MANILA, Philippines — The science-based biometric solutions provider iProov has discovered a surge in attacks related to identity verification systems.
Its annual Threat Intelligence Report 2025 reveals trends that take advantage of ID verification measures.
First, native camera attacks have become a primary threat vector. These are malicious camera apps found in mainstream app stores.
Removing them from the app platforms is ineffective as they remain available in third-party sources.
As a result, native camera threats have skyrocketed by 2,665% in 2024.
Second, 2024 had 300% more face swap proliferation incidents compared to 2023.
The iProov report says hackers take advantage of active liveness detection found in e-wallets and other apps.
Cybercriminals see them as “‘low-hanging fruit” because pre-recorded or synthetic videos can replicate their challenge-response patterns.
In other words, a hacker could generate a video featuring a victim’s likeness to pass live camera checks that ask users to move their heads or blink.
Aside from face swaps, image-to-video conversion is becoming one of the most common methods for manipulating real-time ID verification.
It uses artificial intelligence to turn static pictures into video content that is convincing enough to fool these security measures.
Image-to-video conversion is a two-step process that delivers high-quality results without advanced technical expertise.
As a result, they pose a significant threat to most remote identity verification systems.
Lastly, iProov identified 31 additional online attack-as-a-service communities. They offer software capabilities via cloud servers, allowing attackers to access sophisticated tools at lower costs.
The groups have 34,965 total users and the largest has 6,400 users. Also, their attack methods focus on know-your-customer bypass, deepfakes, and Android-specific tools.