What should I do if I think my identity has been stolen by a KYC scam?

Immediately report the incident to your bank's helpline, and also to the cybercrime helpline at 1930. Monitor your bank accounts for any unauthorized access.

How can I identify a deepfake KYC scam?

Look for unnatural facial expressions, audio-video mismatches, and odd aspects in the video call background that seem off.

How can I report this type of scam in India?

You can report the scam at cybercrime.gov.in, call the cybercrime helpline at 1930, and notify your bank about any suspicious activity.

If money is lost in this scam, what steps can I take?

Contact your bank immediately to report the fraudulent transactions, file a report at cybercrime.gov.in, and keep a record of all communications related to the incident for further investigation.

Deepfake Video KYC Liveness Bypass Scam

INDIA — By BharatSecure Threat Intelligence Team · Updated May 27, 2026

Verdict: Suspicious | Risk Score: 9/10 | Severity: critical

Category: UPI, KYC, Phishing

How Deepfake Video KYC Liveness Bypass Scam Works

Overview: With the advancement of artificial intelligence, some fraudsters are now using deepfake technology to trick the video KYC process used by Indian banks, NBFCs, and fintech companies. This scam targets individuals whose identity details have been stolen or who are unaware of how their data is misused. It is especially dangerous because it lets criminals open legitimate-seeming accounts using realistic but fake videos, putting both institutions and victims at risk. How It Works: The scammer first gathers personal data, either via phishing or buying from the dark web. Using this, they create AI-powered deepfake videos—these look like a real person is completing the KYC process. The fraudster then interacts with the onboarding platform, feeding these fake videos to pass the 'live' selfie or video call step. If the platform's liveness test is weak, it does not detect the fake, and the account is created in the victim’s name. India Angle: The scam takes advantage of fintechs and banks in India widely using remote onboarding and video KYC. With growing digital adoption across metros and towns, banks encourage customers to open accounts online via apps like Paytm, PhonePe, YONO SBI, or NBFC platforms. Fraudsters particularly exploit those with Aadhaar, PAN, and UPI-linked profiles, and target lenders in North and West India as well as urban professionals and gig workers. Real Examples: - “Hello, I am the applicant. See me blinking and moving my head as requested.” (deepfake video replayed to a loan app KYC bot) - A bank agent receives a video call where the applicant’s mouth and eyes seem slightly unnatural but all the answers are correct. Red Flags: - Minimal natural movement or unblinking stares in live video calls - Slightly off-face edges or lighting in selfies or recorded videos - Audio that seems out of sync with facial movement during KYC - Multiple onboarding attempts with similar device fingerprints - Applicant requests to redo KYC citing 'technical issues' Protective Measures: - Verify for natural blinking, head movement, and consistent speech - Cross-check facial features across all documents and selfies - Watch for anomalies in lighting or background consistency - Do not share selfie videos or live KYC codes with anyone - Use platforms with advanced liveness and device integrity checks If Victimised: - Collect all communication and screenshots if you suspect misuse - Report the incident to local police and the National Cybercrime Helpline (1930) - Lodge a complaint at cybercrime.gov.in and notify your bank/NBFC - Alert the RBI if your bank account was opened fraudulently Related Scams: - Synthetic identity onboarding with deepfake documents - Stolen Aadhaar or PAN misuse in remote account openings - API-injected KYC bypass attacks

How This Scam Works — Detailed Explanation

Scammers are increasingly using sophisticated techniques to target individuals in India, particularly through fake video KYC processes. These fraudsters often use online platforms such as social media, fake job portals, or targeted phishing emails to identify potential victims. Once they have chosen a victim, they may impersonate legitimate bank representatives or fintech companies to create a false sense of trust. The victim, anxious or excited about opening a new bank account or obtaining a loan, is then coaxed into engaging in a video KYC process where their personal details, such as Aadhaar numbers or UPI IDs, are collected.

The scammers employ various psychological tricks during this interaction to manipulate the victim's responses. They might explain that they need specific video confirmations for account verification, often putting unnecessary urgency on the process. To convince victims that the process is authentic, the fraudsters utilize deepfake technology to create a convincing video feed, often mimicking bank representatives with frightening accuracy. Victims often feel overwhelmed and under pressure, which diminishes their capacity to detect unusual behaviors during the video call. Some victims might even recognize something is off but dismiss their instincts due to the authority the scammers project.

Once the victim has submitted their video KYC, the criminals exploit this information by creating fake accounts using the victim's personal details, usually linked to UPI systems or Aadhaar. For instance, if a victim believes they are opening a legitimate account at a reputed bank like HDFC or SBI, they may unwittingly facilitate the establishment of an illegitimate account that siphons money once linked to their UPI. The cycle of deceit continues as these accounts are used to transfer funds quickly, making tracing the funds back to the original victim nearly impossible. Real incidents around India have shown how vast sums are lost, with reports indicating that over ₹500 crore has been lost in similar digital frauds just last year.

The impact of this scam on actual victims is severe, leading not only to financial losses but also emotional turmoil. Many victims report feeling violated, especially when their information has been used to open accounts that do not represent them. The risk extends beyond just the victims, as these scams threaten the integrity of the financial institutions themselves, creating trust issues among consumers whose details may also be at risk. Victims may find themselves locked out of genuine financial services while dealing with the aftermath of fraudulent activity. Government bodies like the Ministry of Home Affairs (MHA) and the Reserve Bank of India (RBI) have started to raise awareness of such scams, but as technology advances, the fight against these crimes grows tougher.

To differentiate between legitimate communications and scams, individuals should stay vigilant. Signs that might indicate a deepfake video KYC scam include unnatural or unblinking facial expressions in the video, mismatched mouth movements with the audio, odd lighting or backgrounds in the video stream, and frequently being asked to resubmit KYC videos. Furthermore, using the same device for multiple KYC attempts should raise red flags. Always engage in KYC processes through channels directly familiar and trusted, rather than following unsolicited messages or links. By understanding these nuances, Indian citizens can better protect themselves against this emerging threat.

Visual Intelligence:

BharatSecure's AI has identified this as a used in scams targeting Indian users.

Who Does Deepfake Video KYC Liveness Bypass Scam Target?

General public across India

Red Flags — How to Identify Deepfake Video KYC Liveness Bypass Scam

Unnatural or unblinking face in live KYC calls
Mouth movement not matching audio
Lighting or background looks odd in video
Frequent resubmission requests for KYC videos
Same device used for multiple KYC attempts

What To Do If You Encounter Deepfake Video KYC Liveness Bypass Scam

Report any suspicious KYC requests to the cybercrime helpline 1930 or through cybercrime.gov.in.
Verify the identity of any representative contacting you through official bank helplines like SBI 1800-11-1109 or HDFC 1800-202-6161.
Avoid sharing sensitive personal information during unsolicited calls or video chats.
Educate family members, especially the elderly, about the risks and signs of video KYC fraud.
Regularly monitor your bank statements and UPI transactions for any unauthorized activity.
Consider using biometric options for authentication wherever applicable to strengthen security.

How to Report Deepfake Video KYC Liveness Bypass Scam in India

Call 1930 — National Cyber Crime Helpline (24x7)
File a complaint at cybercrime.gov.in
Contact your bank immediately if money was lost
Call RBI helpline: 14440 for banking fraud

Frequently Asked Questions

What should I do if I think my identity has been stolen by a KYC scam?: Immediately report the incident to your bank's helpline, and also to the cybercrime helpline at 1930. Monitor your bank accounts for any unauthorized access.
How can I identify a deepfake KYC scam?: Look for unnatural facial expressions, audio-video mismatches, and odd aspects in the video call background that seem off.
How can I report this type of scam in India?: You can report the scam at cybercrime.gov.in, call the cybercrime helpline at 1930, and notify your bank about any suspicious activity.
If money is lost in this scam, what steps can I take?: Contact your bank immediately to report the fraudulent transactions, file a report at cybercrime.gov.in, and keep a record of all communications related to the incident for further investigation.

Related Scams in India

Verify Any Suspicious Message

Check any suspicious message, link, or call for free at bharatsecure.app. BharatSecure uses AI to detect scams in real-time and protect Indian users.