WhatsApp is a popular and easy-to-use messaging app. It has some security features, like the use of end-to-end encryption, which tries to keep your messages private. However, as good as these security measures are, WhatsApp still isn’t immune to hacks, which can end up compromising the privacy of your messages and contacts.
As knowing is half the battle, if we are simply aware of vulnerabilities, we can then take concrete steps to avoid comprising ourselves. To that end, here are a few ways that WhatsApp can be hacked.
What is this new WhatsApp scam?
As per the reports on Twitter for the new scam, the victims will a call from the hackers.
The caller will persuade the victim to call at ’67’ or ‘405’
Once the victim makes the call on the given number, they will get logged out of their WhatsApp accounts and hackers will get complete control of the victim’s account in a few seconds.
How Does This WhatsApp Scam Work?
The CloudSEK founder explains that the above-mentioned numbers which the victims will dial are actually service request numbers for Indian telecom operators like Airtel and Jio for ‘call forwarding’.
This feature enables the user to divert calls when the number is busy or engaged.
Eventually, the hackers have been using this technique to forward victims’ calls to their own numbers.
Moreover, they will simultaneously start the WhatsApp registration process on their smartphones along with generating and selecting the OTP verification through a phone call.
Now, due to call divert, the hacker will only get the OTP verification call. By this, hackers will get full control.
As per the security researchers, this trick could be used to get control of any WhatsApp account, if the user gives approval to the hacker for physical access to their phone.
Also, this is a must to remember that every country and the telecom operator has a similar service request number, this hacker trick is being used to attack the victims all across the world.
How To Prevent Call Hacking
Call forwarding is just one of the numerous ways malicious actors can breach someone’s phone. However, there is also SIM swapping, and phishing emails and text messages as methods of attack.
In addition, nowadays, threat actors now use public Wi-Fi networks. They can create fake Wi-Fi networks to lure users who are in need of an internet connection, and when victims connect through their network, it will lead them to phoney sites that will help them launch an attack.
According to MUO, it is highly recommended for users to not connect to any Wi-Fi network to prevent hacking. It is also advised that users turn off hotspots in crowded places.
With the call forwarding strategy, users are advised to not permit any access from an unknown caller. In addition, it is worth remembering that two-factor authentication can help users add in that extra layer of protection and security. However, in this case, users must use it wisely to their advantage instead of allowing this tool to launch a hack on their devices.
Source: tech.co