WhatsApp users are being cautioned about a recent “GhostPairing” scam that deceives them into providing attackers access to their accounts. Discovered by cybersecurity firm Avast, this new threat is particularly dangerous as victims may not realize their accounts have been compromised for extended periods.
Unlike previous scams targeting password theft, this scam can lead to more severe fraudulent activities. Experts emphasize that scammers gaining access to private chats, voice notes, and photos can result in impersonation, targeted scams, and even extortion.
The modus operandi involves the victim receiving a message from a trusted contact, often claiming to have found their photo and including a link. Upon clicking the link, users are directed to a fake page resembling Facebook, prompting them to “verify” before viewing the image.
This seemingly innocuous security verification process is actually part of WhatsApp’s device-linking mechanism. Victims unknowingly add the attacker’s browser as a linked device by entering a valid pairing code, granting criminals ongoing access to messages, photos, and contacts without necessitating a password change or account lock.
Once an account is compromised, it automatically sends messages to contacts in the user’s network, facilitating the spread of the scam. To protect your WhatsApp account from such scams, consider the following preventive measures:
1. Regularly check WhatsApp → Settings → Linked Devices and remove any unfamiliar connections.
2. Exercise caution with any request from websites to scan a WhatsApp QR code or input a pairing code.
3. Enable two-step verification and raise awareness among family and group chats regarding potential risks.
By being vigilant and proactive, users can safeguard their accounts against unauthorized access and potential exploitation.
