News: WhatsApp ghost pairing has led to a recent rise in cases of cyber fraud involving unauthorised access to users’ messaging accounts.
About Ghost Pairing
- Ghost pairing is a cyber fraud technique in which attackers gain unauthorised access to a victim’s WhatsApp account.
- It occurs when fraudsters secretly link the victim’s WhatsApp account to another device without the victim’s knowledge.
- How Ghost Pairing Works
- Cybercriminals use social engineering tactics to trick users into clicking malicious links or scanning QR codes.
- These links often appear as innocent messages such as “Hi, check this photo” or urgent alerts.
- Once the victim clicks the link or completes a verification step, the attacker pairs the victim’s WhatsApp account to their own device.
- This gives the attacker full access to chats, contacts, photos, and videos without requiring passwords or SIM swapping.
- Techniques Used by Attackers
- Fraudsters impersonate known contacts, bank officials, or government representatives to build trust.
- They use panic-inducing messages, such as threats of account freezing or number blocking, to force quick action.
- The attack relies on the victim’s lack of awareness rather than technical hacking.
- Risks and Consequences
- Attackers can read private conversations and download sensitive photos and videos.
- Victims may be blackmailed using personal data obtained from the account.
- Financial fraud may occur if banking details, IDs, or card information are stored on the phone.
- The attacker can also scam the victim’s contacts by impersonating them.
- Government Advisory: The Ministry of Electronics and Information Technology has issued advisories warning users about ghost pairing and similar cyber threats. Citizens have been urged to remain cautious while using messaging platforms.
