Abstract: A method for detecting video feed injection during an authentication session comprising initiating an authentication session which utilizes a video feed from a camera, the camera part of a computing device that is used to capture video of a user during the authentication session. Next, activating the camera to obtain a video feed, monitoring for the requested video feed, and receiving a video feed. Detecting a time delay between activating the camera and to receiving the video feed. Comparing the time delay to an expected delay or range of expected delay, and, if the time delay does not match an expected delay or range of expected delay, terminating the authentication session. Optionally providing a notification that the time delay did not match the expected delay, range of expected delay, or both. The number of times this method occurs may be repeated a random number of times.