A new text scam targeting WhatsApp users in Europe has raised concerns. The scam involves receiving a message from a friend asking for a vote, which can lead to being locked out of your account and putting your contacts at risk of losing money.
The fraudulent scheme, identified by Bitdefender, employs an emotional ploy to lure individuals into clicking on links and divulging personal security codes. The initial message urges recipients to vote for someone in a contest, claiming to be the child of a close acquaintance, with the promise of a scholarship abroad.
Upon clicking the link, users are directed to a fake website where they are prompted to vote. Subsequently, a request for the user’s phone number and a verification code is made. However, this is a deceptive tactic aimed at gaining access to WhatsApp accounts.
By acquiring the phone number and security code, cybercriminals can take control of the account, locking out the legitimate user. The scammers then exploit the compromised account to send fraudulent messages to the user’s contacts, attempting to deceive them into sharing money or personal information.
Bitdefender has reported a significant increase in such scams, with attackers using numerous fraudulent domains and URLs to target thousands of users in recent months. The campaign manipulates WhatsApp users through fake voting contests, ultimately leading to financial losses.
While the majority of attacks have been noted in countries like Poland, Romania, and Germany, users in the UK are advised to remain vigilant. To safeguard against such scams, Bitdefender recommends refraining from sharing verification codes, verifying requests for money via direct calls, and promptly reporting suspicious messages within WhatsApp.
In the event of an account hack, users are advised to regain control by requesting a new verification code, contacting WhatsApp support, notifying their bank if money has been transferred, and informing their contacts about the breach. WhatsApp underscores the importance of not sharing verification codes with anyone to enhance security and prevent unauthorized access to accounts.