Attack Vectors

What and how generative AI techniques are used to deceive, impersonate and defraud.
Back to Attack Vectors

Live call audio injection

Audio
Corporate Fraud
Consumer Fraud

Live call audio injection inserts synthetic audio into an active VoIP, phone, or conference call stream. The injected audio reaches the listener with no visible sign that it’s not the real speaker.

Use cases: Live agent assist · Voice agents · Executive impersonation

How it works

  • Attackers compromise an endpoint, switch, or call routing layer to inject audio mid-stream
  • Synthetic speech is generated locally or pulled from a pre-rendered cache and timed to the conversation
  • Telephony codecs (G.711, G.729, AMR-WB, Opus) compress and decompress the audio, which can mask injected segments unless detection runs codec-aware

Where it shows up

  • Live executive impersonation on Zoom, Teams, or phone where the attacker injects synthetic responses
  • Conference call hijacking to insert false instructions during high-stakes meetings
  • Real-time fraud against contact center agents during transaction approvals
  • Compromised SIP trunks pushing synthetic voice into carrier-level calls
  • Insider attacks on PBX systems used to splice audio into recorded business calls