// THE PROBLEM
The scam succeeded because the target could not verify whether the identity was real.
Across every attack vector — fake agencies, deepfake ads, peer-to-peer spoofing, marketplace fraud — the structural failure is identical. There is no authoritative registry to check.
$2.7B
US consumer losses to social media scams
FTC / Busey Bank, 2024
$1.3B
Annual cost to brands from influencer marketing fraud
AMA / CBS News
$1.25M
Single victim loss in the MrBeast "Team Water" syndicate
Entrepreneur Magazine, Sept 2025
3 days
Creator Vookum held in jail after wrongful arrest — law enforcement could not verify his identity
Men's Journal / ToI, March 2026
Core finding — Creator Impersonation Fraud Research Brief
"The fundamental failure across all these attack vectors is identical: the scam succeeded because the target could not mathematically or practically verify whether the creator-linked identity was real."
FameForecast Research, 2026
// Documented Cases — 2024–2026
CASE 01
Vookum — Wrongful Arrest at Newark Airport
3 days
Jail — general population
Signal Faked
Facebook Marketplace profile
Telegram account
Vookum branding
What Happened
A scammer created a Facebook Marketplace vendor profile and Telegram account using the branding of Tyler "Vookum" Mikorski — a major luxury watch influencer. A buyer purchased a $6,000 watch that was never delivered and filed a police report naming Tyler Mikorski. Investigators had no way to distinguish the fake profile from the real creator. A grand larceny warrant was issued. Mikorski was arrested at Newark airport while boarding a flight with his family. His mugshot was publicly circulated.
Why It Worked
No connection exists between a creator's social media identity and their marketplace identity. Law enforcement had no registry to query. The absence of an authoritative record made the real creator indistinguishable from the fraudster.
What CreatorRegister prevents: A verified marketplace identity link in the registry would have let law enforcement instantly confirm the Marketplace account was not part of Vookum's authorised identity graph — before the arrest warrant was issued.
CASE 02
MrBeast "Team Water" Syndicate
$1.25M
Wired in crypto — single victim
Signal Faked
WhatsApp identities
AI voice notes
Inner-circle group chat
What Happened
Erik Bergman — who had previously donated $1.2M to a genuine MrBeast campaign — was targeted via a fabricated "Team Water" initiative. Scammers constructed a WhatsApp group impersonating MrBeast, Mark Rober, Tobi Lütke, Adin Ross, and Ed Craven, using AI-generated voice notes to simulate exclusivity. Bergman wired $1.25M in cryptocurrency before noticing a tell: US-based influencers appearing on British phone numbers. MrBeast subsequently offered a $100,000 arrest bounty.
Why It Worked
Trusted platform status on YouTube and X does not extend to WhatsApp. Phone numbers carry no identity binding. There is no cross-platform directory of verified creator contact channels — so AI voice clones of real creators are indistinguishable from the real thing.
What CreatorRegister prevents: A registry entry listing MrBeast's verified contact channels would have immediately revealed that no "Team Water" WhatsApp group was part of his authorised identity — before a single dollar was sent.
CASE 03
Taylor Swift / Le Creuset Deepfake Campaign
$9.96
Entry fee + recurring charges + credential theft at scale
Signal Faked
AI video likeness
Synthetic voice
Paid ad placement
What Happened
AI-generated deepfake videos showed Taylor Swift supposedly giving away Le Creuset cookware due to a "packaging error" — deliberately exploiting her documented real affinity for the brand to add credibility. The videos ran as paid ads on Facebook and TikTok. Victims paid a $9.96 "shipping fee" which captured their full payment credentials and enrolled them in hidden recurring charges. Credential data was harvested at scale.
Why It Worked
Ad review systems check policy compliance, not likeness authorisation. There is no registry for ad networks to query to confirm whether a creator has authorised a specific campaign. The check that failed was not a moderation check — it was an identity check that does not yet exist.
What CreatorRegister prevents: An API-accessible likeness authorisation record would let ad networks verify in real time whether a creator has approved a campaign — before the ad goes live, not after victims have already paid.
CASE 04
The Jasmine / Steve_Nexus Portfolio Fraud
30 min
Platform response: "No violations found"
Signal Faked
Fake talent agency website
Creator portfolio
@pokimane growth assertion
What Happened
A fraudulent talent agency website asserted credit for major audience growth for @pokimane and listed numerous other real major creators across its portfolio as active clients. The site was actively soliciting brand deals. The entire credibility layer — scraped from public creator content — could be deployed in minutes. A detailed evidence report with screenshots was submitted to TikTok. The platform returned "No violations found" in under 30 minutes. The account stayed live.
Why It Worked
There is no public ledger of authorised creator representatives. Brands have no way to verify whether an agency actually represents the creators it lists. Manual platform reporting fails against scraped-content fraud — there is no policy violation in asserting representation of someone.
What CreatorRegister prevents: A registry entry listing a creator's authorised representatives would expose fraudulent agency assertions instantly — any agency not listed is unverified, and the ledger is queryable before a brand signs a contract.
// Why Platforms Cannot Solve This
The failure is structural, not operational.
Platforms are walled gardens
YouTube cannot see TikTok. TikTok cannot see Twitch. Each platform verifies identity only within its own silo. A creator's verified status on one platform carries zero weight on any other — by design.
Ad review checks compliance, not identity
When a deepfake ad is submitted, the review system asks: "Does this violate our policies?" It does not ask: "Did this creator authorise this content?" There is no mechanism to make that check because no likeness registry exists.
No public ledger of authorised representatives
Any party can assert that they represent any creator. There is no authoritative, queryable record of which agents, managers, or agencies a creator has authorised. The gap is exploited by every fake agency operating today.
Visual trust is trivially cloned
A verified badge confirms an account is the creator. It cannot confirm that a WhatsApp contact, a Marketplace listing, or an agency website is real. Visual trust signals stop at the platform boundary. That boundary is the attack surface.
// Attack Vector Reference
Five vectors. One structural failure.
| Vector | Target | Signal Faked | Core Vulnerability |
|---|---|---|---|
| Peer-to-Peer Spoofing | HNW individuals, fellow creators | DMs, voice notes, private group chats | No verified cross-platform contact directory |
| Deepfake Advertising | Mass consumers | AI likeness, vocal tone, paid ad placement | No likeness rights registry for ad networks |
| B2B Agency Fraud | Brands, agencies | Corporate credentials, fake talent portfolios | No public ledger of authorised representatives |
| Marketplace Impersonation | Retail consumers, law enforcement | E-commerce profiles, peer-to-peer listings | No link between social and commerce identity |
| Algorithmic Hijacking | Live-streaming audiences | Live broadcast status, username, archived content | Platforms cannot authenticate stream source |
The registry that should have existed.
CreatorRegister is a unified, cross-platform identity verification registry. An API-accessible ledger mapping a creator's verified identity to their authorised digital touchpoints, management representatives, and intellectual property.
Search the Registry