WhatsApp GhostPairing Scam: If You Get 'Hey, I Just Found Your Photo' Message Don’t Open It Or Else.....

If

you use WhatsApp on more than one device, it might be the right time to check your settings. A new cyber attack called GhostPairing is targeting WhatsApp users, which allow hackers to read private chats in real time, without needing passwords, OTPs or account details.The attack was identified by cybersecurity researchers at Gen Digital, the parent company of popular security brands like Norton, Avast, Avira and AVG. What makes this attack especially dangerous is that it does not require passwords, OTPs or account details.

WhatsApp GhostPairing: What It Is, How It Works And How To Stay Safe

According to researchers, the GhostPairing attack takes advantage of how WhatsApp’s device linking and pairing system works.Hackers trick people by sending a fake link that looks safe. It is often shown as a Facebook photo or simple message like -- 'Hey, I found your photo'. Once the user clicks the link, the attacker is able to silently pair their device with the victim’s WhatsApp account and start reading chats instantly. The attack begins with a message that looks harmless and familiar. Since WhatsApp users often receive photos and links from friends and family, many do not suspect anything unusual. The moment the link is clicked, the attacker manipulates the WhatsApp pairing process in the background.ALSO READ: Alert! These iPhones, Macs, And Other Apple Products At Risk Of Getting Hacked: Here's What You Should Do To Stay Safe

According to cybersecurity researchers, the attack was first spotted in Czechia, but the risk is global, including for users in India.The method does not involve complex hacking tools, which means even less-skilled cybercriminals can carry it out.What makes GhostPairing more alarming is that victims may not immediately realise their account has been compromised.Hackers can continue monitoring chats in real time without alerting the user.WhatsApp is one of the most widely used messaging apps in India for personal chats, office communication, payments and even official work. Any attack that compromises chat privacy can expose personal photos, chats,and confidential information.The researchers strongly advise users to be extra cautious with unknown messages especially with links. Even if the message appears friendly or familiar, users should verify the sender before clicking.

How to Stay Safe From WhatsApp GhostPairing Attack

- Do not click on unknown or unexpected links- Avoid opening links claiming to show your photos or videos- Verify the sender before responding- Enable two-step verification on WhatsApp- Keep WhatsApp updated to the latest version- Regularly check linked devices in WhatsApp settings.