The Three-Second Theft: Why AI Voice Fraud Outruns Every Defence

(smarterarticles.co.uk)

72 points | by dxs 1 hour ago

14 comments

  • offsign 45 minutes ago
    Sounds like AI is just greasing the wheels of a long established 'grandparent scam'... goes something like this:

    1) voice one: young adult calls, sobbing 2) grandparent inquires with a name... "Ben, is that you?" 3) voice one: "Yes grandma, it's me, Ben... I'm in trouble, please don't tell mom 4) voice two: "Hello, I'm attorney..."

    My grandmother fell victim to this almost 20 years ago, which only stopped when Western Union refused to let her continue sending wires... she was forced to call her daughter (at which point they just called my brother.)

    Our takeaway (at the time)... the voice doesn't even need to be terribly accurate, since the original interaction is brief / somewhat inaudible over the tears. Typically just requires an older vulnerable adult, a lucky strike with the initial setup (e.g. grandparent actually has a grandkid), and a lot of high pressure / duress salesmanship.

    • Foobar8568 30 minutes ago
      I told my parents that I will never ask for money, doesn't matter the situation, even with live video, it's trivial to generate live audio and video nowadays.

      I hope they got the message.

      • saidnooneever 7 minutes ago
        i agreed key phrases. id recommend it. something unrelated to the family and totally arbitrary, agreedupon only verbally. (or write it down for them if they are old and memory is an issue. you can remind them to read your note out loud.. easy).

        this way, you do not footgun yourself in the event you'd ever need to ask something. Money isnt the only thing they can ask, and no one (i think) has a glass orb to tell their future and know for certain such a call would never happen. its easy to think it wont happen to you, i think that is most peoples' sentiment until it does. (having a need for help from family that is)

        • mikepurvis 2 minutes ago
          Key phrases make sense to put in place, but another easy safeguard is:

          "Before you send anything to anyone, ever, call them back. Doesn't matter if it's me, the bank, a lawyer, whatever... tell them 'hang on I have another call coming in, let me just call you back in a few minutes, okay?'"

      • abirch 23 minutes ago
        Fortunately for me, my parents wouldn't be able to get the live video working.
      • chrisjj 2 minutes ago
        [delayed]
    • psygn89 27 minutes ago
      I remember my JROTC instructor also running into that and how she said afterwards they have a secret phrase between them two as a way of verifying it's truly them.
      • throwaway89201 9 minutes ago
        It's very, very hard for untrained people to be strict about verifying any secret phrase. The attacker can make all kinds of excuses, while creating urgency, and many people quickly abandon verifying the phrase. A scene in One Battle After Another comes to mind.
        • ceejayoz 1 minute ago
          At some point, the scam evolves to a live video of a gagged loved one being tortured. "Stop wasting my time or they lose another finger."

          People aren't prepared for this shit.

    • saidnooneever 9 minutes ago
      lucky strike is the key here they can do this with VOIP really easily to massive amounts of numbers. its staggering amounts if you look at the traffic really. worst is if they proxy that via residential proxy services which often come from end-user / individuals phones so the traffic is hard to detect for carriers etc. since it looks like a regular VOIP app connection.
  • laszlojamf 2 minutes ago
    AI definitely amplifies this problem, but it's not like it didn't exist before. Old people get scammed the old way all the time too. My mom calls me every once in a while asking about some freebie offer that she gets emailed from sketchy domains claiming to be spotify or something.

    Not saying that "there's nothing we can do" or anything, but it does feel like this is one of those instincts that you develop growing up with the internet. Like, my first instinct reading that (and I hope getting that call) would be "what the hell is the lawyer doing at the scene". You have to treat _everything_ coming through your phone as potentially untrusted. I don't have any data on this, but it feels like my friends, and especially younger people, do that automatically.

    The primary defence against all phishing is to tell yourself: nothing is ever really that urgent. Nothing is ever that good.

  • imoverclocked 40 minutes ago
    So, you answer your phone to the scam and… now they have your voice too.

    Talking on the phone is now an unmitigated liability.

    • abirch 20 minutes ago
      A few years back, I would talk with scammers for a while to waste their time. Now I don't.

      LPT: Please have a codeword or phrase that you use with your loved ones so even if the scammers use your voice, they won't know the phrase.

      • TomK32 2 minutes ago
        I'm getting a lot of calls recently and don't give them more than a Hello and whatever music, radio show or Tour de France broadcast I'm listening to. Sometimes they hang in there for half a minute.
    • baxtr 5 minutes ago
      I somewhere read about a service that would use AI generated voices to combat these scam calls, basically talking to the forever. Forgot the name though...
    • gilleain 37 minutes ago
      The only solution? Answer the phone in an over the top comedy accent, such as Simpsons characters, or just whatever comes to mind.
      • matltc 16 minutes ago
        A terse, altered "Hello" is all I say. Sometimes I don't say anything. Most humans would wait a few seconds then prompt with "...Hello?", whereas bots tend to hang up after ~2s silence
      • andrepd 23 minutes ago
        I actually fucking do this, and have done for a year or two. Sad state of affairs.
  • fantasizr 5 minutes ago
    I've been waiting for a steelman argument why building the world's best deepfake machine is a good thing. Unironically cryptography could verify identity for all comms.
  • skybrian 50 minutes ago
    This blog is kind of an interesting hybrid:

    > Every article published on SmarterArticles is authored and editorially controlled by Tim Green. Artificial intelligence tools are used within a structured and supervised workflow as research and drafting instruments. All arguments, framing decisions, source selections, and final publication choices remain human-directed and under my full responsibility.

    There are references at the bottom, but I would have preferred direct links or footnotes within the article. Also, direct quotes are nice. I didn’t notice any glaring AI cliches.

    • rda2 8 minutes ago
      [delayed]
    • saaaaaam 6 minutes ago
      Interesting. To me it reeks of AI, and the first major tell was the first paragraph, at which point I stopped reading.

      > No human had. The crying had been synthesised from a fragment of audio, and the daughter she thought she was rescuing existed only as a pattern of numbers in someone else's machine.

    • aqfamnzc 18 minutes ago
      I suspect this is much more common than you're imagining. I think it'd be silly for publishers of any kind, really, to not use AI tools for things like fact checking and so on.
  • clcaev 9 minutes ago
    Is there an iOS app that lets you type with generated voice going to phone output stream? This must exist for the hearing impaired.

    My voice is on dozens of public videos so it's a bit late for me...

  • codedokode 23 minutes ago
    What are legitimate uses for copying someone's voice without permission? I see none. Those scientists are just helping criminals to fully automate scamming and governments to create fake videos.
    • AStrangeMorrow 11 minutes ago
      Well of course as you pointed out the legitimate one would be copying voices WITH permission (yours, someone you know who gives authorization, through contracts for movies/bots etc). The model can’t differentiate between voices for which you have permission or not.

      But more generally while recordings might be copyrighted, the voice itself isn’t so copying a voice isn’t a crime, at least as it currently stands. You cannot however use said voice for deceptive practices. You can however for advertisement (needs permission). And in the US you can for satire, at least in the US, withOUT permission (falls under the 1st amendment).

  • christkv 35 minutes ago
    We all have a safe word in the family just for this issue to identify if it´s the real person or not.
  • revolvingthrow 50 minutes ago
    The problem described in the article is unsolvable, given that a mid-range desktop from a few years ago can easily clone a voice that's convincing enough and there are no guardrails to those. Some silly KYC laws might limit a highschool kid making deepfakes of his crush, but once a model exists it's trivial to spread it around, and for organized groups to get ahold of those. Similar will happen with images, it's just that nobody with any serious money bothered releasing image gen models that compete with gemini or chatgpt -- but it's just a question of time. A year or three, what difference does it really make?

    As the cost goes down to near-zero you can scale it up almost infinitely, especially if the profits are high enough to get some smart people working on the problem, which going by the article is already the case ("INTERPOL's finding that AI-enhanced fraud is four and a half times more profitable than the traditional kind"; incidents rose by 26% last year). If AI does succeed on mutilating white collar work enough there will be a large supply of knowledge workers that might just join International Scam Co. rather than have their families go homeless. Drowning man clutching at straw and all.

    So if technologically it's impossible to prevent and societally it's impossible to prevent (like the attorney that got pwned same as the grandma), I'm not sure if there exists an answer that isn't worse than the thing it's supposed to prevent. I suppose we'll soon be in a situation where nothing we don't directly perceive in real life is provably true. That journalism and media in general seem to be in a deep crisis of trustworthiness means that you won't even get the benefit of the chain-of-trust as a proxy for whether something is or isn't real.

    Ignoring everything happening outside of your immediate surroundings is a choice, and probably even good for people's mental health, but my gut feeling is that it does make humanity as a whole dumber and disempowered. What does corruption matter if nobody cares, or even hears about it? It was AI generated by $current_enemy anyway; nothing to see here, citizen.

    • cogman10 31 minutes ago
      > The problem described in the article is unsolvable

      Well, not completely unsolvable. But nobody would like the solution.

      What all these scams rely on is a way to transfer money in an irrevocable fashion. Restrict that in meaningful ways and you end a lot of the abilities for these scams to operate.

      You could, for example, outlaw gift cards as a start. You could force the likes of Western Union to have a holding period before releasing money. Crypto would be hard as any regulation against it is pretty easily circumvented, but you could outlaw crypto currency exchanges (I'd worry less about crypto though as it's pretty hard for grandma to reliably setup).

      • loumf 12 minutes ago
        Also cash? Scammers will (and do) send a mule to your house to pick up boxes of cash.
        • cogman10 2 minutes ago
          You certainly could.

          There's a reason scammers rely heavily on things like gift cards, it's because hiring mules is expensive and creates a trail police can follow back to the scammers. It requires them to be in the same locale as the person they are scamming. Mailing cash is also pretty dicey for the scammers because you have to send the mail to a valid address. That becomes something police can trace.

          If you wanted to completely eliminate scams then yeah, you'd also outlaw cash.

    • tantalor 34 minutes ago
      Could be prevented by more advanced "AI detection", especially on calls from unknown numbers.

      It doesn't even have to be based on watermarking. It could be as simple as, "hold on a sec your AI countermeasure was listening and noticed you got this suspicious call, please be aware this may be a scam. Here is what you should do next..."

    • cik 37 minutes ago
      Yet all of this can be easily defeated with soft language. The basic check "what's the password/verification word" will defeat this every time. This is basically opsec that we taught my grandparents, who were in their 90s. Its doable.
      • hyperhello 19 minutes ago
        So they trick the kid out of the password first by calling them and pretending to be the parent.
      • tantalor 32 minutes ago
        Yes but that's more of a mitigation than prevention. It's an additional step, you have to remember to do it, and under the pressure of the situation you might easily forget to do it.
    • TacticalCoder 38 minutes ago
      I don't know about that but finding excuses for the scum of this earth is certainly not a solution.

      Take Europe for example: nobody dies of hunger in Europe. And yet there are plenty of thieves. People stealing tens of thousands, hundreds of thousands, millions of EUR aren't doing it to "feed their families".

      Think of the situation today. Think of the victims today. Instead of thinking of tomorrow's hypothetical situation where supposedly all the honest fathers out of work would join the crime syndicate, think of today's victims.

      Projecting your own insecurity about the future to excuse scummy behavior by the scum of this earth is of no help.

      There are people, right now, who have a roof. Who have a family. And who are fucking scums stealing the hard earned money of others because they choosed the easy life of crime.

      Zero tolerance for such motherfuckers. I care about the victims and you should too.

      • revolvingthrow 27 minutes ago
        Not sure I understand the argument.

        Obviously there are people who help themselves to others' money if given the chance no matter the circumstances. But if the circumstances change so that people DO start going hungry or homeless, which is a rather obvious side effect of AI-but-not-AGI maximalism brightly espoused by our overlords sama and amodei of the "I can’t wait to make half the knowledge workers worldwide obsolete" variety, the scale of the problem will obviously get worse, as well as the type of people you can get involved if you’re in the international scam market.

      • rightbyte 23 minutes ago
        > scum of the earth

        > fucking scums

        > Zero tolerance for such motherfuckers

        Who watches the watchers etc.

        We will just end up with some jingoist dude that will go after us instead.

        Slow reforms to regulate the banking industry with this "identity theft" nonsense...

  • chuckadams 1 hour ago
    One reasonably effective defense: "Okay, let me call you right back." Yes, there's always the whole "my phone is dead, I borrowed someone else's" or "I'm calling from a jail payphone", so I think it might become common practice to start making authentication phrases or "tell me something only we know".

    Another pillar of basic trust that's being eroded on an industrial scale. Sigh.

    • jonathanlydall 1 hour ago
      In practice this often doesn't work.

      Article said the imposter in this case claimed her phone had been confiscated.

      Fraudsters tend to also plan things such that the impersonated person can't be reached by phone at that time, either by choosing a time when they somehow know they're unavailable (e.g. impersonated person posted on social media they're boarding a plane) or in one case (12 years ago though) my SIL's parent's landline was bombarded with spam calls until they decided to leave the phone off the hook at which point the scammers phoned bank who couldn't reach the parents on their main line, of course this was the bank's problem (and there was probably an inside person facilitating) so they got their money back, but still a major inconvenience for the victim.

      Probably the only sure advice is to be exceptionally wary of phone calls with supposed extreme time pressures to send the money now.

      • ryandrake 40 minutes ago
        > Probably the only sure advice is to be exceptionally weary of phone calls with supposed extreme time pressures to send the money now.

        Quick note: you mean “wary” instead of “weary” there.

        • jihadjihad 32 minutes ago
          It's a very common error that happens in both written and spoken language. I've wondered if it's because weary is kind of "in between" wary and leery, like an incorrect mashup, or something.
        • jonathanlydall 29 minutes ago
          Appreciated and fixed. I'm a native English speaker, but I think not a word I often write.
    • pjc50 52 minutes ago
      > Another pillar of basic trust that's being eroded on an industrial scale.

      Remember, trust is like a rainforest: takes a long time to grow, provides a valuable ecosystem essential to human life, but can also be burned down for a quick profit.

    • wccrawford 1 hour ago
      The example in the article says the police took her phone. Then her "attorney" gets on to talk instead.

      Yes, having a secret code is probably the right answer. My wife's family always has, but mine doesn't. I suppose we should probably fix that.

      • sudb 1 hour ago
        For extra security against these text-to-speech model zero-shot clones, you might also want to use made-up gibberish words for which the pronunciation can't be reliably inferred from the spelling
    • dwa3592 1 hour ago
      me and my wife made up a word in 2024 for this. the word doesn't exist in any language. we say it to each other all the time. even if i give you the spelling for it, you will say it wrong. i recommend everyone to do something similar. i should do it with my parents too.
    • ActionHank 1 hour ago
      I mostly answer unknown calls with monotone "hello" and then wait for their introduction before talking normally.
      • ghaff 1 hour ago
        I mostly just don't answer them unless it seems like something that may be legit.
        • DANmode 53 minutes ago
          This is the only way to avoid validating your number for spam lists,

          and receiving more.

      • jonathanlydall 32 minutes ago
        I think it's a somewhat South African cultural thing, but when I get calls from businesses or spammers, the first thing the caller tends to say is "Hello, how are you?", which is completely stupid when you're calling someone who wouldn't know who you are, so it tends to immediately make me annoyed that they don't know that they should have introduced themselves first.

        As 99% of the time these are spam calls, I used to respond with something like "I'm fine, but who are you / do I know you?", but that was pretty much always inefficient as that might say their name (which from a spammer is useless information), maybe a sales pitch "how much do you spend on x?" or maybe something deliberately misleading about their company and saying something like <major brand name> even though they're some independent sales crowd getting commission selling contracts for them.

        Eventually I found that the most effective response is "Sorry. Where are you calling from and what is this in regard to?" which I've found without fail seems to surprise, disarm them and immediately elicit whether the call is a waste of my time. At which point I either become very friendly (because it's a call I'm expecting) or I simply respond with "Sorry, not interested, goodbye." and immediately put down the phone.

        I just want the disruption to be as minimal as possible and to not let myself even get an emotional reaction from it, so I don't want to get annoyed at them, never mind wasting time telling them off, besides, I suspect that my ruthlessly efficient getting rid of them without them even having a chance to try their pitch is received as a super cold shoulder, akin to being told to f-off.

    • briffle 1 hour ago
      our family has had a special 'code word' we have had since the kids were in elementary school. If someone ever needed to pick up our kids from school (they never did) our kids were taught to ask for that word.

      This is a good reminder that we should review that, since its been 10 years or so.

      • jasondigitized 27 minutes ago
        This. All of this is a solved problem. It's just not a thing that most families do and do regularly. Code word, insider info, etc. "Oh I am so sorry you got arrested Tommy. Before I wire the $, where did we go on vacation last year?'
    • croes 1 hour ago
      Family OTP helps against passphrase leakage
    • intended 1 hour ago
      The opening example is of a person listening to their daughter’s voice on an unknown number, how would calling them back help? Or am I missing something obvious?
    • etchalon 1 hour ago
      We're gonna need two-way passwords for conversations.

      Fun.

  • reactordev 1 hour ago
    What’s terrible is each time I am forced to call the bank, the more they try to tell me voice ID is secure and want me to provide my voice to authenticate. Never. Did ya’ll never play Uplink? With voice cloning as good as it is now, there’s no way a voice ID is secure enough for authentication.
    • tjoff 16 minutes ago
      My voice is my passport.

      (never heard of anyone actually using that in real life, sounds uttery insane)

    • Havoc 27 minutes ago
      Yeah my bank does the same except don’t think there is an opt out.

      Kinda crazy

      • reactordev 22 minutes ago
        Spam 0, you’ll eventually get some customer service agent
    • fouc 32 minutes ago
      name and shame the bank
  • chrisjj 3 minutes ago
    [delayed]
  • intended 1 hour ago
    [dead]
  • ThrowawayTestr 1 hour ago
    They make you give a voice sample now when you're arrested. You need to do so in order to use the phone.
    • dec0dedab0de 1 hour ago
      who is they?
      • ThrowawayTestr 55 minutes ago
        The US government
        • mrngld 22 minutes ago
          We (the people) have pushed body cams on almost all law enforcement at this point, which had a noble enough motivation behind it -- but we also have pushed for and have various public disclosure laws (also well intended!) that mean those body cams are torrents of data entering the public sphere if anyone simply asks for it.

          Now in the era of AI, this means anyone in the vicinity of an officer has a voice sample in the public domain, plus potentially their image.

          Complex issue. I like body cams, I like freedom of information laws, but don't love this particular outcome.

        • dec0dedab0de 44 minutes ago
          But which US governments? There are thousands of them, and they all have different policies.
          • ThrowawayTestr 21 minutes ago
            Montgomery County in Indiana, specific enough for you?