Google Phone App Now Detects AI Deepfake Scam Calls

Key Takeaways

• Google's Phone app now verifies callers through encrypted RCS to detect AI voice impersonation scams
• The feature rolls out globally this month on Android 12 devices, Pixels first
• 60% of adults cannot distinguish AI-generated voices from real human voices

Google today announced a new security feature for its Phone app that detects when scammers use AI-generated voices to impersonate people you know. The feature, called fake call detection, is rolling out globally this month.

The threat is real and growing. Scammers now combine two techniques: spoofing phone numbers to make calls appear from trusted contacts, and using AI deepfake technology to clone voices. The result is a call that looks like it's from your family member and sounds exactly like them.

“The threat of AI voice impersonation is no longer hypothetical—it's here, and it's weaponizing the most trusted medium we have: the voice call.”

— Seang Chau, VP of Android Platform at Google

According to security researchers, 60% of adults cannot reliably tell the difference between AI-generated voices and real human voices. Google says experts agree that deepfakes have become so realistic that most people can no longer distinguish them.

How the Detection Works

The system operates like a digital handshake. When both you and the person calling you have the Phone by Google app installed, the apps communicate silently during the call. Your phone confirms that the caller's phone is actually on an active call with you.

This verification happens through end-to-end encrypted RCS messaging, which Google says makes it "completely private." If a scammer tries to spoof your contact's number, the confirmation signal will be missing. Your app then displays a warning that the call may not be legitimate.

The key limitation: both parties need Phone by Google installed. If your contact uses a different phone app, the verification cannot happen. Google routes these scam calls through internet-based software that makes them appear to originate from familiar contacts, but the originating device cannot complete the silent handshake.

Availability and Requirements

Fake call detection launches globally this month. It requires Android 12 or later. Google's Pixel phones get the feature first, but any Android device can use it by downloading Phone by Google from the Play Store and setting it as the default phone app.

The feature is enabled by default but can be turned off in settings. Google estimates over 500 million devices are eligible for the update worldwide.

The Bigger Picture

Voice cloning has become disturbingly accessible. Free and low-cost AI tools can now generate convincing voice replicas from just a few seconds of audio. Scammers scrape voice samples from social media videos, voicemails, and public recordings, then use them to call targets posing as relatives in emergency situations.

“Verified communication is the new standard of trust in an era where seeing—or hearing—is no longer believing.”

— Dr. Sarah Jenkins, Cybersecurity Researcher at the AI Safety Institute

The typical scam follows a pattern. A call appears from "Mom" or "Your Boss." The voice sounds exactly like them. They claim an emergency, an urgent wire transfer, a kidnapping, a car accident. The spoofed number and cloned voice create enough trust that victims comply before questioning.

Community Reaction

Reddit users on r/Android have called the feature a "necessary evolution" for communication security. The main debate centers on whether Google will open the protocol for cross-platform adoption or keep it limited to its own ecosystem.

On HackerNews, discussion focused on technical implementation details. Users debated whether Google verifies call legitimacy server-side or locally on the device, with privacy implications for each approach. Google's statement that the RCS communication is end-to-end encrypted suggests the verification happens between devices.

What This Means in Practice

The feature only works when both parties use Phone by Google. For families and teams concerned about impersonation scams, this means coordinating to install the same app. That's a friction point, but a manageable one for high-value relationships.

For organizations, this introduces a new security consideration. If your executives receive sensitive calls, ensuring they use Phone by Google adds a layer of verification against AI-powered social engineering. It's not foolproof, but it's a meaningful defense against a specific and growing threat.

Frequently Asked Questions

Does fake call detection work if the caller uses a different phone app?

No. Both parties must have Phone by Google installed for the verification handshake to work. If the caller uses a different app, the feature cannot verify the call.

Which Android phones can use Google's fake call detection?

Any Android device running Android 12 or later. Pixel phones receive the feature first, but other devices can download Phone by Google from the Play Store.

Can scammers bypass the fake call detection?

The verification relies on encrypted communication between devices. A scammer spoofing a phone number cannot complete the handshake because they don't control the legitimate caller's device.

Is fake call detection on by default?

Yes. Google enables it automatically, but users can disable it in the Phone by Google app settings.

Source: GSMArena.com / Vlad