A new and sophisticated scam targeting WhatsApp users is currently spreading, known as "Ghost Pairing" or (Ghost Pairing), which is a trick that enables the scammer to control the victim's private WhatsApp account without needing to hack the password or intercept messages.
Instead, this operation relies on "social engineering" techniques, where users are deceived into granting scammers access to their accounts. Cybersecurity experts warn about the dangers of this process, which spreads through trusted contacts, making it "extremely malicious," according to the site "Observer Voice" or (observer voice).
Understanding the "Ghost Pairing" process usually begins with an apparently innocent message from a trusted contact. Victims might receive a text saying: "Hello, is this you in this picture?" or "I just found your picture," accompanied by a link that appears to lead to a familiar post on social media.
Upon clicking the link, users are directed to a fake webpage designed to mimic a legitimate site. This page asks them to "verify" their identity to view the content, which triggers the pairing or linking process with the device used for the WhatsApp application.
During this process, users are asked to enter their mobile number, followed by the generation of a numerical code for linking. Then, the fraudulent page directs the victim to enter this code into WhatsApp, disguising it as a "security procedure."
Thus, the victim unknowingly links the attacker’s device to their account. Once linked, the attacker gains full access to the victim's private WhatsApp account, allowing them to read messages, download media, and send messages without the victim's knowledge.
The rapid spread of the scam operation The "Ghost Pairing" scam is extremely dangerous due to its reliance on trust. Once an account is compromised, attackers can use it to send malicious links to the victim's contacts and chat groups.
Since these messages come from familiar sources, the likelihood of recipients clicking on them increases, facilitating the rapid spread of the scam operation without the need for random emails or clear warning signs.
According to "Observer Voice," this operation was initially detected in parts of Europe, but experts warn that it is not limited to any specific region and can target any WhatsApp user worldwide.
The element of "social engineering" in the operation enhances its effectiveness. Scammers exploit users' trust in their contacts and their feeling of security towards them, which encourages victims to interact more with the scam process.
The "Ghost Pairing" scam operation distinguishes itself from other scams as it does not rely on exploiting app vulnerabilities or weakening encryption. The operation highlights a worrying trend in digital threats, where attackers focus on exploiting human behavior instead of technical vulnerabilities.
How to protect yourself? To protect against the "Ghost Pairing" operation, users must prioritize awareness of technical solutions. Regularly checking the "Linked Devices" list in WhatsApp is critical, as it allows users to identify any unfamiliar devices and remove them. Users should also be cautious of any requests to enter pairing codes or verify their identity through external websites.
Enabling "Two-step verification" or (Two-step verification) can provide an additional layer of security. Users should also be wary of unexpected messages, even from known contacts, and verify their authenticity before clicking on any links.
