Public SectorIdentity & Access DriftVoice AgentHigh

AI Voice Clone Bypasses Centrelink and ATO Identity Verification

In March 2023, journalist Nick Evershed demonstrated that the voice biometric security used by Centrelink and the ATO could be spoofed. Using a synthetic clone of his own voice, he successfully verified his identity to gain account access.

Australian Taxation Office and Services Australia · Incident Mar 16, 2023 · Indexed Jun 22, 2026 · 3 sources

The voiceprint system failed to distinguish a live human voice from a high-fidelity AI-generated clone.

Key facts

What
In March 2023, journalist Nick Evershed demonstrated that the voice biometric security used by Centrelink and the ATO could be spoofed.
Incident date
Mar 16, 2023
Who
Australian Taxation Office and Services Australia
Failure mode
Identity & Access Drift
AI surface
Voice Agent
Severity
High

What happened

Journalist Nick Evershed used AI to create a voice clone of himself using only four minutes of audio. He then used this synthetic audio to bypass the voiceprint identity verification system used by Services Australia. The system successfully verified the AI-generated voice as the real user and granted him access to his account. This revealed a vulnerability in the security systems of both Services Australia and the Australian Taxation Office.

What broke inside the model

Failure path · mode profile · Identity & Access Drift
  1. 01 · TriggerAn agent operates with granted credentials.
  2. 02 · Model stepIt reaches for scope it was never assigned.
  3. 03 · Control gapNo runtime check binds it to its role.
  4. 04 · FailureThe agent acts outside its authority.
  5. 05 · ConsequencePrivileged actions run with no oversight.

The agent's actions drift outside the scope it was granted.

The voice biometric system failed to distinguish between a live human voice and a high-fidelity AI synthesis. It lacked effective liveness detection mechanisms to prevent spoofing via audio playback.

What it cost

Public visibilityHigh
Regulatory exposureActive
Customer impactClass-wide
Financial impactUnknown
Time to disclosureDays

Sources

  1. PressAI can fool voice recognition used to verify identity by Centrelink and Australian tax officetheguardian.com
  2. PressHow an AI voice clone fooled Centrelink - videotheguardian.com
  3. PressThe Guardian: AI Can Fool Voice Recognition Used ...nswccl.org.au

Cite this entry

Permalinkhttps://failureindex.ai/failures/voice-clone-bypasses-centrelink-ato-identity
CitationAI Failure Index. "AI Voice Clone Bypasses Centrelink and ATO Identity Verification" (FI-0658). Realm Labs. https://failureindex.ai/failures/voice-clone-bypasses-centrelink-ato-identity (indexed Jun 22, 2026).
Share cardA branded image of this record for posts and slides.

Data fields CC-BY 4.0, prose citation permitted. Incident ID FI-0658. Full dataset at /data.

Note from Realm Labs, the Index steward

How Realm would have caught this

Controls for this failure mode
  • OmniGuard
  • AgentRealm

Realm can bind an agent's actions to the identity and scope it was assigned and flag the moment it reaches for access beyond its task, so inherited or discovered permissions do not quietly become a destructive action.

Book a Demo

Related failures

Other records that share this failure mode (Identity & Access Drift) or industry (Public Sector).

FI-0587Public SectorLow
Hallucination

Procureur général du Canada sanctioned pro se litigant for AI fabricated case law

A self-represented litigant in Canada was sanctioned by the Federal Court for submitting fabricated case law generated by AI. The court emphasized that citing non-existent sources is a serious matter that undermines the administration of justice.

Confidence
High (multi-source, primary)
Procureur général du Canada3 sourcesCourt FilingPublicJun 2026
FI-0580Public SectorHigh
Hallucination

City of Aberdeen legal team sanctioned for First Drafts AI hallucinations

Lawyers in the case Withers v. City of Aberdeen used AI to file documents containing fabricated case law. The court imposed an $8,000 fine and disqualified several attorneys after discovering the hallucinations.

Confidence
High (multi-source, primary)
City of Aberdeen3 sourcesPrimaryPublicJun 2026
FI-0452Public SectorMedium
Agentic Action Error

Ukrainian sea drone reportedly veers off course and explodes in Constanta port

On 2026-06-05 a naval/sea drone reportedly linked to Ukraine exploded in the Romanian port of Constanta after veering off course. Ukrainian officials told reporters the drone lost control following alleged electronic jamming; authorities say the area was secured and there were no injuries. Multiple independent news outlets reported the incident the same day.

Confidence
Medium (multi-source)
Ukrainian Navy (reported)4 sourcesPressPublicJun 2026