Deepfakes Exploit Video KYC, NBFCs Suffer ₹20 Crore Fraud Losses

Deepfake technology is undermining video-based identity verification systems as cybercriminals deploy artificial intelligence to create synthetic identities and manipulate digital records, leading to significant financial losses for non-banking financial companies.

The Rise of Deepfake-Enabled Fraud

Deepfake technology is undermining video-based identity verification systems as cybercriminals deploy artificial intelligence to create synthetic identities and manipulate digital records, leading to significant financial losses for non-banking financial companies. A prominent NBFC reportedly incurred damages ranging from ₹15 crore to ₹20 crore following fraudulent transactions facilitated by AI-generated credentials and forged documentation. This incident underscores the escalating risks posed by deepfake-enabled fraud in the financial sector.

AI-Driven Deception in Identity Verification

Artificial intelligence-driven deception is no longer confined to social media misinformation or digital impersonation. Cybercriminals are leveraging advanced algorithms to bypass critical identity verification protocols, particularly in video-based Know Your Customer (KYC) processes. Experts highlight that open-source AI models, accessible on consumer-grade hardware, are enabling fraudsters to produce highly realistic synthetic media. These tools, shared through underground networks, allow threat actors to generate convincing deepfakes without requiring specialized resources.

Breach of Video KYC Systems

The breach of video KYC systems involves multiple layers of manipulation. Attackers create fabricated identities using AI-generated facial features and altered documents, while techniques such as deepfake injection embed pre-recorded media into live camera feeds to circumvent liveness detection. Some deepfakes are capable of passing biometric checks designed to confirm a user’s physical presence during verification. This capability has exposed vulnerabilities in digital onboarding processes that rely heavily on facial recognition.

Evolving Threats and Industry Response

Industry analysts note that the financial sector’s reliance on single-factor authentication is insufficient against these evolving threats. Cybersecurity professionals emphasize the need for multi-layered security frameworks incorporating biometric validation, behavioral analytics, and real-time fraud detection. A former IPS officer and cybersecurity expert warns that AI-powered fraud is becoming a dominant threat, blending traditional tactics with synthetic media to create sophisticated attack vectors.

Regulatory and Technological Challenges

India’s cybercrime authorities have issued alerts regarding the increasing use of AI-driven techniques to exploit existing security gaps. The Reserve Bank of India’s annual report reveals a 46.4% surge in banking fraud cases between fiscal years 2025 and 2026, with ₹48,021 crore reported in fraudulent transactions. While not all incidents involve deepfakes, experts predict a growing correlation between AI advancements and identity-based financial crimes.

Implications Beyond Banking

The implications extend beyond banking and finance. E-commerce platforms, digital payment systems, and social media services face heightened risks as deepfake technology becomes more accessible. Organizations are urged to enhance verification protocols, while users are advised to exercise caution when sharing sensitive information. Technology firms are developing deepfake detection systems to identify manipulated content before it is used for fraudulent purposes. However, the rapid evolution of AI tools means the challenge of distinguishing synthetic media from genuine data remains a critical concern.

About Author

Anuj

See author's posts