What to do if I shared my OTP in a KYC scam?

Immediately contact your bank to report the issue and block your account. Call SBI at 1800-11-1109 or HDFC at 1800-202-6161. Additionally, report the incident at the cybercrime helpline 1930.

How can I identify this specific Live Video KYC Deepfake Swap Scam?

Look for signs such as glitchy video frames or strange facial movements during live calls. If the representative seems scripted and evasive, it's likely a scam.

How do I report this type of scam in India?

Use the cybercrime helpline at 1930 or visit cybercrime.gov.in to file a report. You should also inform your bank about any suspicious activity.

How can I recover money or protect my accounts after this scam?

Change all passwords for your financial accounts, inform your bank of the fraud without delay, and follow their instructions regarding account security.

Live Video KYC Deepfake Swap Scam

Verdict: Suspicious | Risk Score: 8/10 | Severity: high

Category: KYC, OTP, Loan App

How Live Video KYC Deepfake Swap Scam Works

Overview: This scam targets banking customers and onboarding officials by using virtual video manipulation to bypass live video KYC checks. Fraudsters use deepfake animations or face swaps during liveness verification, fooling both humans and automated systems. The scam is highly sophisticated, rapidly spreading to Indian digital banking channels, and puts both financial institutions and common account holders at risk. Victims may find fraudulent loans or suspicious accounts opened in their name. How It Works: The fraudster acquires a virtual camera application, often found on online black markets or messaging apps like Telegram. During a scheduled video KYC session—now mandatory in many Indian banks—the attacker feeds a pre-made deepfake video or real-time face-swapped video through the virtual camera. If the system's liveness check isn't robust, the fake video passes as genuine and the fraudulent identity is approved. This enables scammers to open accounts, move funds, or raise instant digital loans. India Angle: Indian banks, fintech platforms, and lending apps rolling out digital-only onboarding are most exposed, especially in metros and tier-2 cities where remote verification is common. Hindi, English, and regional language support are exploited to imitate local customers. Deepfake tools have been seen promoted directly to Indian fraudsters claiming "works with Indian banks!". Real Examples: A South Delhi fintech agent receives a video KYC session with an applicant who seems normal. However, subtle glitches—a slight delay, odd eye movement—are present. Days later, the account is used to launder ₹12 lakhs. In Pune, several zero-transaction accounts undergo video KYC in quick succession, each with a unique yet slightly off face. Red Flags: - Video lags, glitches, or sudden session restarts during live KYC - Unnatural facial features, odd blinking, or inconsistent lighting - Applicants repeat scripts or seem overly rehearsed - System reports "technical error," then quickly "successful" Protective Measures: Do not trust video alone—banks and businesses should layer in additional checks like OTP validation, device fingerprinting, and in-person verification for large accounts. Watch out for applicants clearly reading a script. Customers should only use bank-approved video apps and not share KYC links publicly. If Victimised: Inform your bank immediately, call helpline 1930, and complain at cybercrime.gov.in. Alert authorities if you suspect your image or documents have been misused. Freeze impacted accounts and monitor your credit report. Related Scams: PRE-recorded video KYC submission scam, bank employee impersonation video calls, AI voice fraud using synthetic speech.

How This Scam Works — Detailed Explanation

The Live Video KYC Deepfake Swap Scam begins with fraudsters identifying potential victims, primarily targeting individuals who have recently engaged in online banking or financial services that require KYC verification. Cybercriminals often approach victims through popular messaging platforms like WhatsApp, where they impersonate bank officials or customer service representatives. They might send messages claiming that the user needs to complete their KYC verification urgently to avoid account suspension, creating a sense of panic. The scammers leverage various social engineering techniques, such as using fake phone numbers that appear legitimate, thus further deceiving victims into trusting their intent. Once the victim is engaged, they direct them to a fake KYC video verification link that resembles the genuine processes used by banks.

To execute the scam, the perpetrators employ advanced deepfake technology to manipulate videos. This involves creating a synthetic video that may feature a trusted representative or even the victim's own likeness, employing generic stock footage that could easily mislead automated KYC verification systems as well as human validators. As the victim participates in the live video chat, they may notice bizarre elements, such as unnatural facial movements, lighting inconsistencies, or scripted and awkward responses. Scammers often reinforce trust by using phrases that indicate urgency, like, "We have a technical error that necessitates your immediate confirmation to fix this issue," which psychologically pressures the victim into compliance. The tactic exploits urgency and the victims' trust in established institutions, making them less likely to second-guess the situation.

Once the victim has complied with the deepfake KYC, they may soon find their details abused in various ways. For instance, a person could discover that a loan has been taken out in their name without their knowledge, or they might notice suspicious accounts being created under their Aadhaar or UPI details. In many cases, victims have reported unauthorized transactions from their bank accounts shortly after these incidents. An alarming statistic revealed by the Reserve Bank of India (RBI) indicates that losses from similar scams have surged, with victims collectively losing ₹500 crore in just the last year. Such alarming figures underline the importance of vigilance and active reporting during such scams.

The real-world impact of the Live Video KYC Deepfake Swap Scam is significant. The consequences extend beyond financial loss to emotional distress, as individuals grapple with the violation of their privacy and security. Moreover, this scam's implications ripple through financial institutions as they struggle against the growing threat of digital fraud under the advisories set by CERT-In and guidelines from the RBI. Victims often require substantial recovery time, both financially and psychologically. With institutions striving to implement stringent measures, the ongoing threat necessitates continuous awareness and proactive behavior from every bank account holder.

To spot a fraudulent KYC communication, individuals should be vigilant for certain red flags, such as unnatural facial movements, session glitches, or unexpected restarts during the video liveness check. Additionally, victims should take note of any sentiment of urgency communicated by the person on the other side that pushes for rapid approval or confirmations. By maintaining an awareness of these warning signs, potential victims can distinguish between genuine communications from banks and fraud attempts. It is crucial for customers to verify the authenticity of such requests, ensuring they are interacting with a legitimate representative through known bank channels before giving out sensitive information.

Visual Intelligence:

BharatSecure's AI has identified this as a used in scams targeting Indian users.

Who Does Live Video KYC Deepfake Swap Scam Target?

General public across India

Red Flags — How to Identify Live Video KYC Deepfake Swap Scam

Unnatural facial movement or inconsistent lighting in video KYC
Session glitches or unexplained restarts during liveness check
Scripted or awkward responses from the applicant
Rapid approval following a 'technical error' message

What To Do If You Encounter Live Video KYC Deepfake Swap Scam

Report the incident immediately by calling the cybercrime helpline at 1930 or visiting cybercrime.gov.in.
Contact your bank's customer service for immediate assistance and to block any unauthorized transactions (SBI: 1800-11-1109; HDFC: 1800-202-6161).
Change your UPI PIN and secure your Aadhaar number to prevent further misuse.
Monitor your bank and financial accounts closely for any suspicious activity and report it.
Inform friends and family about the scam to avoid further victimization.
Follow-up with the authorities to ensure your report is processed.

How to Report Live Video KYC Deepfake Swap Scam in India

Call 1930 — National Cyber Crime Helpline (24x7)
File a complaint at cybercrime.gov.in
Contact your bank immediately if money was lost
Call RBI helpline: 14440 for banking fraud

Frequently Asked Questions

What to do if I shared my OTP in a KYC scam?: Immediately contact your bank to report the issue and block your account. Call SBI at 1800-11-1109 or HDFC at 1800-202-6161. Additionally, report the incident at the cybercrime helpline 1930.
How can I identify this specific Live Video KYC Deepfake Swap Scam?: Look for signs such as glitchy video frames or strange facial movements during live calls. If the representative seems scripted and evasive, it's likely a scam.
How do I report this type of scam in India?: Use the cybercrime helpline at 1930 or visit cybercrime.gov.in to file a report. You should also inform your bank about any suspicious activity.
How can I recover money or protect my accounts after this scam?: Change all passwords for your financial accounts, inform your bank of the fraud without delay, and follow their instructions regarding account security.

Verify Any Suspicious Message

Check any suspicious message, link, or call for free at bharatsecure.app. BharatSecure uses AI to detect scams in real-time and protect Indian users.