In this episode of Cyber Security District, we sit down with Julius Muth, co-founder of Revel8, a fast-growing startup tackling one of the most urgent threats in modern cybersecurity: deepfake-powered social engineering.
Julius flew in from Berlin to join us in the Amsterdam studio and breaks down how attackers are already cloning voices, abusing call centers, and using multi-channel manipulation (email, WhatsApp, LinkedIn, video calls) to bypass technical defenses and target employees at scale.
We also get into how Revel8 scaled from early MVPs to large enterprise rollouts, the team’s operator DNA from Celonis, and their goal to build “10 million human firewalls.”
In this episode, we dive into:
Why deepfake voice phishing is exploding via service desks and call centers
The real-world deepfake fraud case that changed everything (25M USD)
How Revel8 personalizes awareness with role-based “playlist” simulations
Why time-to-first-report beats click rate as a security KPI
How Revel8 scaled fast: funding, enterprise rollouts, and culture
Key Takeaways:
Deepfakes turn trust signals (voice, video) into attack surfaces
Context-rich phishing is far more effective than generic campaigns
Awareness works best in short, relevant, continuous moments
Measure reporting behavior and speed, not “gotcha” click rates
Modern threats require modern training across every channel
Timestamps:
00:00 – Introduction
00:15 – Meet Julius Muth and Revel8’s mission
01:20 – Why deepfakes are a serious enterprise risk
02:30 – Voice phishing through service desks and call centers
04:00 – A real incident example and why it’s “hot” right now
04:45 – Founders’ background and the Celonis operator mindset
05:40 – Validating the market (100 handwritten letters)
07:10 – The deepfake fraud case: 25M USD and what it proved
09:20 – Social engineering is leveling up (multi-channel trust)
12:00 – The “podcast vote” scam and impersonation patterns
14:20 – From MVPs to enterprise: what changed after hiring a senior CTO
19:00 – Why traditional awareness training fails
23:40 – The “Spotify playlist” model: personalized learning journeys
26:00 – Turning real attacks into simulations
28:40 – Better KPIs: time-to-first-report and workforce sensors
31:10 – Modern payloads and “make the victim execute” tactics
34:40 – Scaling growth: team, cold-calling “Champions League,” and GTM
41:40 – Advisors, credibility, and enterprise access
45:00 – The goal of “10 million human firewalls”
46:10 – Why the name Revel8 (and the naming story)
48:40 – Hiring profile and what they look for
51:40 – Munich office move and what’s next
52:35 – Final message to CISOs
Podden och tillhörande omslagsbild på den här sidan tillhör
Cyber Security District. Innehållet i podden är skapat av Cyber Security District och inte av,
eller tillsammans med, Poddtoppen.