Google Phone App Gains 'Fake Call Detection' to Combat Voice Cloning Scams
Google's Phone app on Android is rolling out a new feature to identify and warn users about calls where the caller is impersonating a known contact, particularly those using AI voice-cloning technology.
Android users are receiving a new layer of defense against sophisticated impersonation scams with the introduction of 'fake call detection' in the Phone by Google app. This feature aims to combat the growing threat of AI voice-cloning, often referred to as deepfake attacks, which scammers use to impersonate trusted contacts.
Scammers frequently employ tactics to bypass the common practice of ignoring unknown numbers. One prevalent method involves number spoofing, where calls are routed through internet-based software to appear as if they originate from a familiar contact. Compounding this, attackers are increasingly leveraging AI voice-cloning technology, which can mimic the voices of family members, employers, or other trusted individuals with just a few seconds of audio data scraped from public online sources.
While initially targeting individuals, especially older adults, with fake pleas for help from "relatives," these AI-powered voice scams are now expanding into business environments. They are being used for social engineering, fraud, and broader impersonation attacks, posing a significant risk to both personal and corporate security.
The "fake call detection" feature operates silently in the background, acting as a secure verification mechanism between two devices running the Phone by Google app on Android 12 or later. When a contact initiates a call, their device sends an encrypted, end-to-end confirmation signal via Rich Communication Services (RCS) to verify the call's legitimacy. This process is designed to be seamless for legitimate calls.
Should a scammer attempt to impersonate a contact, this initial confirmation signal will be absent. The recipient's device then queries the contact's device. If the contact's device reports that no outgoing call is active, the recipient's phone will display a warning. This alert informs the user that the call may be fraudulent and advises them to hang up, providing a critical moment for the user to reconsider the interaction.
This new security measure is enabled by default but can be disabled by users through the Phone by Google settings. While the app is preinstalled on many Android devices, users of alternative calling applications can download Phone by Google from the Play Store and set it as their default to benefit from this protection.
Google emphasizes that this feature is built upon the RCS framework, suggesting a potential for broader adoption by other applications and device manufacturers. This move signifies a proactive approach by Google to leverage its communication infrastructure to build more resilient defenses against evolving voice-based impersonation threats, particularly those amplified by artificial intelligence.
This new article provides further technical details on Google's 'fake call detection' feature, explaining that it leverages the RCS open standard and requires the Phone by Google, Contacts, and Google Messages apps with RCS enabled. It also highlights that the feature will be enabled by default on Android 12 and later devices, starting with Pixel devices, and emphasizes its role in combating both voice-cloning and traditional call spoofing tactics.