Concern is widespread that artificially generated ‘deepfake’ videos pose a major potential problem for those targeted, be they companies, CEOs, celebrities, academics and commentators, or politicians.

A new study of 14,678 deepfake videos by cybersecurity company Deeptrace suggests otherwise. Deepfakes may generate millions of views, yet the great majority (96%) are pornographic and have little wider societal impact.

Of those that are not pornographic, such as Chinese deepfake face-swapping app Zao or a recent spoof of former Italian PM Matteo Renzi, most are designed to entertain. Only a tiny minority have been expressly designed to sow misinformation or disinformation, or to damage reputation.

The reputational threat of deepfakes

This may change all too soon. Deepfakes are increasingly realistic, freely available, and easy to make. Artificial voice company Lyrebird promises it can create a digital voice that sounds like you in a few minutes (even if my voice apparently proved less than straight-forward.)

It is surely only a matter of time before we see more regular instances of deepfakes damaging – directly or indirectly – companies, governments and individuals through false or misleading news stories, hoaxes and reputational attacks.

A recent example: controversial Canadian psychology professor Jordan Peterson recently found himself at the mercy of a website where anyone could generate clips of themselves talking in his voice, forcing him to threaten legal action. The simulator has since been taken offline.

In another case a political private secretary in the Malaysia government was arrested over a video allegedly showing him having illegal gay sex with the country’s minister of economic affairs. The country’s leader responded by saying the video was ‘cooked up’, but it remains unproven whether the video was manipulated.

Reputational risks of deepfakes for companies include:

A fake CEO town hall video regarding the new company strategy is ‘leaked’ to the outside world, allegedly by a short seller
The voice of a politician is used to manipulate a senior director into discussing allegations of corporate fraud
A fake recording of two executive board directors discussing the sexual habits of a colleague is used to blackmail the company
An outsider gains entrance to a secured office by impersonating the voice of a company employee.

Spread over the internet and social media and excavating distrust in institutions and deep geo-political tensions, the risks of malevolent deepfakes are only now starting to emerge.

While the likelihood of a deepfake attack remains low in the short-term, and impact remains hard to quantify, every organisation would be wise to start considering what it may mean for its name and image.

Deepfakes are only one form of AI, though arguably pose the most direct reputational risk.

Visit the AIAAIC Repository to understand the risks of AI, algorithms and automation.

How to manage reputational risk

July 3, 2019

Corporate reputation, Reputation management, Reputation risk management

Leave a comment

Last week I had the fortune to be invited to speak on the topic of reputational risk management to MBA students and assorted internal auditors, risk managers, HR and communications executives at the Othman Yeop Abdullah Graduate School of Business at the Universiti Utara Malaysia in Kuala Lumpur.

Reputation risk may not be as high up the agenda of boards of directors and management teams in Malaysia as in some other countries, but it has gained importance in recent years due largely to two major crises:

the 1MDB scandal that led directly to the overturning of the Malaysian government, the arrest and forthcoming trial of former prime minister Najib Razak, fraud investigations in 10+ countries, and criminal charges laid against Goldman Sachs and two of its former employees
and the various woes befalling Malaysia Airlines (here’s my take on the mystery of MH370 from an online/social media perspective; if you haven’t already, I strongly recommend you read this in The Atlantic for what may well be the last word on the tragedy).

Whilst unresolved, both crises helped erode confidence and trust in institutions in Malaysia and raised (and continue to raise) legitimate questions about how Malaysia Inc – which is still largely dominated by a few family-controlled businesses – operates.

Accordingly, companies (especially government-owned or linked ones) and parts of government and civil society are actively considering the extent to which they are exposed to reputational risks, and thinking harder about how these should be minimised and managed.

The whys and hows of effective reputation risk management

Predicting and managing reputational risks poses a wealth of tricky questions and challenges – amongst them:

How should reputation risk be defined?
What are the primary drivers of corporate reputation?
What forms do these risks take?
Who is responsible for an organisation’s overall reputation?
Who should own corporate reputation on a day-to-day basis?
What role(s) should communications and marketing play in reputation risk management?
How best measure, track and report reputational threats?
Why can leaders be reluctant to get to the root of reputational issues?

I tackled these and other challenges in my presentation, setting out solutions based on my professional experience, research and observation.

Here are my slides:

Risky Business: The Whys and Hows of Effective Reputational Risk Management from Charlie Pownall

Fortunately, trust in Malaysia appears to have been restored to some degree over the last eighteen months.

However it is clear that organisations based in Malaysia – and elsewhere – continue to grapple with the strategic, governance and operational challenges reputation risk management inevitably raises.

Most read articles on reputation and crisis communications in 2014

January 1, 2015

Corporate reputation, Crisis communications, Online reputation management, Reputation management

Leave a comment

With MH370, MH17 and now QX8501, food safety and health scares in China, ongoing supply chain issues, hacks aplenty, popular protests in Taiwan and Hong Kong and terrorist attacks in Australia and China, it has been a busy year for public relations and crisis communications professionals across Asia.

Here are the most popular articles published to this blog over the past twelve months.

1. Malaysia Airlines, MH370 and social media crisis communications
2. Change communications and social media
3. Safeguarding corporate reputation in social media
4. Why your online reputation is not your reputation
5. Customers at the core? McDonald’s messes up its crisis messages
6. Crisis communications in Malaysia
7. How to handle online defamation
8. Assessing the Hong Kong government’s communications during Occupy Central
9. Asia’s most reputable companies
10. What’s the right social media strategy?

With traffic to the blog up 35% over 2013, I’m encouraged to keep plugging away on these topics.

If you’ve any suggestions, I am all ears.

Best wishes for a smooth and prosperous 2015!

Crisis communications in Malaysia

November 23, 2014

Crisis communications, Digital & social media communications

1 Comment

Visiting Kuala Lumpur this week to speak on crisis communications at a PR conference I was struck by the extent to which the MH370 and MH17 disasters hung in the air like one of the capital’s putrid summer smogs.

Why, many continue to wonder, were the airline and government not better prepared?

I was fortunate to spend time with the (local Chinese-Malaysian) head of marketing at a well-known international cosmetics brand who told me that the reason the official response to MH370 left much to be desired is as much cultural and societal as political and operational.

For one, she said, Malaysians place great importance on maintaining ‘face’ and, despite or perhaps because of the many ethnic and religious schisms in the country, will do much to avoid conflict and shame and ensure the outward appearance of a harmonious society.

Second, Malaysians are a naturally garrulous people but can be poor listeners.

Third, Malaysians generally live for the moment and few prepare ahead, something perhaps evident in the very high levels of household debt in the country.

Being in the moment can bring much-needed perspective to a crisis. However thorough preparation makes mindfulness all the more powerful.

Here’s my presentation:

And here’s my take on Malaysia Airline’s response to MH370.

Malaysia Airlines MH370 and social media crisis communications

May 20, 2014

Crisis communications, Digital & social media communications, Government communications, Reputation management

Leave a comment

It is over two months since Malaysia Airlines (MAS) flight MH370 disappeared. With the plane still missing and no convincing explanation as to what may have happened the dreadful saga remains a riddle wrapped in a mystery inside an enigma.

Could MAS’ use of social media have made it any less extraordinary? Might social technologies even have helped solve the riddle?

Needing to book a flight to Kuala Lumpur I found myself back on the airline’s website today for the first time in many weeks and from the raft of promotions, a banner extolling its five star status, the booking engine, the message the airline wants to push is clearly one of ‘business as usual’.

This is understandable given the carrier’s worst quarterly results for years, a 20% slump in its share price and a collapse in passenger numbers since the incident. But it is hardly reassuring when you find yourself having to look hard for a reference to flight MH370, even if your eyes are drawn eventually to a small banner tucked down the left side of the homepage.

Najib Razak, Prime Minister of Malaysia, was recently quoted as saying “In the first few days after the plane disappeared, we were so focused on trying to find the aircraft that we did not prioritize our communications.” Given the extraordinary circumstances, the pressure to find the airline was intense.

However, Razak is correct about the official communications response, which was slow, frequently confusing and which suffered from too many spokespeople, some of which appeared not to have been trained for the media scrum, some with a tendency for passive-aggressiveness.

In addition, while they did some things pretty well, the airline and government’s use of the internet and social media could have been much more effective. What went well? And what could have been improved?

What went well

Access. Malaysia Airlines swiftly switched on an emergency dark site that provided journalists, family members and others with a one-stop resource on the incident, replete with news releases, passenger register and contact details in both English and Chinese.
Consistency. All MAS’ social media channels were used to communicate during the crisis, specifically Twitter, Facebook and Google+, with a consistent approach taken across them.
Tone. All marketing and promotions were suspended (though recently re-introduced). And the mastheads of all MAS’ digital and social properties were blanked out.

What could have been done better

Speed. MAS’ social accounts were first updated several hours after the incident, and an hour after its first official statement. Thereafter, its social media accounts continued to be updated sometime after its ‘offline’ statements were issued. Today, social media should be the first line of communication, not the last
Tone. Abbreviated press release headlines cannot and should not replace the human voice that social media demands. While consistency across media can be a good thing, social media should be used principally to convey empathy and re-build trust amongst the broader public, not as a tool for pushing templated news.
Content. Many maps, videos and audio recordings were shared during the daily crisis press conferences, yet virtually none of this valuable information was used online by MAS or the Malaysian government. Contrast this with the approach taken (and still being taken) by BP during its Mexico oil spill crisis.
Visibility. The #MH370 hashtag was quickly adopted by users on Twitter and elsewhere. And while the hashtag was used on the Wall of Hope (pictured above) at the airport and elsewhere, MAS made no effort to ensure its communications were part of the online conversation streams.
Control. Given the wildly open-ended nature of the investigation, it is hardly surprising that MH370 narrative was shaped by rumour, innuendo and misleading information. But MAS and the Malaysian government did little to rebut demonstrably misleading information or false rumours circulating online. Nor does have they done anything about the hundreds of fake social media accounts that are being used to spread malware, humble MAS and solicit donations (ie. steal user data).

Overall, both MAS and the Malaysian government appeared to be trying to manage the MH370 narrative primarily through traditional media, while using social media to push news in large part as they had existing official accounts and had to use them. But, in reality, MAS and the government had lost control of the story, something that became clearer the longer the plane was missing.

Nobody likes to be seen to lose control. But these were truly exceptional circumstances and while high-quality analysis of the data available about the flight was undoubtedly being done by Inmarsat and others, there also appears to have been some strong data collection, analysis and thinking going on between ‘unofficial’ (ie. unaffiliated to MAS or the official investigation team) by transport and technology experts across the world.

What could have changed the game

The Fukushima earthquake and nuclear fall-out demonstrated the benefits of ordinary people, nuclear experts and journalists sharing information and knowledge in the aftermath of a disaster, even if the Japanese government was made to appear out of touch and manipulative.

Like Fukushima, conspiracy theories swirled (and continue to swirl) across all forms of media in the aftermath of MH370. Malaysian officials could have learned the lessons of Fukushima and approached the crowd as something to work with rather than against, by:

Openly encouraging members of the public to send in photographs and other documentary evidence.
Making official data and analysis about the plane’s flight public.
Encouraging and even supporting plausible third-party crowdsourcing efforts.

By being truly open, Malaysian authorities could have had a better chance of finding the plane, reducing misinformation and, perhaps perversely, regaining control of the narrative. Such a move would certainly have helped re-build trust with the families of the bereaved.

Instead, Malaysia Inc. appears out of touch, poorly organised, and secretive.

—

UPDATE: the Malaysian government and Inmarsat have agreed to make MH370 satellite data available

—Charlie Pownall 查理·保诺

Reputation management and communications

Archive

Tag Archives: Malaysia

Why deepfakes should be on the reputational radar

The reputational threat of deepfakes

Like this:

How to manage reputational risk

The whys and hows of effective reputation risk management

Like this:

Most read articles on reputation and crisis communications in 2014

Like this:

The reputational threat of deepfakes

Share this:

Like this:

The whys and hows of effective reputation risk management

Share this:

Like this:

Share this:

Like this:

Share this:

Like this:

What went well

What could have been done better

What could have changed the game

Share this:

Like this: