A fraud technique that feeds synthetic, replayed, or intercepted video into a liveness or verification control. The control may appear to be working, but the sensor input is not coming from a live subject. This matters because assurance fails when the capture path is not trusted.
Expanded Definition
Camera injection attack is a capture-path compromise, not simply a spoofed face. The attacker feeds synthetic, replayed, or intercepted video into a camera or verification pipeline so the liveness check sees a plausible signal while the subject is absent or unauthenticated. In NHI and IAM settings, the core issue is trust in the sensor path, which can be broken at the device, driver, application, or transport layer. Definitions vary across vendors on whether “camera injection” includes screen replay, virtual camera devices, or full media stream substitution, but the security outcome is the same: the verifier accepts untrusted input as live.
This concept sits alongside presentation attacks and replay attacks, yet it is broader because it may target any stage that supplies video to the decision engine. For governance teams, the right question is not only whether liveness exists, but whether the frame source is authenticated and integrity protected. NHI Management Group’s OWASP NHI Top 10 and Ultimate Guide to NHIs both underscore that trust failures often begin where identity evidence is captured, not only where it is verified. The most common misapplication is treating camera injection as a pure biometric issue, which occurs when teams harden the model but leave the capture channel unauthenticated.
Examples and Use Cases
Implementing camera verification rigorously often introduces device and workflow constraints, requiring organisations to weigh stronger assurance against usability, hardware compatibility, and operational overhead. Standards and threat guidance such as the CISA cyber threat advisories help teams think about attack paths, but the local control design still matters.
- A fraudster uses a virtual camera driver to inject prerecorded video during account recovery, bypassing a face-liveness prompt.
- An attacker intercepts a mobile device video stream and replays it into a remote verification workflow, making the session appear active.
- A compromised workstation feeds synthetic video into an internal access portal so a contractor identity can pass a proctored check.
- A deepfake-generated stream is routed through conferencing software into an identity proofing tool, exploiting weak source validation.
- A browser-based onboarding flow accepts a tab-captured video feed instead of genuine camera hardware, enabling remote impersonation.
These cases are often discussed alongside replay and presentation attacks in the MITRE ATLAS adversarial AI threat matrix, especially when deception is used to manipulate automated decisions. NHIMG’s 52 NHI Breaches Analysis shows how quickly trust breaks when an adversary controls an access path; that lesson applies directly to verification pipelines that assume camera input is authentic.
Why It Matters in NHI Security
Camera injection attack matters because it turns a trust boundary into a blind spot. In NHI security, identity proofing often gates access to secrets, APIs, privileged workflows, and delegated automation, so a successful injection can approve a non-live subject or an attacker-controlled session as if it were legitimate. That failure can cascade into stolen tokens, fraudulent enrollment, privileged session abuse, and downstream impersonation of service operators or AI agents. The risk is especially severe when biometric checks are used as a control substitute rather than as one signal among several.
NHIMG research shows that identity weakness is already widespread: in the Ultimate Guide to NHIs, 79% of organisations have experienced secrets leaks, and 77% of those incidents caused tangible damage. While that statistic is about secrets exposure, the operational lesson is similar: once trust is broken, exploitation tends to move quickly through whatever identity control was assumed to be reliable. Organisations typically encounter the consequence only after a fraudulent enrollment, account takeover, or access dispute, at which point camera injection attack becomes operationally unavoidable to address.
Standards & Framework Alignment
This section maps relevant standards and security frameworks to the operational risks and controls described in this guidance.
OWASP Non-Human Identity Top 10 and OWASP Agentic AI Top 10 address the attack and risk surface, while NIST CSF 2.0 set the governance and control requirements practitioners need to meet.
| Framework | Control / Reference | Relevance |
|---|---|---|
| OWASP Non-Human Identity Top 10 | NHI-06 | Covers trust failures in identity capture and verification paths for non-human identities. |
| OWASP Agentic AI Top 10 | A-04 | Agentic workflows can rely on camera-based proofing and inherit replay or injection risk. |
| NIST CSF 2.0 | PR.AA-1 | Identity proofing and credential acceptance depend on authentic evidence collection. |
Authenticate capture sources and harden verification pipelines against replay and synthetic input.
