The article explains a new WhatsApp account takeover technique called ghost pairing, which allows attackers to hijack accounts without alerting the victim. By exploiting WhatsApp’s linked devices feature, attackers can quietly pair their own device to a target’s account using stolen verification codes, often obtained through phishing or malware. Once linked, they can read messages, access conversations, and monitor activity while the victim continues using WhatsApp normally. Because the attack does not log the victim out or trigger obvious warnings, it can go unnoticed for long periods. The piece warns that this method is especially dangerous because it bypasses many users’ assumptions about account security and highlights the need for stronger protections and greater awareness.
