Payroll Diversion via Deepfake Audio Call

How Payroll Diversion via Deepfake Audio Call Works

Overview: Using AI voice synthesis, scammers create convincing deepfake calls that mimic an employee or senior manager’s voice, instructing HR to change salary bank details. This scam is dangerous as it can bypass standard phone/facial recognition checks and manipulate staff into believing the caller is genuine. How It Works: Fraudsters first gather voice samples from public or leaked sources. When the payday approaches, they call HR, using deepfake audio to request urgent changes to salary accounts, often citing bank issues or personal emergencies. Trusting it's the real employee or boss, the HR executive updates details, diverting salaries to scam-controlled accounts. India Angle: Voice-based payroll instructions are common in many traditional Indian businesses, where employees or founders may call in changes, especially in northern and western states. Scammers exploit language fluency and local dialects for authenticity. Real Examples: - Deepfake call: 'Hi, this is Sunil. Please urgently transfer my March salary to my new ICICI account – I emailed details.' Red Flags: - Unexpected payroll change requests over calls - Caller voice slightly odd or flat - Matching call with prior suspect email - Refusal to meet in person or confirm on video Protective Measures: Always verify sensitive requests via multiple channels—don’t rely on audio alone. Use code words or in-person confirmation for salary instructions. Educate staff about deepfake risks and train them to spot voice irregularities. If Victimised: Reverse fraudulent payroll changes immediately and alert HR, IT, and cybercrime authorities at 1930/cybercrime.gov.in. Related Scams: - Deepfake CEO payment fraud - WhatsApp voice note false instructions - Voice phishing for bank account changes

How This Scam Works — Detailed Explanation

Scammers exploit the trust within organizations by leveraging advanced AI technology to create deepfake audio calls. They scour public platforms such as social media, LinkedIn, and even leaked data repositories to collect voice samples of executives and employees. By using these samples, they can generate convincing audio that sounds remarkably similar to the targeted individual. These attacks frequently occur when payday is approaching, making HR personnel particularly vulnerable due to heightened stress and urgency regarding payroll tasks. The scammers typically initiate contact via WhatsApp or traditional phone calls, cloaked by a fabricated emergency that compels HR to act without proper verification.

Once contact is made, the scammers employ psychological tactics designed to manipulate their victims. They often create a sense of urgency, claiming immediate personal issues or complications that necessitate a quick change in bank detail updates for salary deposits. By pressing HR for rapid actions and utilizing an artificial intelligence-generated voice that sounds authentic, they can easily bypass typical trust barriers that would normally be met with skepticism. Moreover, the scammers might suppress any requests for secondary verification, effectively preventing HR from confirming the legitimacy of the request.

As the victim, HR staff must then navigate through a series of escalating steps that ultimately lead them to change their company’s payroll banking details — all based on a deepfake call. Consider, for instance, a case where a prominent software company in India lost ₹12 crore due to a payroll diversion scam that originated from a convincing deepfake call. Here, after receiving the directive from the so-called executive over the phone, HR followed the instructions precisely, believing they were protecting their organization. The payroll system was altered, and salaries were funneled into an account controlled by the fraudsters instead of the intended employees.

The impact of this kind of fraud is extensive and has been documented in several incidents across India. A report from the Ministry of Home Affairs indicated a significant surge in cybercrimes, with estimates showing that cyber fraud, including payroll diversions, accounted for losses exceeding ₹20,000 crore in 2022. Both the Reserve Bank of India and CERT-In have issued advisories warning businesses against the rising threat of deepfake technologies used in fraud schemes. As organizations increasingly rely on digital payroll solutions, they must remain vigilant about these sophisticated scams and train employees on how to identify them.

To differentiate a genuine call from a fraudulent one, employees can be taught to heed specific red flags. Genuine payroll requests typically will not be communicated exclusively over the phone, particularly when they relate to sensitive details like bank transfers. If the caller's voice sounds mechanical or unnatural, or if the urgency ties into vague personal issues, HR should exercise caution. Always insist on secondary verification measures rather than rushing into changes based solely on a phone call. Awareness and vigilance are crucial in combatting the rising threat posed by this type of cyber fraud.

Visual Intelligence:

BharatSecure's AI has identified this as a used in scams targeting Indian users.

Who Does Payroll Diversion via Deepfake Audio Call Target?

General public across India

Red Flags — How to Identify Payroll Diversion via Deepfake Audio Call

• Payroll change requests over call, not in person
• Voice sounds unnatural or robotic
• Urgency tied to personal issues
• Caller avoids secondary verification

What To Do If You Encounter Payroll Diversion via Deepfake Audio Call

1. Report the scam to the cybercrime helpline by dialing 1930 or visit cybercrime.gov.in.
2. Contact your bank immediately to alert them of potential fraudulent transfers and get guidance.
3. Notify your organization's management to investigate and halt further payroll processing.
4. Monitor bank transactions closely for any unauthorized activities related to salary accounts.
5. Educate your team on recognizing signs of deepfake audio scams to prevent future incidents.
6. Enhance internal procedures for payroll change requests to require strict verification protocols.

How to Report Payroll Diversion via Deepfake Audio Call in India

• Call 1930 — National Cyber Crime Helpline (24x7)
• File a complaint at cybercrime.gov.in
• Contact your bank immediately if money was lost
• Call RBI helpline: 14440 for banking fraud

Frequently Asked Questions

What to do if I received a suspicious payroll change request over a call?

Immediately verify the request by contacting the person through a different method, such as their official email or office phone. Report any concerns to 1930.

How can I tell if the call I received is from a deepfake scam?

Listen for unnatural or robotic voice tones, and insist on secondary verification before proceeding with sensitive requests.

How can I report a payroll diversion scam in India?

You can report the scam by calling 1930 and visiting cybercrime.gov.in. Additionally, notify your bank's fraud department.

Can I recover my money after falling for this scam?

Recovery often depends on the bank’s policies and the prompt reporting of the incident. Contact your bank and the relevant authorities as soon as possible to explore recovery options.

Related Scams in India

• AI Deepfake & Synthetic Document Scams
• AI Deepfake Bank Alert Scams
• AI Deepfake CEO Fraud (BEC Scam)
• AI Deepfake Exchange Impersonation
• AI Deepfake Executive Authorization Scam

Verify Any Suspicious Message

Check any suspicious message, link, or call for free at bharatsecure.app. BharatSecure uses AI to detect scams in real-time and protect Indian users.