Attack Vectors

What and how generative AI techniques are used to deceive, impersonate and defraud.
Back to Attack Vectors

Voice biometric spoofing

Audio
Corporate Fraud
Consumer Fraud

Voice biometric spoofing uses synthetic or modified voice specifically tuned to defeat voice authentication systems. Where standard voice cloning aims to fool human listeners, biometric spoofing aims to fool the algorithm.

Use cases: Identity verification & KYC · Finance · Live agent assist

How it works

  • Attackers use cloned voices, voice conversion, or replayed audio crafted against a known biometric system
  • Generative tools fine-tuned on the target speaker can produce output that matches the acoustic features biometrics rely on
  • Adversarial audio adds imperceptible perturbations designed to push a biometric model toward a false accept

Where it shows up

  • Account takeover at banks using voice ID for self-service authentication
  • IVR bypass to access account details, change addresses, or initiate transfers
  • Defeat of voice liveness checks in remote identity verification
  • Insider attacks where former employees use captured voice samples against legacy biometric systems
  • Synthetic identity onboarding where the attacker enrolls a fabricated voice profile