-solid-state battery in an EV, promising 1,000+ km range

Cysqlite – A New SQLite Driver

Cursor switches pay-per-token when your plan limit end. Calls "On-Demand usage"