Android Adds New Call Verification to Block AI Voice Scams

Google is bolstering defenses against sophisticated phone scams with a new Android feature designed to digitally verify callers, aiming to thwart increasingly common AI voice-cloning and number spoofing tactics. The system, integrated into the Google Dialer, provides real-time call legitimacy checks between Android devices, flagging potentially fraudulent calls before they can deceive users.

During a demonstration of the technology, a simulated scam call highlighted its functionality. The demo featured a caller impersonating the journalist, using a cloned voice and a familiar contact photo, to request money via a mobile payment app. Immediately, an overlay appeared on the call screen stating, “This may not be Lily. Someone may be pretending to call from your contact's number.” When a call is flagged as a potential scam, the feature removes the contact photo from the background and alters the recent call log entry to “Unknown caller,” underscoring the severity of the potential deception.

Combating Evolving Scammer Tactics

For years, spam calls have plagued mobile users, but the advent of artificial intelligence has significantly amplified the threat. Attackers can now use AI to convincingly mimic the voices of friends, family, or trusted associates, making impersonation scams far more convincing. While efforts have been made to combat traditional robocalling, these new AI-driven methods present a more personalized and dangerous challenge. These calls often appear to originate from familiar or seemingly legitimate numbers, adding a layer of trust that scammers exploit.

Dave Kleidermacher, Android's vice president of security and privacy, and Eugene Liderman, director of Android security and privacy product, acknowledged the urgent need for enhanced defenses. While using AI to detect voice clones is an option, they noted its limitations, including potential false positives and negatives, and the risk of escalating an AI arms race. “We’re always looking at whether there is a provable way, something much higher confidence that we can do,” Kleidermacher stated.

The new security measure leverages the Rich Communication Services (RCS) standard. Beginning June 2, 2026, the feature will be distributed through updates to Android 12 (released in 2021) and subsequent versions of the operating system. The core mechanism involves RCS establishing a digital link between the caller's phone number and their actual smartphone hardware. When one Android user calls another who also has the feature enabled, the calling device sends a silent, background confirmation signal to the recipient's device. This signal verifies the call's authenticity based on its origin from a legitimate handset. If this hardware-based confirmation is absent, the Google Dialer issues the warning.

“If you’re calling me and we’re in each others’ mutual contacts databases, and we’re both using the Google dialer that has this capability built into it, then I will always know if it’s really you,” Kleidermacher explained. “If someone tries to call me through a VoIP session or some other mechanism and spoof your phone number and your voice, the Dialer will say that this is not you.” This verification process aims to provide a higher degree of confidence in call legitimacy, moving beyond traditional spam filters and AI detection alone to offer a more robust defense against impersonation fraud.