WhatsApp users are being alerted to a new scam called “GhostPairing” that deceives them into giving attackers access to their accounts. This latest threat, uncovered by cybersecurity company Avast, is particularly dangerous as victims may not realize their accounts have been compromised for an extended period.
In contrast to previous scams centered on stealing passwords, this one has the potential to result in more severe fraudulent activities. Security experts caution that scammers gaining access to private conversations, voice messages, and images can lead to impersonation, targeted scams, and extortion.
The scam typically starts with the victim receiving a message from a trusted contact, claiming to have found their photo and providing a link. Clicking on the link directs the user to a fake webpage resembling Facebook, prompting them to “verify” before viewing the image. However, this seemingly innocuous security verification is, in reality, part of the WhatsApp device-linking process.
By entering a valid pairing code, victims unknowingly link the attacker’s browser as a connected device, granting them continuous access to messages, media, and contacts without the need for changing passwords or locking the account. Once compromised, the account sends deceptive messages to contacts, enabling the scam to spread organically.
To safeguard your WhatsApp account from being paired with scammers, consider the following preventive measures:
1. Check your WhatsApp settings under Linked Devices and remove any unfamiliar connections.
2. Approach any requests to scan a WhatsApp QR code or input a pairing code from a website with suspicion.
3. Activate two-step verification and raise awareness among family and group chats about potential scams.
Stay vigilant to protect your account from falling victim to the GhostPairing scam.