Silent WhatsApp Threat: GhostPairing Scam Steals Your Chats Without You Knowing (Instagram)
New Delhi: A new scam called GhostPairing is quietly targeting WhatsApp users across India and beyond. Unlike typical hacks, it doesn't steal your password or require a SIM swap. Instead, fraudsters trick victims into linking their WhatsApp account to a hidden device using the app's normal features, without any obvious alert.
The scam often starts with a simple message from a contact you know. It might say something like "Hey, I just found your photo!" and include a link. If you click it, you're led to a fake page that looks familiar, often mimicking Facebook. There, you are asked to "verify" before viewing the photo. That prompt is the trap.
Once you enter your phone number and the verification code, you unknowingly approve the attacker's device as a linked WhatsApp session. WhatsApp then treats it like any normal WhatsApp Web connection. The scam doesn't log you out or change anything obvious. Your chats, photos and voice messages continue to appear as usual, even while a criminal watches them from afar.
Authorities say this is what makes GhostPairing especially dangerous. There's no sign of forced logout or alert. Many victims realise only when strange messages are sent from their account or private data leaks.
Experts point out that GhostPairing thrives on social engineering, using messages that feel personal and harmless. Since the links often come from someone you know, users click without thinking. Scammers also tailor the fake pages to look trustworthy, increasing the odds of victims following the steps needed to link the attacker’s device.
Cybersecurity authorities including India’s Indian Computer Emergency Response Team (CERT-In) are urging users to be extra cautious:
Copyright © 2025 Top Indian News
