WhatsApp users warned of GhostPairing scam hijacking accounts

English

Hackers are targeting WhatsApp users with a new GhostPairing scam that allows full account access without cracking passwords or encryption safeguards. The scam bypasses traditional authentication methods, posing a significant risk to user privacy and security. Users are advised to check the Linked Devices section to detect any compromises.

A new cyber threat has emerged targeting WhatsApp users through the GhostPairing scam, as reported by TechRadar. This sophisticated attack enables hackers to gain complete control over accounts without needing to break passwords or the app's encryption protections. The method exploits vulnerabilities in the linking process, allowing unauthorized devices to pair invisibly with the victim's account.

According to the report, the scam is particularly dangerous because it does not trigger standard security alerts. WhatsApp's built-in safeguards, such as two-factor authentication, remain intact, yet hackers can still access messages, contacts, and other sensitive data. The publication emphasizes that the Linked Devices section within the app is the only reliable tool for users to identify and revoke suspicious pairings.

No specific details on the scam's origins or affected regions were provided, but the warning urges all WhatsApp users to regularly review their linked devices. This incident highlights ongoing challenges in securing messaging platforms against evolving phishing and pairing exploits. TechRadar published the alert on December 21, 2025, advising immediate vigilance to prevent account hijackings.

Related Articles

Illustration depicting hackers hijacking Linux Snap Store apps to steal cryptocurrency recovery phrases, featuring a compromised Ubuntu laptop and digital seed phrase theft.
Image generated by AI

Attackers hijack Linux Snap Store apps to steal crypto phrases

Reported by AI Image generated by AI

Cybercriminals have compromised trusted Linux applications on the Snap Store by seizing expired domains, allowing them to push malware that steals cryptocurrency recovery phrases. Security experts from SlowMist and Ubuntu contributor Alan Pope highlighted the attack, which targets established publisher accounts to distribute malicious updates impersonating popular wallets. Canonical has removed the affected snaps, but calls for stronger safeguards persist.

GhostPairing: WhatsApp Hijacking Threat

Security researchers, first reporting via TechRadar in December 2025, warn WhatsApp's 3 billion users of GhostPairing—a technique tricking victims into linking attackers' browsers to their accounts, enabling full access without breaching passwords or end-to-end encryption.

Silent Whisper vulnerability exposes WhatsApp users to secret tracking

Reported by AI

A new security flaw known as Silent Whisper puts billions of WhatsApp and Signal users at risk. Attackers can monitor activity without detection, leading to battery drain and revelation of daily routines. An expert has created a tool that exploits this vulnerability to spy on users undetected.

Technology

Huge data leak exposes 149 million credentials without protection

Technology

Custom vishing kits target SSO accounts worldwide

Technology

Hackers steal millions of Pornhub users' data for extortion

Hackers extort French crypto firm Waltio after stealing user data

Hackers have targeted Waltio, a French cryptocurrency accounting platform, demanding a ransom after stealing emails and tax reports from 50,000 customers. The company reported the incident on January 21, 2026, stating that no passwords or highly sensitive data were compromised. French authorities are now investigating the sophisticated cyberattack.

Wrench attacks on crypto holders rise in frequency and violence

Reported by AI

Physical assaults known as wrench attacks against cryptocurrency holders are increasing in number and severity, according to recent analyses. These incidents correlate with fluctuations in crypto market values, prompting calls for enhanced personal security measures. While overall risks to individual holders may be decreasing, the trend highlights vulnerabilities in self-custody practices.

Haotian AI app powers romance scams with face swaps

A Chinese AI app called Haotian has generated millions by selling ultra-realistic face-swapping technology on Telegram, primarily to scammers. The tool enables nearly perfect swaps during live video chats and integrates with apps like WhatsApp and WeChat. Its main channel disappeared after inquiries revealed its use in Southeast Asian fraud operations.

Trust Wallet confirms second Shai-Hulud supply-chain attack

Reported by AI

Trust Wallet has linked a second Shai-Hulud supply-chain attack to a hack on its Chrome extension, resulting in the theft of about $8.5 million in cryptocurrency. The incident involved a malicious version of the extension that exfiltrated users' sensitive wallet data. The company rolled back the compromised software and committed to reimbursing affected users.

February 02, 2026 00:15

Report uncovers data leaks in android ai apps

January 26, 2026 00:51

Hackers are using LLMs to build next-generation phishing attacks

January 25, 2026 15:11

OpenAI users targeted by scam emails and vishing calls

January 24, 2026 11:30

Galaxy S26 series may adopt Pixel's scam detection feature

January 21, 2026 11:59

Beware of fake delivery SMS that know your exact address

January 15, 2026 04:11

Flaw in Google Fast Pair devices allows hackers to eavesdrop

January 14, 2026 06:04

Hackers hijack LinkedIn comments to spread malware

January 14, 2026 04:52

Japanese police to endorse fraud prevention apps

December 21, 2025 08:27

Delhi businessman loses Rs 18.8 crore in WhatsApp investment scam

December 17, 2025 06:35

Experts warn of PayPal subscription abuse for fake emails

 

 

 

This website uses cookies

We use cookies for analytics to improve our site. Read our privacy policy for more information.
Decline