WhatsApp warning over scam that allows criminals to lock account and access messages
Hacker poses as friend to steal six-digit verification code and take over account
Your support helps us to tell the story
From reproductive rights to climate change to Big Tech, The Independent is on the ground when the story is developing. Whether it's investigating the financials of Elon Musk's pro-Trump PAC or producing our latest documentary, 'The A Word', which shines a light on the American women fighting for reproductive rights, we know how important it is to parse out the facts from the messaging.
At such a critical moment in US history, we need reporters on the ground. Your donation allows us to keep sending journalists to speak to both sides of the story.
The Independent is trusted by Americans across the entire political spectrum. And unlike many other quality news outlets, we choose not to lock Americans out of our reporting and analysis with paywalls. We believe quality journalism should be available to everyone, paid for by those who can afford it.
Your support makes all the difference.WhatsApp users are being warned about a worrying scam which has seen people locked out of their accounts.
Users have been tricked into handing over a six-digit “verification code” which hackers have then used to steal their account and attack their contacts in the same way.
The old scam begins when a hacker gets access to another WhatsApp account which will have you listed as a contact.
The hacker, posing as your friend, will then send you seemingly normal messages.
However, around the same time you will receive a text message or email from WhatsApp with a six-digit code.
WhatsApp warns users app will lose features if they don’t agree to new terms by imminent deadline
Facebook’s controversial WhatsApp update may be ‘abusive exploitation’ of data, says regulator
Fake Netflix app hijacked WhatsApp messages to spread malware on Android phones
WhatsApp update adds voice and video calls to desktop app to let conversations ‘feel as close to in-person as possible’
This is because the attacker has requested the code from WhatsApp while pretending to be you.
The person posing as your friend will claim they have sent the code to the wrong account and ask you to help by sending it to them.
Victims will reportedly receive a message, seemingly from their friend, which says something similar to: “Hello, sorry, I sent you a 6-digit code by mistake, can you pass it to me please? It's urgent?”
This six-digit code is only ever generated when you are trying to log in or make changes to an account.
If you do send the code, the attack will be successful and the hacker will gain access to your account.
One WhatsApp user, whose relatives had been targeted by the scam, posted on Twitter: “Three members of my family have lost access to their WhatsApp this morning.
“Hackers send a text message from WA with a verification code, then a WhatsApp text from someone you know saying they desperately need the code. Do not send the code or click the link.”
To protect your account, never give your six-digit code out to anyone else, under any circumstances.
You can also set up two-factor authentication which will require a pin number to log into your WhatsApp account.
Join our commenting forum
Join thought-provoking conversations, follow other Independent readers and see their replies
Comments