Cybersecurity & Tech

Narrative Integrity Risk: The Next Frontier in Financial Stability

Chris Beall, Chris Blask, Jen Rosiere Reynolds
Tuesday, March 10, 2026, 9:44 AM

AI is already amplifying the destabilization of financial markets. 

Stock market chart. (Саша Алалыкин/Pexels, https://tinyurl.com/4jsxrkv5; Public Domain).
Meet The Authors
Subscribe to Lawfare

Increasing acceptance of and guessing about what might happen when the artificial intelligence (AI) bubble pops has become a popular parlor game. But what remains underdiscussed is that AI-enabled coordinated market manipulation is already well underway. It’s doing real damage—and it’s probably going to get worse.

Markets run on capital and on confidence. Today, that confidence is increasingly vulnerable to targeted manipulation. When narratives can be distorted at scale, narrative integrity becomes a direct risk to shareholders and market functioning.

Narrative integrity is the accuracy, authenticity, and resilience of online information and narratives, ensured by systems, processes, and organizational practices that protect them for sound decision-making. Generative AI accelerates the risk of narrative integrity.

Most firms still treat narrative manipulation as a communications hiccup rather than an adversarial threat. These are deliberate, adaptive attacks, capable of distorting valuations and eroding reputations. Recent reports from Marsh McLennan, Swiss Re, and World Economic Forum have already highlighted misinformation as a top global risk of instability driven by AI-accelerated narratives. The market consequence is clear: Firms that understand and anticipate narrative manipulation will outperform those that wait.

Narrative Integrity as a C-Suite Risk

The gap will widen between disciplined and complacent firms. Trust underpins liquidity and stability, yet most institutions detect destabilizing events only after the impact is underway. For example, true firm-specific data are reframed and sequenced to suggest imminent distress, accelerating depositor withdrawals beyond the firm’s actual risk.

Even with existing cyber and threat-intelligence functions, most firms operate in isolation from the wider ecosystem that specializes in tracking narrative integrity threats. The issue isn’t a lack of tools; it’s a lack of structured, investor-aligned readiness. These kinds of architectural approaches are being explored by nonprofits such as the Cyberpeace Foundation, university labs such as Carnegie Mellon’s CERT Coordination Center, and startups such as Logically and the Alethea Group alike, as part of a broader shift toward institutional resilience across cybersecurity.

Despite publications’ naming of these growing risks, many leaders lack a clear understanding of what preparedness should look like. The firms that get this right will win on cost of capital, investor confidence, and regulatory trust.

To achieve this, institutions need to make two changes.

First, institutions should expand the range of actors they monitor and learn from. These include technical experts, researchers, watchdog groups, threat-mapping and taxonomy initiatives that identify narrative-driven threats earlier and more accurately than most of their internal teams, among others. In many cases, the field’s most advanced understanding of these risks exists outside company staff or their connections.

Second, institutions must understand that they are operating in an adversarial environment. To succeed in this environment, these institutions need to build a threat architecture that enables leaders to quickly evaluate adversarial activity and act decisively. This architecture includes establishing a narrative baseline that can detect drift—a gradual shift away from an institution’s established story, values, or decision logic, often triggered by manipulated information or adversarial influence. It must also assess manipulated inputs and preserve trusted institutional memory even during accelerated attacks. A threat decision architecture enables C-suite leaders to make decisions when an active risk is deliberately trying to influence the company’s choices. Narrative integrity threats are driven by intentional actors with specific objectives who observe behavior, learn from responses, and adjust tactics in real time. Here, the likelihood of these threats is shaped by the dynamics of these interactions.

It’s Already Happening

The evidence is no longer hypothetical. The Financial Stability Board (FSB) confirmed that social media manipulation influenced depositor behavior—whether and how quickly depositors withdrew funds—during recent bank runs, accelerating liquidity pressure beyond what traditional controls could manage. These operations are cheap, fast, and borderless.

In March 2023, Silicon Valley Bank lost more than $42 billion in a single day. Before SVB failed, a large spike on Twitter by apparent depositors talked about the bank’s problems and how they planned to withdraw their money. Internet searches spiked and viral posts aligned closely with depositor behavior as withdrawals accelerated. The Financial Stability Board’s initial 2023 review of the bank failures focused primarily on resolution frameworks and supervisory tools, and did not examine the role of digital communication or social media dynamics—a limitation of scope rather than relevance. A subsequent Financial Stability Board analysis in October 2024 addressed this gap directly, finding that banks experiencing heightened pre-run social media discussion saw significantly sharper stock price declines, while unaffected global systemically important banks did not exhibit the same patterns. Credit Suisse faced similar dynamics: Negative social media posts preceded the first run, and in the second, viral activity occurred about one of the main shareholders not providing any more capital injections. Internet search spikes also aligned with depositor behavior. Banks with higher levels of online discussion saw sharper stock declines, but unaffected global systemically important banks did not see these patterns.

The implication is that markets now move on narrative cues that outpace institutional response. Malicious narratives can spread almost instantly, in coordinated ways; can target specific demographics; and can go undetected and gain traction. Artificial intelligence enables a flood of the ecosystem with convincing, high-volume deception at massive scale and with human-like plausibility, overwhelming the signal-to-noise ratio and making existing responses and structures inadequate.

Coordinated influence operations exploit speed and psychology in ways existing approaches do not fully address, using sophisticated narratives that blend emotional triggers, social proof, and automation to accelerate trust and action before defenders can react. These hybrid attacks also scale quickly: For example, researchers identified a coordinated Russian fraud campaign that deployed approximately 770 AI‑generated Facebook ads in under a month. The campaign used fabricated arrest images of prominent figures to lure victims in the Czech Republic and United Kingdom into crypto scams, revealing how financial theft and narrative manipulation can be intertwined at industrial scale. These tactics are usually associated with state-level influence campaigns, but they are now targeting corporations as well. In 2024, fraudsters used a deepfake video call of a CFO to deceive an employee of the U.K. firm Arup into transferring more than 20 million pounds, highlighting how narrative manipulation and executive impersonation are converging in high-trust operational settings.

Beyond Stability: A Competitiveness Imperative

This isn’t just about protecting market stability; it’s about protecting competitive advantage. Narrative integrity is emerging as a pillar of long-term resilience. A decade ago, cybersecurity shifted from a technical afterthought to a board-level risk. Narrative integrity is at that same inflection point. First movers, those who stress-test their systems, update governance, and understand the role of narrative manipulation, will outperform slower competitors. This advantage comes from testing how coordinated narrative attacks can affect liquidity, customer trust, and regulatory scrutiny; assigning clear C-suite ownership; and expanding partnership to external experts. It also requires treating narrative risk as adversarial and building decision systems that help leaders detect manipulation, assess narrative drift, and act decisively as threats evolve in real time.

Investors already reward resilience in cybersecurity because it signals disciplined leadership. The same dynamic will define narrative integrity. Firms that ignore it not only risk being exposed to more influence operations but will also be penalized by markets as peers signal stronger leadership, better risk management, and greater long-term stability.

Building a Threat-Intelligence Mindset

The path forward is practical, and already familiar to some institutional leaders. Tabletop exercises, long used in cybersecurity, are a low-cost way to build capacity against adversarial narrative integrity risk as they train decision-making, safely validate plans and governance, strengthen coordination, and rehearse responses under stress. And their value extends well beyond the exercises themselves. Properly executed, tabletop exercises are the on-ramp to what could be called a threat-decision architecture: a repeatable, disciplined cross-sector process of identifying, assessing, and responding to hostile narratives before they distort markets, decision-making, or public trust.

Intelligence assumes that the adversary observes you, learns from you, probes for weakness, and adapts. Your actions shape theirs, whether you intend them to or not. With narrative integrity, you are not managing hazards; you are confronting actors with goals. The “risk” is trying to out-think you. Most corporate risks, such as operational failures, market volatility, and even many cyber risks, are hazards: impersonal events with probabilities that can be modeled and mitigated. Narrative integrity is different because it involves intentional actors, people or groups with objectives, resources, and the ability to observe how you respond and adjust their tactics accordingly. In this context, risk isn’t static or random; it is strategic and adaptive, actively trying to influence decisions, behavior, and outcomes. A firm or company is not just reducing exposure; instead, it is competing against an opponent who learns, anticipates, and attempts to out-think leadership in real time.

Unlike traditional probability-impact grids, narrative attacks are intentional and adaptive. They require leaders to shift from forecasting events to asking themselves and their teams: Who is acting? What motivates them? What narratives might they escalate? How could their actions influence markets or internal decision-making?

In adversarial settings, the typical risk assessment formula “likelihood × impact = risk rating” fails because likelihood is endogenous. The threat is not a fixed input, but a function of interaction. It depends on what you do, what it believes you will do, and what it wants you to believe. There is no stable distribution. You are modeling decision-making under opposition. Intelligence deals in confidence with competing hypotheses and explicit uncertainty.

In an era of adversarial information warfare, institutional preparedness can no longer stop at the firewall or the press release. In intelligence-driven planning, threats are environmental conditions. They are not mitigated away; they adapt. The question is then: Given these threats, what actions remain viable? And rather than reducing exposure, you must consider which actions remain possible, sustainable, and reversible when the adversary is thinking back.

Existing research on influence operations provides structured methodologies for detecting and assessing narrative threats before they impact institutions. For instance, the Carnegie Endowment’s Partnership for Countering Influence Operations published investigative guides for mapping cross-platform narrative campaigns and companion policy briefs outlining institutional response strategies. Yet most firms remain misaligned. Leadership teams still dismiss information manipulation as noise or public relations flare-ups, assuming markets are too efficient to be swayed by rumor. Crisis communications units are forced into reactive mode but lack intelligence-grade tooling or protocols. Meanwhile, cybersecurity teams are trained to detect system vulnerabilities, not to triage AI-generated deepfakes of their CEO or adversarial narratives seeded on Telegram.

To bridge this gap, oversight bodies like the Securities Exchange Commission and Financial Stability Board should begin stress-testing narrative resilience as a core component of institutional preparedness. That means simulating real-world scenarios, viral rumors about liquidity, coordinated attacks on executives, or synthetic media campaigns, to evaluate how decision-makers detect and respond under pressure. Just as cyber or liquidity stress tests surface technical or financial weak points, narrative resilience tabletop exercises reveal gaps in governance: Who owns the message? Can teams distinguish manipulation from organic concern? Are coordination and decision protocols fast and credible enough? For both regulators and firms, it’s no longer just about messaging; it’s about safeguarding decision integrity in contested information environments.

The Call to Action

Financial stability depends on information integrity: the ability to trust the signals that drive markets. The challenge is to recognize and respond to narrative integrity threats before they distort valuations or accelerate liquidity stress.

Senior leaders must begin treating narrative manipulation as an adversarial, intelligence-driven financial risk—a core market threat. AI-enabled narratives already influence liquidity, valuations, and depositor behavior. This is not a future scenario, but a live force shaping markets in real time. Narrative integrity belongs in the C-suite and boardroom, embedded in governance, risk, and capital allocation decisions.

Firms cannot remain institutionally isolated; the strongest early warning signals and analysis often sit outside their walls, requiring active engagement with external experts. They must also build adversarial-ready systems, processes, and rehearsed decision-making designed for opponents who adapt, learn, and attempt to influence executive judgment as events unfold.

Narrative integrity is the next frontier; firms that act first gain a competitive edge, boost investor confidence, and lead in safeguarding market trust.

Those that wait for the next crises risk lost trust, higher funding costs, and regulatory scrutiny. Those that move first can strengthen resilience, earn investor confidence, and secure durable competitive advantage.

Topics:
Cybersecurity & Tech
Back to Top
Chris Beall

Chris Beall

Read More
Chris Beall is a Senior Fellow at the Montreal Institute for Global Security, where his work focuses on information integrity, democratic resilience, and governance in contested information environments. He is also President of QuietWire Canada and Director of Partnerships and Communities (Global) at QuietWire, leading efforts to build sovereign, community-embedded civic AI systems that preserve institutional memory and support human decision-making under pressure. With over two decades of experience spanning policy, civil society, and technology, Chris has led and advised initiatives that bridge sectors and geographies to strengthen democratic institutions against foreign interference and disinformation. He is Chief Relationship Officer at the DISARM Foundation and founded Project CONNIE, a global initiative dedicated to connecting and supporting networks defending the democratic information space. His previous roles include founding and leading Canada’s Digital Citizen Initiative, creating the Global Platform Governance Network at the Centre for International Governance Innovation, and supporting the Info Integrity Ukraine network with the Carnegie Endowment for International Peace. Chris regularly advises governments, multilateral institutions, and civil society organizations on strategies to build resilient information ecosystems and effective cross-sector collaboration in the face of complex democratic threats. He holds a doctorate from the University of Oxford.
Chris Blask

Chris Blask

Read More
Chris Blask is a technology strategist and civic resilience practitioner working at the intersection of cybersecurity, information integrity, and democratic governance. He is the co-founder and CEO of QuietWire, a company focused on operational memory, incident reconstruction, and dignity-preserving systems for governments, critical infrastructure operators, and civil society organizations.

Blask has spent more than three decades working in cybersecurity, infrastructure, and complex systems, including senior roles advising public and private sector organizations on supply-chain security, risk governance, and cyber-informed engineering. He has been an active participant in international cybersecurity and information integrity communities, including engagements with government agencies, standards bodies, and multilateral forums.

His current work centers on developing non-surveillance approaches to institutional memory and decision coherence, particularly in high-stress and conflict-adjacent environments, with deployments spanning North America, the Middle East, and international NGO contexts.

Jen Rosiere Reynolds

Jen Rosiere Reynolds

Read More
Jen Rosiere Reynolds is a technology and operations leader specializing in operational governance, high-stakes decision-making, and adversarial information environments. She builds and scales operating models, teams, and systems that translate strategy into reliable execution under pressure.

Jen spent over a decade in national security and intelligence, in both uniformed and agency roles. This experience informs her approach to AI/ML, systems design, and operational frameworks, bringing the rigor, discipline, and risk awareness required in complex, adversarial settings.

Across intelligence, academia, and applied technology, Jen has led cross-functional delivery teams, established governance and risk frameworks, and developed products that make complex systems dependable in practice. She is known for aligning stakeholders, clarifying priorities, and driving execution in ambiguous, high-stakes environments.

Some of her favorite work has included helping stand up the Center for Social Media, AI, and Politics at NYU, and leading a software and ML initiative in partnership with Princeton University and the Carnegie Endowment for International Peace, creating tools to analyze the information environment. Jen holds a master’s degree in government from Johns Hopkins University.

}

Subscribe to Lawfare