Checkmate logo
Why Checkmate
Product
Resources
Contact
Book a demo

Synthetic candidate fraud is growing (here’s why you should care)

Fraud

You could be paying a salary to someone who doesn't exist. That's not a hypothetical, it's the reality of synthetic candidate fraud. A synthetic candidate is a fabricated identity created using AI and real data fragments to pass hiring processes undetected. Meaning, your next hire may not exist in human form at all. 

It's not a fringe risk either. Candidate fraud is rising dramatically due to remote work and accessible, high-quality AI, but most hiring processes are still running like it’s 1995. Identity verification was designed as an afterthought. And that's exactly the gap synthetic candidates are built to exploit.

The question that TA teams must grapple with is, can your hiring process protect you? 

Consider this your guide to finding out. 

In this guide:

What is synthetic candidate fraud and why’s it such a big deal now?

Synthetic candidate fraud looks like fake identities (stolen or augmented), deepfake video interviews, AI-generated CVs and credentials, fake LinkedIn profiles, and dodgy references that actually check out. 

Since generative AI went mainstream, genuine candidates have been using it to apply faster, present better, and perform in interviews. But on the extreme side, fraud actors have been using AI to create synthetic identities that can pass through traditional processes and greenlight their access to sensitive information. Think you’re immune? Even a security firm got fooled!

You could be looking at:

  • financial losses from salaries paid to fraudsters, ransom, or direct theft 
  • data theft, whether that’s the personal information of your employees and customers or your IP
  • the installation of malware in sensitive systems
  • a potential PR crisis and reputational damage to your business

AI is enabling identity manipulation at scale

Gartner predicts that by 2028, one in four candidate profiles worldwide will be fake. We’re not just talking about lone wolves – solo opportunists who are looking for an easy mark to make a quick buck. There are commercial fraud rings and state-sponsored operations looking to do serious harm. 

In an era where application volumes are at record highs while hiring teams are stretched thin running clunky, fragmented hiring processes, mistakes are inevitable. The attention to detail required isn’t possible when you’re sifting through  two hundred artificially enhanced resumes that all begin to look and sound the same.

What common screening mistakes create the most risk?

Traditional hiring signals are breaking because they were designed in simpler times. Here are five common screening mistakes exposing you to fraud threats:

  • trusting polished CVs (manually screened only)
  • pre-employment checks implemented too late in the process
  • standard background & employment checks that only confirm the information provided (assumes that the candidate is who they claim to be on paper)
  • over-reliance on interviews 
  • trusting (seemingly) polished qualifications and credentials at sight. 

Hiring risk has moved earlier in hiring. The hiring process must be re-designed to catch it at the beginning.

What makes a process resilient to synthetic candidates

A resilient hiring and screening process will:

Be transparent

Employers should explain to candidates how they define acceptable use of AI in recruitment and outline their screening and fraud detection process (including consequences) to set expectations up front. 

Be consistent across all roles

A consistent, documented background screening process helps to standardise assessment criteria and reduce the risk of bias, but it also makes it easier to flag anomalies.  

Be compliant

Background screening helps employers comply with relevant industry and government regulations around qualifications and conduct that are designed to protect employees, customers, workplaces, and sensitive data. 

Be tech enhanced 

Verifying identity through authoritative data sources (like government agencies or biometrics) can more accurately flag anomalies and risks. Additionally, making sure checks are streamlined and relevant to job profiles will help meet risk and compliance needs (especially for sensitive roles). 

What a modern hiring process should include

A standard background check confirms that the name provided has the documented employment, educational, and criminal history. But that's not enough anymore. Here's what your hiring process should also include. 

Document validation

Document validation confirms that a presented document, like a passport or driver’s licence, is an authentic, valid, government-issued ID. This should help identify fake identity documents, but it won’t necessarily flag when an identity document is stolen. 

Identity verification

Synthetic candidates using stolen identity documents need extra verification, by way of biometric checks (fingerprints, facial recognition / selfie) to confirm that the human candidate matches their official identification document. Biometric liveness verification can be deployed during video interviews to flag risk or use of deepfake technology.  

Cross-source consistency 

Relying on a single source of information for your checks can expose you to fraud risks. Verifying your data across numerous sources improves the accuracy and quality of your findings. An example for qualified roles might be contacting professional licensing boards to verify certifications and currency, using savvy third-party tech that can scan and flag risk signals, and checking document metadata for creation date and edit history. 

Role-based screening

With role-based screening, you’ve developed a risk matrix for your role profiles that identifies the checks required for regulatory compliance while also considering any risk-based, role-specific checks you should run. 

How background check software helps detect synthetic candidates

Employee background check software is designed with compliance and fraud protection in mind. They help organisations move from high-risk manual screening to automated validation and identity verification that plugs compliance holes, streamlines your process, and mitigates fraud risks earlier in your process.

Additionally, in a traditional screening process, most pre-employment checks are conducted once a candidate reaches the offer stage. But with modern background check software, these  checks are continuously running, helping to flag fraud signals from the moment an application is submitted all the way through to onboarding.

Manual screening Background check software
CV review Taken at face value — relies on recruiter judgement to spot anomalies. Cross-checks contact details, email domain, and LinkedIn profile for consistency and risk signals. Flags anomalies automatically.
Document verification Manual inspection of passports or licences. Can't reliably detect sophisticated forgeries or stolen identity documents. Automated document validation through government data sources. Confirms the document is authentic and valid — not just that the name matches.
Qualification checks Verification requested manually, often at offer stage. Third-party verified qualifications, licences, and professional registrations confirmed against authoritative sources.
Video interviews Face-to-face provides a basic visual check — not scalable for remote hiring.
  • Biometric liveness detection matches a selfie to a government-issued ID.
  • VPN and VoIP detection flags suspicious access or deepfake risk during video.
Reference checks Phone or email — no way to verify where the referee is located or whether they're who they claim to be.
  • IP geolocation confirms referees are located where expected.
  • VPN and VoIP flags surface suspicious submissions.
  • Advanced linguistic analysis detects AI-generated responses.
  • References cannot be edited after submission — full audit trail maintained.
Criminal & compliance checks Run once, manually, typically at offer stage. Criminal history, sanctions, AML screening, and social media checks run as part of an automated, continuous workflow — not a one-time event.

How to adjust your hiring process for better fraud protection

There are three simple ways you can adjust your hiring process to strengthen your resilience to synthetic candidates:

  1. Move your pre-employment checks earlier. Fraud risk enters at application, not at offer. Catching it late is expensive.
  2. Verify identity, not just the information provided. A standard background check confirms a name has a history, it doesn't confirm the person presenting that name is who they claim to be.
  3. Introduce automation. Manual screening at volume creates the gaps that fraud actors exploit. Automated tools flag risk signals from the moment an application lands.

Synthetic identities are getting easier to create and more convincing. When all you’re thinking about is a candidate exaggerating their previous experience, you aren’t going to pick up sophisticated, criminal enterprising AI fraud designed to bypass your process (at least not without some high-tech support!). 

Use this guide to understand the risks in your business and adjust your hiring process to build resilience to synthetic candidate fraud.

FAQs

How do you spot a deepfake in a video interview?

The clearest indicators of a synthetic candidate in video interviews are: long pauses before answering, freezing or unnatural movement around the eyes and mouth, overly scripted responses that don’t directly answer the question, off-screen eye movement suggesting they’re being coached, and camera avoidance or technical issues. Asking candidates to do something unscripted, like touching their face or moving the camera, can confuse face-swapping technology and expose real-time deepfakes.

What is biometric identity verification and how does it work in hiring?

Biometric identity verification confirms that the human candidate in front of you matches their official identity documents, usually by matching a live selfie to a government-issued ID. It confirms a live person is present, which is what catches deepfakes and synthetic candidates that document checks alone won't flag. Checkmate includes biometric liveness verification as part of its pre-employment screening workflow, meaning identity is confirmed before a hire decision is made, not after.

How do you detect fake identities in hiring?

Detecting fake identities requires layering multiple checks rather than relying on any single signal. At Checkmate, we use automated document validation through authoritative government data sources, biometric liveness verification, IP geolocation on both candidates and referees, VPN and VoIP detection, and advanced linguistic analysis on reference responses. These run continuously from application through to onboarding — not just at the offer stage.

What is identity verification in hiring, and why isn't a background check enough?

A background check confirms that a name has the right employment, education, and criminal history on record. Identity verification is a separate step that confirms the person presenting those documents is actually who they claim to be. Checkmate runs both as part of the same workflow so there’s no gap between the two.

Can AI-generated candidates pass background checks?

Yes, AI-generated candidates can and do pass background checks with fabricated credentials, fake online profiles, stolen or augmented identity documents, and fake referees.

Related Posts

No items found.

Hire Smarter. Faster.
With Less Effort.

Let's take the stress out of screening. Want to see how it works? We'd love to show you around.

Get in touch
Book a demo
Arrow pointing right
Checkmate logo
© 2025 Checkmate. All Rights Reserved. View our policies