Virtualized Camera Detection

MAD identifies attempts at camera virtualization, interception, or hooking on the device, a practice in which the legitimate capture stream is replaced by images or videos coming from files, manipulated streams, or external sources.

This type of technique is widely used in frauds involving synthetic identity, deepfakes, and media manipulation, with the aim of circumventing authentication processes that rely on visual evidence, such as liveness proofs, facial biometrics, and document validations in KYC (Know Your Customer) procedures.

Technical Mechanism: MAD inspects the characteristics and behavior of the camera in use to verify whether the video stream originates from the device's physical sensor. The solution analyzes camera and capture-environment properties, identifying common inconsistencies in virtualized cameras.

Upon detecting signs of manipulation or substitution of the video stream, MAD immediately applies the configured protection measures and reports the event in real time to the Command Center, ensuring the integrity of validation and authentication processes.