WhatsApp users are being cautioned about a new scam known as “GhostPairing” that deceives them into providing attackers access to their accounts. Recently uncovered by cybersecurity firm Avast, this latest threat is particularly dangerous as victims may remain unaware of the compromise for an extended period.
Unlike previous scams centered on stealing passwords, this tactic can lead to more severe fraudulent activities. Security experts emphasize that scammers gaining access to private chats, voice notes, and photos create opportunities for impersonation, targeted scams, and even extortion.
The scam typically begins with the victim receiving a message from a trusted contact, claiming to have found their photo and providing a link. Clicking on the link redirects the user to a fake webpage resembling Facebook, prompting them to “verify” before viewing the image. However, this seemingly innocent security measure is part of WhatsApp’s device-linking process.
By entering a valid pairing code, victims unknowingly link the attacker’s browser as a device, granting ongoing access to messages, photos, and contacts without the need for a password change or account lock. Once an account is compromised, it sends messages to contacts, facilitating the scam’s spread naturally.
To protect your WhatsApp account from scammers attempting to pair with it, consider the following preventive measures:
1. Review WhatsApp settings under Linked Devices and remove any unfamiliar connections.
2. Treat any website requests to scan a WhatsApp QR code or enter a pairing code with suspicion.
3. Enable two-step verification and raise awareness within family and group chats about such scams.
