Skip to content
Fake documents Fraud definitions

How HR teams can verify employee documents and prevent credential fraud

by Julia Jansen 10 min read

According to Greenhouse’s 2025 Workforce & Hiring Report, 28% of job candidates admitted to using AI to generate fake work samples during the hiring process. That number should concern every HR leader reading this. Because if candidates are willing to fake work samples, they are absolutely willing to fake the documents that come after: salary slips, diplomas, employment letters and professional certifications. And honestly, the fakes are getting better every month. Without proper employee document verification, most of these fakes slip through.

At VerifyPDF, we see this trend playing out in real time. Companies send us documents from their onboarding pipelines and a surprising number of salary slips and employment letters turn out to be manipulated. The edits are subtle. A salary figure changed here, an employment date adjusted there. But the consequences are anything but.

This post is a practical implementation guide. No theory, no fluff. Here is how to build employee document verification into every stage of your hiring process.

Where fake credentials enter your hiring pipeline

Most HR teams think of document verification as an onboarding task. Collect the paperwork, file it away, move on. But credential fraud can enter your pipeline at five distinct stages and only catching it at stage four means you have already wasted weeks of everyone’s time.

Resume screening. Inflated job titles, fabricated company names and fake degree credentials. A candidate claims an MBA from a reputable university, but the diploma they eventually submit was purchased from a template farm for a couple hundred euros.

According to research by Checkster, 78% of candidates misrepresent themselves during the hiring process. That includes outright fabrication, not just mild exaggeration.

Interview stage. Candidates mention professional certifications (PMP, CFA, AWS, ISO auditor credentials) they do not actually hold. Most interviewers take these claims at face value. Why wouldn’t they? Verifying a certification mid-interview feels awkward and most teams plan to “check that later.” Later rarely comes.

Offer negotiation. This is where the real documents start flowing. Candidates submit salary slips from their “current employer” to justify a higher offer. In our experience, this is where we see the most manipulation: a genuine payslip with the salary figure edited upward by 20-30%. The candidate walks in with a stronger negotiating position and the HR team has no idea the baseline number is fake.

Onboarding. HR collects original documents: diplomas, transcripts, employment letters, tax forms. These are reviewed for completeness (is the name correct? are all required documents present?) but almost never for authenticity.

Day 1 and beyond. The documents go into the employee file and are rarely examined again. If a fake diploma made it this far, it stays undetected. Sometimes for years.

The uncomfortable truth? Most verification happens (if it happens at all) at stage four. By then, the company has already invested weeks in interviewing, negotiating and preparing for the new hire. The pressure to close the position is enormous. And fraudsters know this.

The documents HR teams should worry about most

Not all employee documents carry the same fraud risk. Based on what we see across thousands of document verifications, here is where the biggest vulnerabilities lie.

Salary slips and pay stubs are the most commonly manipulated HR documents. As we covered in our post on fake payslips and source data verification, there is no universal format, no central registry and they are trivially easy to edit in any PDF editor.

A candidate downloads their legitimate payslip, opens it in Adobe Acrobat and changes the gross salary from €3,500 to €5,200. Five minutes of work. That is how low the bar has gotten. The fonts match because they are embedded in the original. The layout is identical because nothing structural changed.

Employment and reference letters are even easier to forge. No structured data, no running balances to reconcile, no metadata patterns that reveal their origin.

A convincing letterhead template, a plausible phone number and a Gmail account that sounds corporate is all it takes. Some candidates go further and create fake LinkedIn profiles for their “former managers” to survive a casual background check.

Diplomas and academic transcripts are now a commodity product in the fraud economy. Template farms, the same ones we examined in our analysis of how social media influencers sell fake documents, offer university diplomas alongside their usual inventory of fake bank statements and payslips.

These are not crude forgeries with obvious spelling mistakes. They replicate watermarks, formatting and even institution-specific paper textures with alarming precision. There is something unsettling about how industrialized this has become.

Professional certifications are particularly tricky to verify across borders. An AWS certification issued in India, a PMP from the US, a local trades license from another EU country. HR teams often lack both the expertise and the time to verify these against their issuing bodies. Fraudsters exploit this friction deliberately. The harder a credential is to check, the safer it is to fake.

Why manual document checks fail at hiring scale

Let’s be direct: your HR generalist is not a forensic document examiner. Expecting them to catch sophisticated forgeries while also managing onboarding workflows, compliance paperwork and a dozen other responsibilities is setting them up to fail.

Consider a mid-sized company hiring 20-30 people per month. Each new hire submits 4-6 documents during onboarding. That is 80-180 documents per month that someone needs to review.

The HR team checks that the documents are present, that the names match and that the dates are plausible. Maybe they compare the salary figure against what was discussed during negotiations. That is about as far as it goes.

But is anyone checking the PDF metadata for signs of post-creation editing? Is anyone examining whether the fonts embedded in a salary slip are consistent with the payroll software that supposedly generated it? Is anyone verifying that the document’s creation timestamp makes sense for the institution that allegedly issued it?

Of course not. They do not have the tools, the training or the time.

The result is predictable. As we covered in our comparison of AI fraud detection versus manual checks, sophisticated forgeries consistently pass visual inspection.

The modifications happen at a level the human eye cannot detect. Embedded fonts that do not match the original producer. Metadata timestamps that reveal editing after creation. Content stream manipulations that leave no visible trace on the rendered page.

Building employee document verification into every hiring stage

Here is a practical framework that maps employee document verification to each stage of the hiring process. You do not need to implement everything at once. Start with the stages that carry the highest risk for your organization and expand from there.

Stage 1: Resume screening

  • Cross-reference claimed degrees against university registries where available (many European universities offer online verification portals)
  • Flag any professional certifications mentioned and create a checklist for later verification
  • Use LinkedIn and professional registries as a first sanity check, not as proof, but as a signal. If someone claims 10 years at a company and there is zero online footprint, that is worth noting

Stage 2: Interview and assessment

  • Ask specific, detailed questions about claimed qualifications. Fraudsters often struggle with the specifics: “Which professor supervised your thesis?” or “What version of the PMP exam did you take?”
  • Request practical assessment tasks that relate directly to claimed skills. A fake AWS certification falls apart quickly when the candidate cannot configure a basic VPC
  • Note any inconsistencies between the resume and what the candidate describes verbally. These should feed into your verification checklist, not be dismissed as nerves

Stage 3: Offer negotiation

  • When candidates submit salary documentation to support their ask, run those documents through automated verification immediately. Do not wait until onboarding, because by then the offer is signed and your negotiating position is gone
  • Require original PDF documents, not scans, screenshots or photos of a screen. Scanned documents destroy the metadata that makes forgery detection possible, as we covered in our post on why screenshots prevent document forensics
  • Make this a standard part of your offer process, not an exception. When everyone goes through the same verification, no individual candidate feels singled out

Stage 4: Onboarding

  • This is your primary verification gate. Every document submitted should pass through automated document forensics before being accepted into the employee file
  • Cross-reference documents against each other. Does the salary on the payslip match the employment letter? Does the graduation date on the diploma align with the employment history on the resume? Inconsistencies between documents are often more revealing than anomalies within a single document
  • Set a clear policy: no original PDF, no completed onboarding. Exceptions create vulnerabilities that fraudsters learn to exploit

Stage 5: Periodic re-verification

  • For regulated industries (healthcare, finance, aviation), schedule annual re-verification of professional certifications and licenses
  • When employees submit documents for internal promotions, transfers or expense reimbursements, apply the same verification standards you use for external hires
  • Treat document verification as ongoing hygiene, not a one-time onboarding checkbox

What happens when fake credentials go undetected

The consequences of hiring someone based on fraudulent documents go well beyond the cost of a bad hire.

Legal liability. In many jurisdictions, employers can be held liable for negligent hiring if an unqualified employee causes harm. The SHRM guide on negligent hiring makes it clear: employers are expected to exercise reasonable care in verifying qualifications. A fake nursing certification or forged engineering license puts people at real risk and it can result in lawsuits, regulatory action and criminal liability.

Financial loss. An employee hired at an inflated salary based on a manipulated payslip costs real money every single pay period. Multiply that across several hires per year and the impact on your compensation budget is significant. And that is before you factor in the cost of termination, re-hiring and the productivity lost during the gap.

Reputation damage. When credential fraud makes the news, and it increasingly does, the employer looks just as bad as the fraudster. “How did they not check?” is always the first question asked. In an era where employer branding matters for talent acquisition, this kind of story can be devastating.

Regulatory penalties. In financial services, healthcare, education and other regulated industries, employing unqualified staff can result in fines, license revocations and worse. Regulators do not accept “we trusted the documents” as a defense. They expect you to verify.

How VerifyPDF fits into your HR document pipeline

VerifyPDF was built to analyze the internal structure of PDF documents (the metadata, the fonts, the content streams, the creation history) and flag signs of manipulation that no human reviewer could detect at scale.

For HR teams, the integration is straightforward:

  1. Candidate submits documents via your ATS or onboarding portal
  2. Documents are routed to VerifyPDF via API or manual upload
  3. Each document receives a risk rating: Trusted, Low risk, Needs attention or High risk
  4. HR reviews only the flagged documents, the ones that actually need human judgment

The entire check takes less than 5 seconds per document. For an HR team processing 100+ documents per month, that means going from “hope for the best” to verified confidence with virtually no additional workload. Your team keeps doing what they do well (evaluating people) while the forensic analysis happens automatically in the background.

Your hiring process is only as strong as your weakest verification step

Credential fraud in hiring is not a hypothetical risk. It is happening right now, at scale, enabled by AI tools and template farms that make fake documents cheaper and more convincing than ever before. The question for HR leaders is not whether you will encounter a fake document in your pipeline, it is whether your process will catch it when you do.

Building employee document verification into your hiring process is the single most effective defense. VerifyPDF helps HR teams do exactly that, the cheapest fraud to deal with is the one you catch before it walks through the door.

Stop guessing. Know in 5 seconds.

Upload a PDF. In under 5 seconds, VerifyPDF tells you if it's genuine or forged, with detailed evidence of every modification. Try it free for 15 days, no credit card needed.

Start free trial Watch demo

Trusted

This document is identical to others from this issuer

Match found in our document database
Document integrity verified
No traces of suspicious editing software