Roya Logo
EN
/

Articles

ALLCrimes & InvestigationsArt and CelebritiesEntertainmentDrama and CinemaTop 5Watch on Royasports

Important for WhatsApp users… Protect your accounts

Entertainment|2025/12/22
Important for WhatsApp users… Protect your accounts
WhatsApp
استمع للخبر:
0:00

ملاحظة: النص المسموع ناتج عن نظام آلي

The campaign begins with a message appearing to come from a familiar contact The GhostPairing attack is notable for not relying on direct technical hacking

Cybersecurity experts have revealed a new offensive campaign targeting WhatsApp users, called GhostPairing, which grants attackers full control over victims’ accounts without the need to hack passwords or use complex technical methods.

The attack exploits WhatsApp’s linked devices feature, designed to sync the account between a phone and other apps or browsers. The campaign relies on social engineering, deceiving users into allowing the attacker to link their device to their account, giving full access to conversations and data without the victim’s knowledge.

How It Works

The attack begins with a message appearing to come from a familiar contact, containing a link that seems like an important photo or content. Clicking the link directs the victim to a fake page resembling Facebook, requiring verification before displaying the content.

The attacker then exploits WhatsApp’s device linking interface to send an 8-digit code to the user’s phone. When the victim enters the code, they believe it is a normal verification, while in reality, they have granted the attacker permission to link their device to the account. Once the link is complete, the attacker can read messages, view media, and monitor ongoing conversations without the victim noticing.

Attack Risks

GhostPairing does not rely on direct technical hacks or SIM card changes; it exploits user trust and the simplicity of the linked devices feature. The attacker can also send messages on behalf of the victim, accelerating the spread of the campaign and increasing its severity.

How to Protect Yourself

Experts advise against clicking suspicious links, even from known contacts, and against entering device linking codes on fake pages. Enable two-factor authentication in WhatsApp settings, regularly review linked devices, and remove any unknown device. Digital awareness remains one of the most important defenses against such attacks.

تكنولوجياواتساباختراقWhatsAppGhostPairing