WhatsApp users have been alerted to a new scam known as “GhostPairing,” which deceives them into granting unauthorized access to their accounts. This latest threat, identified by cybersecurity company Avast, poses a significant danger as victims may remain unaware of the compromise for an extended period.
In contrast to previous scams centered on password theft, this scam can result in more severe fraudulent activities. Security experts caution that the scammers gaining access to private chats, voice notes, and photos create opportunities for impersonation, targeted scams, and extortion.
The scam typically starts with the victim receiving a message from a trusted contact, claiming to have found their photo and including a link. Upon clicking the link, the user is directed to a counterfeit page resembling Facebook, where they are prompted to “verify” in order to view the image.
Unbeknownst to the victim, this seemingly innocent verification process is actually part of WhatsApp’s device-linking mechanism. By inputting a valid pairing code, unwitting victims inadvertently link the attacker’s browser as a device, granting them continuous access to messages, photos, and contacts without necessitating a password change or account lock.
Once an account is compromised, the scammers exploit it to send messages to the victim’s contacts, thereby facilitating the spread of the scam organically.
To safeguard against scammers pairing with their WhatsApp accounts, users can take several precautionary measures:
1. Regularly check WhatsApp → Settings → Linked Devices and remove any unfamiliar devices.
2. Treat any requests from websites to scan a WhatsApp QR code or enter a pairing code with suspicion.
3. Activate two-step verification and raise awareness among family and group chats about such scams.