Pre-Settlement Flash Audit for WA Conveyancers: Detect Deepfake-Voice Wire Instructions Before Funds Move

The phone rings the afternoon before settlement. It sounds like your client — same accent, same cadence, same little verbal tic — calling to say the trust account details have changed and please use the new ones. You have a few minutes to decide. Synthetic-voice impersonation is now cheap enough that a single voicemail sample from LinkedIn or a property inspection video is enough source material. The Pre-Settlement Flash Audit is a one-shot diagnostic that reviews the voice-instruction chain on a specific settlement file against the verification obligations a WA subscriber is expected to meet.

Why it matters now

Under the Electronic Conveyancing National Law, every Subscriber on an electronic lodgment network — including conveyancers and settlement agents acting on a PEXA workspace — must comply with the Participation Rules determined by the Registrar in each jurisdiction. Those rules are derived from the ARNECC Model Participation Rules, currently at Version 7 (January 2024), and impose Verification of Identity and Client Authorisation requirements that the Subscriber must satisfy before signing and settling. A phone call from “the client” that changes payment instructions is, in substance, a change to the Subscriber’s record of client authority — and it must be verifiable to the same evidentiary standard as the original VOI. The Australian Cyber Security Centre publishes general guidance on voice cloning and impersonation at https://www.cyber.gov.au/, and the ACCC’s Scamwatch service tracks impersonation and payment-redirection scams at https://www.scamwatch.gov.au/. The combination of cheap voice synthesis and a process that is still partly built on phone calls means a WA conveyancer’s strongest defence is a documented verification step that does not depend on the caller sounding right.

The 5-minute view

• ARNECC Model Participation Rules Version 7 (January 2024) is the current model under which State Registrars determine the binding Participation Rules for each jurisdiction.
• Subscribers must conduct Verification of Identity and obtain a Client Authorisation that satisfies the reasonable-steps standard set in the Participation Rules; phone-only re-confirmation of changed payment details does not by itself satisfy that standard.
• Deepfake-voice attacks typically arrive in the 24–72 hours before settlement, attached to an “urgent” change in trust-account or payout details.
• Voice cloning models can now produce a convincing match from a sample as short as a minute of public audio.
• A defensible verification step is out-of-band: a callback to a number captured at VOI (not a number supplied in the suspect call), plus a written instruction on a known channel.
• A Pre-Settlement Flash Audit reviews the actual voice-instruction chain on one file and tests it against the verification-evidence position the Subscriber would need to defend if the file were examined.

What DRMO does about it

The Pre-Settlement Flash Audit is a single-transaction diagnostic delivered against one specific WA settlement file. You submit the file reference, the chain of voice and email correspondence relating to payment or authorisation instructions, and your existing VOI/Client Authorisation record. We run a fixed-scope review covering: whether the contact number used for any voice instruction matches the number captured at VOI, whether instruction changes were re-verified out-of-band on a channel independent of the channel the change arrived on, whether the evidence on file would meet the reasonable-steps standard implied by the ARNECC Model Participation Rules, and which deepfake-voice indicators are present in the correspondence chain. This is the same diagnostic that runs as Step 2 of the PEXA Pre-Settlement Shield engagement, productised here as the Pre-Settlement Flash Audit so a single file can be reviewed without a discovery call.

The deliverable

• 15-page PDF audit report scoped to one WA settlement file
• Executive summary with a Red / Amber / Green status and the recommended next action before funds release
• Per-indicator review of the voice-instruction chain with the underlying evidence cited
• Mapping of the verification record on file against the reasonable-steps position under the Participation Rules
• Out-of-band verification checklist for the settlement team to complete before signing the workspace
• Delivered via email within 1 business day of file submission and payment

CTA

Run the Pre-Settlement Flash Audit — AUD $499

A single-transaction productised offer. No discovery call required. Suitable for any WA conveyancing file where payment or authorisation instructions have been issued, confirmed, or changed by phone in the 7 days before settlement.

For ongoing protection across all transactions, book a 30-minute discovery call to scope an ongoing DRMO retainer.

Sources

1. Australian Registrars’ National Electronic Conveyancing Council — Model Participation Rules (Version 7, January 2024): https://www.arnecc.gov.au/publications/model-participation-rules/
2. Australian Cyber Security Centre — guidance on impersonation and synthetic-media threats (domain root): https://www.cyber.gov.au/
3. Australian Competition and Consumer Commission — Scamwatch (domain root for impersonation and payment-redirection scam categories): https://www.scamwatch.gov.au/
4. PEXA Group Limited — Subscriber and workspace documentation (domain root): https://www.pexa.com.au/

DRMO capability references:

• Pre-Settlement Shield (L3 Shield package, §Package 1) — internal service catalogue
• Pre-Settlement Flash Audit (L2 service shape) — internal surface-area matrix

This door is operational support for the verification obligations imposed on Subscribers under the Participation Rules. It is not legal advice on whether a specific transaction satisfies those rules.