What to do if I shared my Aadhaar details in a deepfake scam?

Immediately contact your bank to freeze any related accounts and report the incident to UIDAI. Also, consider filing a complaint at cybercrime.gov.in.

How can I identify a deepfake during the onboarding process?

Look for signs such as unnatural facial movements, inconsistent lighting, or a video that doesn't quite match your environment.

How to report a deepfake scam in India?

You should report the scam through the cybercrime helpline at 1930 or visit cybercrime.gov.in to file an online complaint.

What steps should I take to recover money lost in a deepfake scam?

Contact your bank immediately to report the fraud, gather transaction details, and follow directives from the bank for potential recovery options.

Deepfake Liveness Bypass Scam in Bank Onboarding

INDIA — By BharatSecure Threat Intelligence Team · Updated May 28, 2026

Verdict: Suspicious | Risk Score: 9/10 | Severity: critical

Category: UPI, WhatsApp, KYC

How Deepfake Liveness Bypass Scam in Bank Onboarding Works

Overview: In recent times, cybercriminals in India have started leveraging deepfake technology—AI-generated, highly realistic fake videos or selfies—to trick banks and fintech companies during the digital onboarding process. Targeting anyone opening accounts using online 'liveness' checks, these scams are particularly dangerous because they directly threaten the security of India’s expanding digital banking ecosystem by enabling fraudulent onboarding that may escape even vigilant staff. Once these scammers succeed, accounts can be used for laundering money or enabling additional crimes in your name. How It Works: 1. The fraudster acquires your basic details (sometimes from leaks or social media). 2. Using AI, they generate a video or series of images matching your face. 3. During online KYC, where a 'live selfie' or facial movement check is mandated, the scammer streams a deepfake video through virtual camera tools. These videos mimic blinking, head turns, or other required actions. 4. The bank’s automated system or distracted human checker is tricked into believing the video is authentic, allowing the fraudster to bypass the KYC process. India Angle: Indian fintech and banking apps—especially those using Aadhaar, PAN, and UPI platforms—are being targeted. This scam has been reported from tier-1 cities like Mumbai, Bengaluru, and Delhi, as well as rural onboarding initiatives via CSC centres. It is especially prevalent where verification is remote and no in-person review occurs. Young professionals, busy students, and the digitally active are frequent targets. Real Examples: - "Congratulations! Your savings account is now open. If this wasn't you, please contact customer care immediately." - WhatsApp from a new number: "Bank verification needed. Please confirm by clicking the link and following live selfie instructions." Red Flags: 1. Very smooth or unnatural facial movements in live selfie checks. 2. Lighting in the selfie or video feed doesn’t match the room/ambient scene. 3. Repeated login and selfie failures, then a sudden pass. 4. Bank statements showing accounts you're unaware of. Protective Measures: - Never share OTPs or personal documents digitally unless through verified bank portals. - Regularly review your credit report and bank accounts for unknown activity. - If prompted to do an unexpected live selfie check, verify directly with your bank. - Contact your bank immediately if receiving new account alerts you didn’t request. If Victimised: - Call the national fraud helpline 1930. - Report the incident at cybercrime.gov.in. - Inform your bank and block suspicious accounts promptly. Related Scams: - Deepfake-based loan applications - Synthetic identity KYC fraud - Mobile number takeover via fake KYC

How This Scam Works — Detailed Explanation

In the evolving landscape of digital banking in India, scammers have exploited cutting-edge technology to launch the 'Deepfake Liveness Bypass Scam in Bank Onboarding.' Cybercriminals frequently target individuals looking to open bank accounts online. Platforms such as WhatsApp and social media sites like Facebook and Instagram are often used to lure potential victims. These con artists may present themselves as trustworthy fintech representatives, using enticing offers or promotions to gain the trust of unsuspecting users. Once a victim expresses interest, they are guided through the digital onboarding process, during which they are required to perform a liveness check to verify their identity.

As victims engage in these onboarding activities, scammers employ sophisticated tactics involving deepfake technology. They create hyper-realistic fake videos that imitate the appearance and movements of the victim, bypassing the facial recognition systems used by banks. Psychological tricks are crucial in this process; scammers often leverage urgency, claiming that the victim must complete the verification process quickly to secure a limited-time offer. Additionally, they might use fear tactics, such as threatening that refusal to comply will result in their account being locked. This heightens the pressure on victims, making them more likely to fall prey to the scam.

Once the victim has submitted their information, including personal details linked to Aadhaar or UPI accounts, the consequences can be staggering. As victims attempt to complete the onboarding process, scammers may initiate fraudulent transactions, draining their bank accounts or using the victim’s identity to create dummy accounts for further fraudulent activities. Real-life incidents show that victims in India have lost huge sums—given that UPI is widely used, the potential loss from such scams can run into several crore rupees, with some estimates suggesting that individuals have lost as much as ₹5 crore combined in the past few months due to deepfake-related scams. This demonstrates that even the most robust security measures can be rendered ineffective when faced with advanced technology.

The repercussions extend beyond the financial losses to victims; they mentally suffer from breaches of trust and security. Reports indicate that the Ministry of Home Affairs (MHA) and the Reserve Bank of India (RBI) are becoming increasingly concerned about the prevalence of these scams amidst a digital setup promoting ease of banking. The National Payments Corporation of India (NPCI) has issued advisories on the vulnerabilities of digital onboarding processes due to the rise of deepfake technology. As technology advances, so must the awareness and understanding of these potential threats among users, fintech companies, and banks alike.

To distinguish between a legitimate communication and a potential scam, individuals should be vigilant about specific red flags. For instance, a victim might notice unnatural facial movements during the selfie verification phase, or the lighting in the video may mismatch the environment it's purported to be in. If they identify these discrepancies or find their selfie retries followed by unexpected successes, they are likely dealing with scammers. Becoming aware of these nuances can help users protect themselves against this growing threat effectively.

Visual Intelligence:

BharatSecure's AI has identified this as a used in scams targeting Indian users.

Who Does Deepfake Liveness Bypass Scam in Bank Onboarding Target?

General public across India

Red Flags — How to Identify Deepfake Liveness Bypass Scam in Bank Onboarding

Unnaturally smooth or robotic facial motions in selfie/video checks
Mismatch between lighting in the video and your environment
Unfamiliar or unrecognised bank account openings
Live selfie retries followed by unexpected success

What To Do If You Encounter Deepfake Liveness Bypass Scam in Bank Onboarding

Report any suspicious onboarding attempt immediately by contacting the cybercrime helpline at 1930 or visiting cybercrime.gov.in.
Freeze your bank account by calling the helpline of your bank—SBI at 1800-11-1109 or HDFC at 1800-202-6161.
Contact your local police station to file a report regarding the fraudulent activity.
Gather any evidence, such as messages or screenshots, to present to authorities for further investigation.
Regularly update your security settings on bank apps and enable additional verification processes where available.
Stay informed about the latest cyber threats and scams by regularly checking advisories from NPCI and CERT-In.

How to Report Deepfake Liveness Bypass Scam in Bank Onboarding in India

Call 1930 — National Cyber Crime Helpline (24x7)
File a complaint at cybercrime.gov.in
Contact your bank immediately if money was lost
Call RBI helpline: 14440 for banking fraud

Frequently Asked Questions

What to do if I shared my Aadhaar details in a deepfake scam?: Immediately contact your bank to freeze any related accounts and report the incident to UIDAI. Also, consider filing a complaint at cybercrime.gov.in.
How can I identify a deepfake during the onboarding process?: Look for signs such as unnatural facial movements, inconsistent lighting, or a video that doesn't quite match your environment.
How to report a deepfake scam in India?: You should report the scam through the cybercrime helpline at 1930 or visit cybercrime.gov.in to file an online complaint.
What steps should I take to recover money lost in a deepfake scam?: Contact your bank immediately to report the fraud, gather transaction details, and follow directives from the bank for potential recovery options.

Related Scams in India

Verify Any Suspicious Message

Check any suspicious message, link, or call for free at bharatsecure.app. BharatSecure uses AI to detect scams in real-time and protect Indian users.