A new WhatsApp scam is locking users out of their accounts, leaving them without access to messages, contacts, photos, and important files. Worse, once hackers gain control, they exploit the victim’s account to target friends and family using the same deceptive tactic.
Cybercriminals are using a social engineering technique to manipulate victims into revealing their One-Time Password (OTP). They impersonate trusted contacts to gain access to accounts. Here’s a step-by-step breakdown of the scam:
This scam is a form of phishing, where hackers exploit users’ trust and lack of awareness. In reality, the hacker has already hijacked the sender’s WhatsApp account and is using it to deceive new victims. The attacker generates an OTP linked to the victim’s phone number and tricks them into sharing it, effectively transferring control of the account.
By the time victims realize they’ve been hacked and report the issue to Meta or the police, the attacker may have already compromised multiple accounts.
To avoid falling victim to this scam, follow these security measures:
Never share OTPs with anyone – not even close friends or family. OTPs are confidential security codes meant only for you.
Ignore unexpected OTP requests – If you receive an OTP that you didn’t request, let it expire instead of sharing it.
Verify with contacts through another platform – If a friend asks for an OTP, call or message them outside of WhatsApp to confirm if they actually sent the request.
Enable Two-Step Verification – Adding an extra security layer in WhatsApp settings can help prevent unauthorized access.
Report suspicious activity – If you suspect someone is compromised, report the issue to WhatsApp support and warn your contacts.
If you receive an OTP message you weren’t expecting, ignore it. Do not click on any links or download any attachments. Hackers rely on urgency and trust to trick victims—stay alert and safeguard your WhatsApp account.
For more cybersecurity updates and scam alerts, stay tuned.