FBI Warns: Deepfake Kidnapping Scams Use AI to Fabricate Image ‘Proof’ for Extortion
Malefactors are increasingly exploiting photographs and video clips sourced from open platforms, presenting them as “evidence” of an alleged kidnapping. The FBI warns that criminals alter publicly available images to make them closely resemble real footage of a specific individual supposedly being held against their will, and then send these fabrications to family members along with threats. In many cases, the entire story is pure invention — the “victim” may be peacefully asleep at home, wholly unaware of the drama unfolding in their name. Yet investigators also note a far more troubling trend: fraudsters monitor reports of actual disappearances, select photographs of missing persons, and use them to exert pressure on families.
At its core, this scheme mirrors older telephone scams in which criminals preyed upon elderly people with tales of a relative in sudden distress. The offenders demanded money “for medical care” or “for release,” relying on the shock and confusion of the moment. Last year, the FBI received 357 complaints of similar incidents, with total losses reaching 2.7 million dollars. The modern iteration functions in much the same way, but augments the manipulation with fabricated “proof” that, at first glance, appears disturbingly authentic. The depicted individual often looks frightened, exhausted, or placed in unfamiliar surroundings — enough to make the recipient feel a palpable sense of danger.
This deception is made possible because nearly every person has a wealth of publicly accessible images online. Social platforms allow criminals to map a target’s social circle and identify their relatives. AI-powered tools enable them to alter facial expressions, backgrounds, or details within a photograph — and sometimes to generate entirely synthetic scenes. Yet, as specialists emphasize, careful scrutiny often reveals telltale flaws: characteristic features vanish, proportions become distorted, or subtle visual artifacts emerge.
To prevent recipients from calmly verifying an image’s authenticity, criminals frequently rely on self-destructing messages. The photograph disappears after only a few seconds, depriving the victim of time to compare it with genuine pictures or consult someone else. This race against the clock is a deliberate part of the scheme.
Cybersecurity analysts admit that even they occasionally encounter forgeries so sophisticated they nearly accept them as real. Meanwhile, underground markets now offer tools such as WormGPT, which assist criminals in writing phishing narratives, crafting manipulation scripts, and automating attacks.
To protect themselves and their loved ones, the FBI advises avoiding the disclosure of personal information while traveling and establishing a shared family code word known only to close relatives. Upon receiving a threatening message, one should attempt to contact the person mentioned — in most cases, this instantly reveals the scheme for what it is.
The Bureau also urges victims to preserve all received materials: take screenshots, record the phone screen, or, if possible, copy the conversation. Complaints should then be filed with the Internet Crime Complaint Center at ic3.gov, with a detailed description of the exchange — phone numbers, payment details, message text, voice recordings, and any images provided.
Such methods of deception have long since reached the corporate world as well. Companies increasingly encounter fake candidates applying for remote IT positions. The U.S. Department of Justice reports that one such network generated at least 88 million dollars over six years. In most cases, the trail leads to North Korea: individuals, using stolen identities, secure employment, work as developers, and funnel the earnings elsewhere. They are now aided not only by forged documents but also by generative tools capable of producing résumés, interview scripts, and even altered appearances during video calls. Thus employers may find themselves speaking to someone entirely different from the person they see on-screen.
But that, you must admit, is hardly the most frightening part.
Support Our Threat Intelligence
If you find our technology report and cybersecurity news helpful, consider supporting our work.
Buy Me a Coffee
PayPal
