Cybersecurity experts have uncovered a new WhatsApp scam called GhostPairing that can lead to impersonation, targeted fraud and extortion.
WhatsApp users are being warned about a new “GhostPairing” scam that tricks them into granting attackers access to their accounts.
This latest threat was recently discovered by cybersecurity firm Avast, and it’s particularly insidious because victims may not realise they’ve been compromised for months.
Unlike previous scams that focused on stealing passwords, this one can lead to more serious fraud.
Experts warn that the scammers’ access to private chats, voice notes, and photos opens up opportunities for impersonation, targeted scams, and even extortion.
Here’s how the “GhostPairing” scam works:
The victim receives a message from a contact they trust, usually saying something like “hey, I found your photo” along with a link.
When the user clicks on the link, they’re taken to a fake page that resembles Facebook, which asks them to “verify” before they can view the image.
However, this seemingly harmless security step is actually part of WhatsApp’s device-linking process.
By entering a valid pairing code, victims unwittingly add the attacker’s browser as a linked device.
This provides criminals with ongoing access to messages, photos, and contacts, without requiring a password change or account lock.
Once an account has been compromised, it sends messages to friends, family, and group chats, allowing the scam to spread naturally.
So, how can WhatsApp users avoid falling prey to this scam?
There are several steps you can take to prevent scammers from pairing with your WhatsApp account:
1. One step is to check WhatsApp → Settings → Linked Devices and remove anything unfamiliar.
2. Treat any request from a website to scan a WhatsApp QR code or enter a pairing code as suspicious.
3. Enable two-step verification and share awareness with family and group chats.
