Why You Must Use the Live Camera (Understanding Injection Attacks)
During ID verification, you may notice that INMYNAMEKYC does not allow uploads, gallery images or screenshots. This is intentional — and essential for your security.
Modern fraudsters increasingly use injection attacks, where fake videos or deepfakes are “injected” directly into an identity system to impersonate someone. Live camera capture prevents this.
What is an injection attack?
An injection attack happens when a fraudster feeds a falsified image or video into the verification system without using a real camera.
This is typically done by:
- Using a virtual camera
- Streaming pre-recorded footage
- Feeding deepfake videos directly into the system
- Emulating a fake device
These methods can trick systems that allow simple uploads.
Why uploads aren’t accepted
Allowing uploads or pre-recorded videos makes verification vulnerable to:
- Deepfakes
- Stolen images
- Screen recordings
- Synthetic identities
- Socially engineered footage
To keep your identity safe, INMYNAMEKYC only verifies photos and videos captured live, within the app, at the moment of verification.
How INMYNAMEKYC blocks injection attacks
1. Live in-app camera control
You cannot upload gallery images. Instead, your device camera must record directly inside the app.
2. Real-time motion prompts
Random movements ensure the person interacting is live and present.
3. Device signal checks
The verification system looks for signs of:
- Virtual cameras
- Emulated devices
- Screen recording or media injection
Any anomaly triggers an automatic fail and manual review.
Why this protects you
Injection attacks are a major way criminals attempt identity fraud. By requiring live capture, we ensure your identity is verified safely — and that no one can impersonate you using digital manipulation.