Cyber Insider reported:
A new WhatsApp account takeover technique dubbed the GhostPairing grants attackers full access to a victim's messages and media without stealing passwords or hijacking SIMs.ondence across Spanish-speaking regions.
Victims typically receive a brief WhatsApp message from a known contact saying something like, “Hey, I just found your photo!”, followed by a link preview mimicking Facebook. Clicking the link leads to a fake Facebook-branded viewer page, which prompts the user to “verify” their identity before viewing the supposed content. In reality, this page is a relay for the attacker, exploiting WhatsApp's “link device via phone number” feature. Once the victim enters their phone number and follows a pairing code prompt, they unknowingly grant the attacker persistent access to their WhatsApp account.
Click to read the original article here.
Victims typically receive a brief WhatsApp message from a known contact saying something like, “Hey, I just found your photo!”, followed by a link preview mimicking Facebook. Clicking the link leads to a fake Facebook-branded viewer page, which prompts the user to “verify” their identity before viewing the supposed content. In reality, this page is a relay for the attacker, exploiting WhatsApp's “link device via phone number” feature. Once the victim enters their phone number and follows a pairing code prompt, they unknowingly grant the attacker persistent access to their WhatsApp account.
Click to read the original article here.
Key Takeaway: Never click on links within WhatsApp messages. Use your bookmarked link instead.
Enroll in Training Sessions: Last Thursday of Every Month is Training on Frauds and New Scam Alerts and How to Combat
Enroll in Training Sessions: Last Thursday of Every Month is Training on Frauds and New Scam Alerts and How to Combat