iProov annual report shows spike in online identity threats

iProov annual report shows spike in online identity threats

/ 03:51 PM February 27, 2025

MANILA, Philippines — The science-based biometric solutions provider iProov has discovered a surge in attacks related to identity verification systems. 

Its annual Threat Intelligence Report 2025 reveals trends that take advantage of ID verification measures.

READ: Deepfake quiz reveals only 0.1% can spot AI images and videos

First, native camera attacks have become a primary threat vector. These are malicious camera apps found in mainstream app stores.

FEATURED STORIES

Removing them from the app platforms is ineffective as they remain available in third-party sources. 

As a result, native camera threats have skyrocketed by 2,665% in 2024.

Second, 2024 had 300% more face swap proliferation incidents compared to 2023. 

Article continues after this advertisement

The iProov report says hackers take advantage of active liveness detection found in e-wallets and other apps. 

Article continues after this advertisement

Cybercriminals see them as “‘low-hanging fruit” because pre-recorded or synthetic videos can replicate their challenge-response patterns.

In other words, a hacker could generate a video featuring a victim’s likeness to pass live camera checks that ask users to move their heads or blink.

Article continues after this advertisement

Aside from face swaps, image-to-video conversion is becoming one of the most common methods for manipulating real-time ID verification.

It uses artificial intelligence to turn static pictures into video content that is convincing enough to fool these security measures. 

Image-to-video conversion is a two-step process that delivers high-quality results without advanced technical expertise. 

As a result, they pose a significant threat to most remote identity verification systems. 

Lastly, iProov identified 31 additional online attack-as-a-service communities. They offer software capabilities via cloud servers, allowing attackers to access sophisticated tools at lower costs. 

The groups have 34,965 total users and the largest has 6,400 users. Also, their attack methods focus on know-your-customer bypass, deepfakes, and Android-specific tools. 

Your subscription could not be saved. Please try again.
Your subscription has been successful.

Subscribe to our daily newsletter

By providing an email address. I agree to the Terms of Use and acknowledge that I have read the Privacy Policy.

The Philippine National Police Anti-Cybercrime Group also recorded 527 computer-related identity threats from January to May 2024.

TOPICS: technology
TAGS: technology

Your subscription could not be saved. Please try again.
Your subscription has been successful.

Subscribe to our newsletter!

By providing an email address. I agree to the Terms of Use and acknowledge that I have read the Privacy Policy.

© Copyright 1997-2025 INQUIRER.net | All Rights Reserved

This is an information message

We use cookies to enhance your experience. By continuing, you agree to our use of cookies. Learn more here.