• en

    • How to Spot and Stop an AI Voice Cloning Scam

    Scam Trends
    #Phishing & Identity Theft
    Copied
    Header

    Author: Adam Collins

    March 25, 2026

    In a Nutshell

    • Establish a "safe word" with your family to verify identities during unexpected calls.
    • Ask the caller a specific, personal question that an AI or a stranger wouldn't know.
    • Hang up immediately and call the person back on their known, trusted phone number.
    • Never send money via gift cards, wire transfers, or cryptocurrency during a "crisis" call.

    According to the McAfee 2026 State of the Scamiverse report, consumers now spend an average of three work weeks per year (114 hours) simply trying to verify if digital messages and calls are real. You might receive a frantic call from a grandchild claiming they are in a "foreign jail" or a daughter crying after a "horrific car accident." While these "emergency scams" are old, the technology has changed; you are no longer hearing a stranger, but a perfect digital replica of your loved one’s voice.

    Scammers only need three seconds of audio to clone a voice using AI—a threat that has seen a 900% annual growth according to recent industry data. As INTERPOL's 2026 Global Threat Assessment warns, "Agentic AI" can now autonomously plan and execute these campaigns by stealing audio from videos you post on TikTok or Instagram. They create "deepfake audio" that mimics the pitch, accent, and emotional inflection of someone you trust. You are not just being lied to; your biology is being exploited to trigger a panic response that bypasses your common sense.

    Establish a family safe word

    AI can mimic the sound of a voice, but it cannot read your mind or access private family memories. You should choose a specific word or phrase that is never shared on social media or written in emails. If you receive a suspicious "emergency" call, ask for the safe word immediately to verify the caller's identity.

    This simple check creates a "hard stop" for a scammer who is relying on speed and emotion to keep you off-balance. If they cannot provide the word, you know the person on the other end is a digital ghost. This is the most effective way to defeat an AI voice cloning scam before it costs you money.

    Ask a personal question

    Scammers use "vishing"—voice phishing—to pull information from your social media profiles, but they rarely know the small details of your daily life. You should ask a question like "What did we have for dinner last Tuesday?" or "What is the name of our first pet?" AI tools and human scammers alike will usually stumble or try to redirect the conversation back to the "emergency."

    They will use "pressure phrases" like "I need the money only today" or "please don't tell mom" to prevent you from thinking clearly. If the caller becomes aggressive or dismissive when you ask for details, it is a sign of a script. A real person in trouble will try to answer you; a scammer will try to scare you.

    Hang up and call back

    Scammers use "caller ID spoofing" to make it look like the call is coming from a loved one’s actual phone number. You cannot trust the name on your screen because technology allows criminals to mask their true location. The safest move is to end the call and dial the person’s number directly from your contact list.

    Pro-tip for 2026: Do not just hit "Redial." Manually select the contact from your address book to ensure you aren't being routed back to the scammer. If the person doesn't answer, call another family member or a friend who might be with them to verify their location.

    Verify the payment method

    Legitimate authorities, such as police or hospitals, will never demand payment via gift cards, wire transfers, or cryptocurrency. If a "lawyer" or "officer" gets on the phone demanding "guaranteed returns" of a loved one for a specific fee, it is a scam. These payment methods are chosen because they are nearly impossible to reverse once the money is sent.

    You should treat any request for immediate, untraceable payment as a massive red flag. Even if the voice sounds exactly like your child, the demand for "Bitcoin" or "Apple Gift Cards" is the hallmark of a criminal operation. This is where the digital mask usually slips.

    Maintaining a healthy level of skepticism is the only way to navigate a world where your own ears can be deceived. If you encounter one of these calls, report the incident to the Federal Trade Commission (FTC) and your local police department to help track these evolving threats. In the age of AI, a familiar voice is no longer proof of a familiar person.

    Adam Collins is a cybersecurity researcher at ScamAdviser who operates under a pseudonym for privacy and security. With over four years on the digital frontlines and 1,500+ days spent deconstructing thousands of fraud schemes, he specialises in translating complex threats into actionable advice. His mission: exposing red flags so you can navigate the web with confidence.

    Report a Scam!

    Have you fallen for a hoax, bought a fake product? Report the site and warn others!

    Report a Scam!

    Scam Categories

    Help & Info

    Scam AlertsLearn ScamsReliable SitesAdvicesStudiesGlobal Scams
    See all

    Top Safety Picks

    Your Go-To Tools for Online Safety
    Disclaimer: Some of the links here are affiliate links. If you click them and make a purchase, we may earn a commission at no extra cost to you.

    1. ScamAdviser App - iOS : Your personal scam detector, on the go! Check website safety, report scams, and get instant alerts. Available on iOS
    2. ScamAdviser App - Android : Your personal scam detector, on the go! Check website safety, report scams, and get instant alerts. Available on Android.
    3. NordVPN : NordVPN keeps your connection private and secure whether you are at home, traveling, or streaming from another country. It protects your data, blocks unwanted ads and trackers, and helps you access your paid subscriptions anywhere. Try it Today!
    4. Incogni : Incogni automatically removes your personal data from data brokers that trade in personal information online, helping reduce scam and identity theft risks without the hassle of manual opt-outs. Reclaim your privacy now!

    Popular Stories

    7 Best VPN Services for Security, Speed, and Privacy

    In a nutshell: A good VPN protects your privacy with strong encryption, a strict no-logs policy, and fast protocols like WireGuard. The best VPNs also offer wide server coverage, leak protection, and easy-to-use apps for all devices. For 2025, the top providers are NordVPN, ExpressVPN, Surfshark, Proton VPN, Private Internet Access, CyberGhost, and Mullvad—each excelling in speed, security, or value. In an age where every click is tracked, a Virtual Private Network (VPN) is no longer just a luxury—it's an essential tool for digital privacy and security. A VPN works by creating a secure, encrypted tunnel between your device and the internet, masking your real IP address and protecting your sensitive data from prying eyes. But with hundreds of providers out there, how do you sort the secure from the suspect? This guide breaks down the non-negotiable features of a quality VPN and highlights the 7 top-rated services for 2025. What to Look for in a Good VPN: The 4 Non-Negotiable Pillars 1. Ironclad Security Features Strong Encryption: AES-256, the gold standard. Secure Protocols: OpenVPN, WireGuard, NordLynx, Lightway. Avoid PPTP. Kill Switch: Ensures no accidental IP leaks. Leak Protection: Covers DNS, IPv6, and WebRTC. 2. Verified Privacy Practices No-Logs Policy: No activity or metadata tracking. Independent Audits: Verification by third parties. Safe Jurisdiction: Prefer countries outside the 5/9/14 Eyes alliances. 3. High-Speed Performance Fast Protocols: WireGuard and equivalents. Large Server Network: Less crowding, more reliable speeds. 4. Essential Usability Features Multi-Device Apps: Windows, Mac, iOS, Android, routers. Simultaneous Connections: One account, many devices. Unblocking Power: Netflix, Hulu, BBC

    Read more

    Data Breach Victim? Your Emergency Action Plan Starts Now

    How to Protect Yourself and Your Family After a Data Breach When Your Data Falls Into the Wrong Hands Just received that terrifying notification? Or perhaps you've noticed suspicious activity in your accounts? Take a deep breath. A data breach, the unauthorized access or exposure of sensitive, protected, or confidential data, is a deeply unsettling event. It can plunge you into a world of worry, bringing risks from financial losses and identity theft to significant emotional distress and reputational damage. The numbers don't lie: according to a 2024 report, the number of data breach victim notices has grown by a staggering 211% year-over-year. This isn't just a distant threat; it's a stark reality many individuals face. This year alone, we've seen major organizations like Adidas and Qantas grapple with high-profile data breaches, affecting countless customers. This underscores a critical truth: nobody is untouchable. Subsequently, strategic action is the only way to minimize the risk and protect your future. This guide is your emergency action plan, designed to walk you through every crucial step—from confirming the breach to fortifying your digital life for the long term. Part 1: Confirming the Breach and Understanding the Damage The very first step is to answer the question definitively: Was my data compromised, and if so, how badly? Start with the basics: Check Official NotificationsReputable companies are legally obligated to inform you if your data was part of a breach. Look for official emails, letters, or public announcements. Check Verified Breach DatabasesPlatforms like HaveIBeenPwned help you see if

    Read more