Fake Resume Detection

Catch fake resumes before the interview

44% of candidates admit to lying on their resume. SquarePeg runs 11 fraud signals on every applicant in seconds - catching GPT-tailored resumes, fake LinkedIn profiles, VoIP burners, and identity mismatches at the application stage.

Start free with 2,000 credits

The 11 signals SquarePeg checks on every applicant

Each signal is checked against external data the candidate cannot manipulate. Each comes with a written explanation of what triggered it. Filter the candidate list by Low or Mixed authenticity confidence and review the flagged subset first.

1
LinkedIn Validation

URL checked against SquarePeg's 400M+ profile database. Fabricated URLs that do not appear in the comprehensive graph are flagged.

2
Connection Count Under 100

Real senior professionals with five-plus years of experience usually have 300+ connections. Under 100 is a strong fraud signal in technical recruiting.

3
No LinkedIn Photo

Missing or stock-photo profile pictures. Real US professionals nearly always include a photo.

4
Unusual Phone Type

Voicemail-only, toll-free, or NonFixedVoIP carriers. NonFixedVoIP is the classification used by Google Voice and TextNow, common in fraud-ring submissions.

5
Limited Phone Activity

Phone numbers with no real call activity in the past 12 months are flagged as likely-burner.

6
Invalid Phone Number

Improperly formatted, disconnected, or unable-to-receive-calls numbers are flagged.

7
Phone Name Mismatch

Carrier-registered name does not match the application name. The strongest single signal in the SquarePeg signal set for catching identity-fraud applications.

8
Limited Email Activity

Email addresses that first appeared in public records less than three months ago are flagged.

9
Email Name Mismatch

Email registration name does not match the application name. Catches identities laundered through borrowed email accounts.

10
Disposable Email

Mailinator, Guerrilla Mail, 10MinuteMail, and similar low-reputation providers are flagged.

11
Resume-JD Over-Alignment

Resume mirrors the JD's structure, vocabulary, and skill ordering with statistical precision. The canonical signal for GPT-tailored resumes.

The signals that matter most are invisible to the eye

A careful read catches 30-40% of fakes. The other 60% require external data lookups you can't run by hand on every applicant.

Manual approach falls short

What a careful read misses

  • You cannot validate a LinkedIn URL against the full LinkedIn graph
  • You cannot tell a NonFixedVoIP number from a real mobile number by looking at it
  • You cannot detect Phone Name Mismatch (the registered name on the line)
  • You cannot measure how recently an email appeared in public records
  • You cannot eyeball excessive resume-JD alignment statistically
  • Doing it manually takes 10-20 minutes per applicant, so most applicants never get the check
  • Pattern detection across applications (fraud rings) is impossible by hand
What SquarePeg automates

11 signals, on every applicant, in seconds

  • LinkedIn URL validated against 400M+ profile database
  • Phone carrier classification, registered name, and call activity
  • Email provenance and name-match against public records
  • Resume-JD alignment measured statistically
  • Glass-box explanation for every flag, defendable to your hiring managers
  • Filter your candidate list by signal or by authenticity confidence level
  • Patterns across your candidate pool surfaced automatically

Manual fake-resume detection vs SquarePeg

Capability Manual review SquarePeg
LinkedIn URL validation against full graphOpen URL, eye-test400M+ profile database
LinkedIn connection count checkManual click-throughAutomated
LinkedIn photo and engagement checkManual click-throughAutomated
Phone carrier classificationNot feasible by handAutomated
Phone-registered name vs application name$1-2/applicant paid lookupIncluded
Phone call activity checkNot availableAutomated
Email provenance and registration checkNot feasible by handAutomated
Disposable email provider detectionRecruiter memoryAutomated
Resume-JD alignment scoring (GPT signal)Eye test onlyStatistical
Time per applicant for full fraud check10-20 minutes manuallySeconds
Coverage across the applicant poolTop of stack onlyEvery applicant
Pattern detection across applicationsImpossible by handSurfaces fraud rings
Audit trail for complianceInconsistentGlass-box explanations
PricingRecruiter time + paid lookups$100/mo, ~10-15c per applicant

Patterns SquarePeg surfaces in real applicant pools

Most teams expect the fraud rate to be 1-3%. The actual rate is usually 8-22%, depending on role type and seniority. A few patterns from real applicant pools.

Remote senior engineering role, 200 applicants. 28 of the 200 flagged on at least two signals in the first 72 hours. The pattern: VoIP phone numbers registered to a small set of US co-conspirator names, LinkedIn URLs that failed validation against the 400M+ profile database, and email addresses that had appeared in public records within the last 60 days. Three of the candidates had identical resume structures across different "names." All 28 dropped before any phone screens.

Backlog audit on 1,200 applications. A mid-stage SaaS company ran SquarePeg against four months of accumulated applications. 14% of the applicants flagged on at least two signals. The most common combination: invalid LinkedIn URL plus disposable email plus excessive resume-JD alignment - the textbook GPT-generated application from a fake identity.

Non-technical role at a mid-market SaaS company. 4 of 100 flagged - a much lower rate than engineering. But all four flagged applicants had used the same disposable email provider and submitted resumes within a 36-hour window. This was a small fraud ring testing the company's defenses. It would have gone unnoticed without the pattern detection.

The pattern is consistent: fraud is heaviest on remote technical roles for recognizable brands, lighter on local non-technical roles, and almost always higher than you'd expect. The 11 signals catch the patterns at the application stage, before any time is spent on phone screens.

How to handle fake resumes in 2026

Manual review only

Eye-test for tells, ask sharp behavioral questions

Catches some obvious cases. Misses the bulk of fraud because the strongest signals (Phone Name Mismatch, LinkedIn graph membership, resume-JD alignment) are invisible to the eye. Falls apart at any volume above 50 applicants per role.

Background checks only

Verify identity at the offer stage

Catches identity fraud, but only after weeks of interview time have been invested in the candidate. Useful as a final layer, not as the primary detection mechanism. Catch fraud before it consumes your recruiter and hiring manager time.

Pre-interview detection (recommended)

SquarePeg at the application stage + background checks at the offer stage

Two complementary layers. SquarePeg flags 11 signals on every applicant in seconds, before any human time is spent. Background checks verify identity before the offer goes firm. Most fraud gets caught on the SquarePeg layer and never reaches the background check.

Frequently asked questions

How do you detect a fake resume?
You detect a fake resume by checking signals the candidate cannot easily fake: the LinkedIn URL against a comprehensive profile database, the phone number type and registered name, the email address provenance and disposability, and the statistical alignment between the resume and the job description. Manual review can catch obvious cases. Automated tools like SquarePeg run 11 signals on every applicant in seconds.
What percentage of resumes are fake?
44% of candidates admit to lying on their resume per a StandOutCV survey. Outright fabrication (fake identity, fake employment) is rarer but rising fast. SquarePeg's data shows that 14% of remote technical applicants exhibit at least two fraud signals, and remote roles get roughly three times more fraudulent applications than in-office roles.
What are the warning signs of a fake resume?
The strongest warning signs are: a LinkedIn URL that does not resolve, a LinkedIn profile with under 100 connections, a phone number type of NonFixedVoIP or voicemail-only, a phone or email registered to a different name, a disposable email provider, and a resume whose language mirrors the job description with unnatural precision. Any one can be coincidence. Two or more is a strong fraud indicator.
Can AI tools detect AI-generated resumes?
Yes, but the approach matters. Generic AI text detectors like GPTZero are trained on essays and frequently misfire on resumes (15-25% false-positive rates in published evaluations). SquarePeg uses a behavioral signal: excessive structural and linguistic alignment between the resume and the JD, which has a much lower false-positive rate.
How does SquarePeg differ from background checks like Checkr or Sterling?
Background checks catch fraud after you have invested hours interviewing the candidate and made a contingent offer. SquarePeg catches fraud at the application stage, before anyone on your team spends time on the candidate. The tools are complementary - SquarePeg flags fraud before the first interview, background checks verify identity before the offer goes firm.
Does SquarePeg integrate with my ATS?
Yes. SquarePeg works as a Chrome extension that layers on top of 95+ ATS platforms, including Greenhouse, Lever, Ashby, iCIMS, Workable, and JazzHR. Setup takes about 5 minutes and there is no data migration.

Catch fake resumes before the interview

11 fraud signals. Glass-box scoring. Works on 95+ ATSes via Chrome extension.

Start free with 2,000 credits · 5-minute setup · 95+ ATSes supported