WhatsApp user warning - hackers are hijacking accounts without any need to crack the authentication, so be on your guard

Linked Devices section is the only reliable way to detect compromises

News By Efosa Udinmwen published 21 December 2025

(Image credit: Shutterstock) Share Share by:

• Copy link
• Facebook
• X
• Whatsapp
• Reddit
• Pinterest
• Flipboard
• Threads

Share this article 0 Join the conversation Follow us Add us as a preferred source on Google

• Hackers can hijack WhatsApp accounts without ever cracking passwords or encryption
• GhostPairing attacks exploit legitimate device-linking features to gain full account access
• Users are tricked by fake Facebook login pages into authorizing attackers

Security researchers are warning WhatsApp users about a growing account hijacking technique that does not rely on breaking passwords or bypassing encryption.

Attackers exploit WhatsApp’s legitimate device-linking feature to quietly attach their own browser to a victim’s account.

Once linked, the attacker can read messages in real time, download shared media, and send messages that appear to come directly from the victim.

How the linking feature is abused

The attack, tracked under the name GhostPairing, begins with a short message that appears to come from a trusted contact.

The message typically contains a link claiming to show a photo of the recipient.

To build credibility, the link preview often resembles Facebook content.

Clicking the link redirects the victim to a fake Facebook login page hosted on a lookalike domain.

Are you a pro? Subscribe to our newsletter

Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!

Contact me with news and offers from other Future brandsReceive email from us on behalf of our trusted partners or sponsors