ScamWatch

If you feel you're being scammed in United States: Contact the Federal Trade Commission (FTC) at 1-877-382-4357 or report online at reportfraud.ftc.gov

Deepfake Phone Calls and AI Voices: How Scammers Use Synthetic Media to Steal Identities

Close-up of a typewriter with the word Deepfake typed on paper. Concept of technology and media.

Introduction: Why AI-Generated Calls Are a New Fraud Threat

Scammers are now using synthetic media—voice cloning, AI-generated audio, and deepfake recordings—to make phone calls that sound convincingly human. These calls can impersonate relatives, bosses, or government officials to persuade victims to transfer money, divulge credentials, or click malicious links. Authorities and consumer-protection agencies have issued repeated warnings as the scale and sophistication of these attacks grow.

How Deepfake Phone Scams Work (Real Techniques and Examples)

Scammers combine several tools and social-engineering techniques to make deepfake calls convincing:

  • Voice cloning: Using short audio samples (often taken from public videos or social media) to synthesize a target’s voice.
  • Context building: Follow-up SMS or emails provide context (e.g., "it's me, call me back") to lower suspicion.
  • Urgency and pressure: The caller creates an emergency or legal threat to force immediate action.
  • Credential capture: The call redirects victims to fake websites or asks for verification codes and passwords.

High-profile incidents and government alerts underscore the threat: multinational firms and individuals have been tricked into large transfers after realistic audio/video impersonations, and the FBI has publicly warned about campaigns impersonating senior officials using AI-generated audio.

Spotting the Red Flags: Practical Steps to Verify Caller Authenticity

Technology is improving, but so are scammers. Use this checklist whenever a caller claims to be someone you know or a trusted authority:

  • Pause and verify: If the request is urgent or unusual, tell the caller you will call back using a number you already have—not a number they provide.
  • Ask for specific knowledge: Request a detail only the real person would know (a shared memory, a codeword, or a specific recent event).
  • Use a challenge-response: Ask the caller to repeat a phrase you choose or respond to a prearranged code phrase—researchers recommend challenge-response methods to detect real-time deepfakes.
  • Check the channel mismatch: If a voice call is followed by a link or asks for a multi-factor authentication code, treat this as suspicious—legitimate contacts rarely ask for codes or credentials over the phone.
  • Watch for unnatural audio artifacts: short glitches, odd prosody, or mismatched emotion can indicate synthetic audio (though high-quality clones are increasingly hard to distinguish).

Regulators and agencies have started to act: U.S. authorities and consumer-protection offices have issued alerts to consumers and businesses about AI-enabled telemarketing and impersonation scams, and some regulators have moved to restrict AI-generated robocalls.

If You’re Targeted: Immediate Steps and Reporting

If you suspect a deepfake call or have already responded, take these steps quickly:

  1. Stop further contact: Do not give more information, codes, or money.
  2. Secure accounts: Change passwords and revoke active sessions for email, banking, and social accounts; enable or reconfigure two-factor authentication using an authenticator app or hardware key rather than SMS where possible.
  3. Contact institutions directly: Call your bank, employer, or the relevant agency using verified numbers to notify them of the incident.
  4. Document everything: Save recordings, message transcripts, caller ID details, and times—this helps law enforcement and your bank.
  5. Report the scam: File complaints with the FBI’s Internet Crime Complaint Center (IC3), the Federal Trade Commission (FTC), and your state attorney general’s office. Local consumer-protection offices and telephone carriers may also help block numbers and trace calls.

When fraud causes financial loss, act quickly—banks and payment services may be able to freeze or reverse transactions if alerted promptly.

Final note: Synthetic-media scams are an evolving threat. Defense requires both cautious behavior by individuals and better detection and policy measures from businesses and regulators. Research into automated screening and human-in-the-loop challenge-response systems shows promise, but staying alert, verifying out-of-band, and reporting suspicious calls remain the most effective protections for most people today.

Related Articles

Smiling woman having a video call in a home-like setting with laptop.

Vendor‑Invoice Scams Using AI Voices and Deepfakes: The New Face of BEC

Confident black woman in red dress makes a phone call in an office setting.

Fake Job Interviews Conducted by Bots: Red Flags Employers and Job-Seekers Should Know

Happy family celebrating move into new home with unpacked boxes.

When a Celebrity 'Endorses' a Crypto: Real AI-Endorsed Token Scams (2025)