You get a WhatsApp message from a familiar contact. It says something casual like, “Hey, is this you in this photo?” Curious, you tap the link. Nothing seems unusual, until your WhatsApp quietly stops being just yours. This is GhostPairing, a fast-spreading WhatsApp scam now surfacing across India. What makes it scary isn’t fancy hacking software, it’s how normal it looks. No passwords stolen. No app cracked. Just a clever trick that convinces users to hand over access themselves. Here’s a simple breakdown of what GhostPairing is, why it’s dangerous, and how you can protect yourself. What exactly is the GhostPairing scam? According to cybersecurity company Gen Digital, the scam usually starts with a short, casual message that appears to come from someone the victim already knows and trusts. GhostPairing is a social engineering scam that abuses WhatsApp’s Linked Devices feature, the same one you use for WhatsApp Web or desktop. Instead of hacking WhatsApp, scammers trick you into linking their device to your account. Also read: How to stop WhatsApp media from filling your phone storage
Here’s how it usually starts: These links often use suspicious domains like: Clicking the link opens a fake photo-viewing website. What happens when you click the link? Once you open the link, the website asks you to “verify” yourself before viewing the photo. It typically requests your phone number and then asks you to enter a code that WhatsApp sends to your app.
This is the crucial moment. The code you receive is not for viewing a photo; it is actually a device pairing code generated by WhatsApp when someone tries to link a new device. By entering that code, you unknowingly approve the attacker’s browser or computer as a linked device on your account. Also read: Payal Gaming’s viral video can lead you into cyber scam
Why is this attack so dangerous? One of the biggest dangers of this scam is that nothing seems to go wrong afterward. Your WhatsApp continues to work as usual. You can send messages, receive calls, and use the app normally. There are no warnings, no forced logouts, and no obvious signs that someone else is watching. Because the attacker is connected through Linked Devices, they can silently read messages in the background, much like WhatsApp Web. This “invisible” access allows them to stay connected for long periods without alerting the victim. What information can scammers see?
Info Over time, they can study your communication habits, when you’re active, who you trust, and how you respond. This information can later be used for impersonation, financial fraud, or more targeted scams. Why does this scam spread so fast GhostPairing doesn’t stop with one victim. Once an attacker has access to your WhatsApp, they can send the same “photo” message to your contacts. Since these messages now come from your account, your friends and family are even more likely to trust them. This creates a chain reaction, allowing the scam to spread rapidly across contact lists and groups, often without anyone realising what’s happening until real damage is done. Security researchers first spotted it in Europe, but it’s now appearing across multiple countries and languages, including India.
How to protect yourself from GhostPairing Info Also read: Got a ‘silent call’ from an unknown number?
The takeaway GhostPairing is a reminder that online scams are becoming less about breaking systems and more about manipulating people. A single click and a shared code can quietly hand over months or years of personal conversations.
When a message sparks curiosity or urgency, pause for a moment. That hesitation could be the difference between staying safe and losing control of your WhatsApp account.
The post appeared first on .
