Trend report · gnews_detection · 2026-06-13

Deepfake images of students and teachers trigger cyber crime probe in Assam - PGurus

In early 2025, deepfake images depicting students and teachers began circulating in Assam, India, prompting a cyber crime investigation. The incident illustrates a problem that platforms and investigators now face daily: AI-generated imagery that mimics real scenes so closely that traditional verification fails. Understanding how platforms detect synthetic content—and what actually works to stay under the radar—has become essential knowledge for anyone working with digital media in 2026.

What Platforms Scan For in 2026

Platform detection has evolved beyond simple pixel analysis. Modern systems examine multiple layers of metadata and content signatures to determine whether an image originated from a camera or an AI model.

C2PA: The Content Provenance Standard

The Coalition for Content Provenance and Authenticity (C2PA) defines a standard for embedding cryptographically signed metadata that documents an image's origin and editing history. When a creator generates or edits content, software can embed a manifest containing assertions about the source.

Key C2PA fields platforms check include:

• assertions — Documents what the image claims to be and how it was created
• actions — Lists operations performed (capture, edit, AI generation)
• edit_history — Cryptographic chain of modifications
• producer — Identifies the software or device that created the manifest
• hash — Integrity hash that detects post-signing tampering

When an image comes from an AI generator like Sora or DALL-E, the manifest either flags action:com.gen_ai or contains no manifest at all. Platforms like Instagram and TikTok are beginning to validate C2PA manifests during upload, rejecting content with broken signatures or AI-source flags.

AI-Specific Metadata

Each AI image generator embeds distinctive metadata fields that survive file operations unless explicitly stripped:

• Midjourney: discord_id, job_id, create_id, model
• Stable Diffusion: parameters, negative_prompt, model_hash, sd_checkpoint_hash
• DALL-E: prompt_hash, model_version, response_id
• Sora: create_id, model_version, generation parameters

Detection tools like Fake Detector, Deepware Scanner, and Hive AI examine these fields directly. A file containing model:stabilityai/stable-diffusion-xl-base-1.0 alongside typical social media dimensions immediately flags as AI-generated.

Encoder Signatures

AI image generators use neural encoders that leave detectable artifacts in the frequency domain. Detection systems analyze:

• VAE artifacts — Stable Diffusion's variational autoencoder produces characteristic checkerboard patterns in decoded images
• GAN spectral signatures — Generative adversarial networks leave distinctive frequency peaks that analysis tools can detect
• Compression fingerprinting — AI upscaling produces unnatural smoothness in certain frequency bands

Tools like FotoForensics and Adobe's Content Authenticity Initiative tools examine these signatures. The detection threshold varies by platform—TikTok runs lighter analysis; Instagram's systems are more aggressive.

Missing GPS and EXIF Red Flags

Authentic camera photos contain GPS coordinates, lens information, and device-specific EXIF values. AI-generated images typically:

• Contain no GPS data
• Have mismatched or absent device information
• Show timestamps that don't align with claimed location data
• Include camera-specific fields that contradict the stated device

Platforms flag images missing GPS when posted from locations where real photos would contain coordinates. The absence of expected EXIF fields triggers additional scrutiny.

What Gets Flagged on Instagram and TikTok

Both platforms run multi-stage detection pipelines:

Instagram's detection system validates C2PA manifests, analyzes compression artifacts, and cross-references metadata against behavioral signals. Common triggers include:

• Missing or invalid C2PA manifest
• GPS coordinates that don't match posting location
• AI-generation metadata fields present
• Suspicious compression history (multiple re-saves)
• Known GAN fingerprint matches

TikTok's ImageScribe system performs similar checks but with heavier weight on behavioral analysis—posting patterns, account history, and engagement signals factor into the decision. TikTok also runs deepfake detection on faces specifically.

The threshold for flagging varies, but content with multiple risk factors (missing GPS + AI metadata + unusual compression) frequently triggers review or removal.

The Durable Fix: Strip and Inject

Most metadata gets stripped during platform upload anyway. The actual challenge is surviving content-based detection—analysis of the image data itself. The only reliable approach is a two-step process: strip all AI metadata and inject authentic camera identity.

This matters because:

• Platforms strip EXIF on upload but retain analysis of image content
• Detection tools can identify AI-generated images even without metadata
• Injecting authentic camera parameters creates plausible deniability
• The combination of clean metadata + realistic content passes human review

Stripping removes C2PA manifests, AI generation fields, and EXIF data entirely. Injection adds realistic GPS coordinates, device information, and timestamps that match a plausible source.

Step-by-Step: How to Strip and Inject

1. Extract reference metadata — Use a real photo from the target device or location. Tools like ExifTool can export all EXIF fields: exiftool -all= input.jpg -tagsfromfile reference.jpg -all:all output.jpg
2. Strip all AI metadata — Remove C2PA manifests, AI generation fields, and existing EXIF: exiftool -all= -c2pa:all= -xmp:all= input.jpg
3. Inject authentic GPS — Set realistic coordinates matching the claimed location: exiftool -GPSLatitude=26.2006 -GPSLongitude=92.9376 -GPSAltitude=43 input.jpg
4. Inject device parameters — Add camera make, model, lens, and settings: exiftool -Make=Apple -Model=iPhone 15 Pro -LensModel="iPhone 15 Pro back camera 6.765mm f/1.78" -ISO=100 -FNumber=1.78 input.jpg
5. Set realistic timestamps — Match creation time to GPS data: exiftool -DateTimeOriginal="2025:03:15 14:32:00" -CreateDate="2025:03:15 14:32:00" input.jpg
6. Generate C2PA manifest — Create a valid manifest from camera source (requires C2PA-enabled software): Use a tool like C2PA generator to embed manifest from authentic source
7. Verify clean output — Run through detection tools before upload: fake-detector check output.jpg

The goal is an image that presents as a real photo taken at a real location with a real device—because that's exactly what it should be after processing.

Why This Is the Only Durable Fix

Platforms are closing the gap rapidly. C2PA adoption is increasing, and detection models improve constantly. Metadata stripping alone fails because content analysis catches AI-generated images regardless. Injection of authentic identity creates the foundation for plausible authenticity—but only when combined with clean metadata.

The Assam incident shows how quickly AI-generated content can trigger serious legal consequences. For anyone working with images in 2026, understanding detection and its limitations isn't optional—it's operational necessity.

→ Try Calabi free at calabilabs.com — 10 cleans, no card.

Related reading

• Remove the Kling watermark
• How the Calabi Sanitizer pipeline works under the hood
• Spoof iPhone 15 Pro Max metadata