How to secure your account on “WhatsApp” from “kidnapping”?
Cyber security experts have warned of a trick that Internet criminals use to manipulate victims in order to send money, or use panic about the new Corona virus to persuade them to share bank account details, a trick related to the WhatsApp service.
The electronic attack begins when a six-digit code is sent from WhatsApp via a text message to the victim’s phone, shortly afterwards a friend or relative, whose account is exposed to the same trick, is required from the user to share the code via WhatsApp.
Once this happens, the victim is logged out of his account for up to 12 hours, allowing hackers to write contacts under the victim’s nickname.
The simple trick takes advantage of the verification code sent automatically by WhatsApp when installing the application on a new device, and hackers get the password they need to activate the user’s WhatsApp account by sharing the code, and only the phone number and the six-digit PIN number is required.
See: “WhatsApp” number of users exceeds the threshold of two billion
By accessing the new account, hackers can then further spread the trick by using social engineering to trick people into giving up their WhatsApp accounts.
“Hackers usually try to get passwords for bank accounts or broadcast services like Netflix, but they’re now changing their message to take into account the ongoing epidemic,” said Jake Moore, ESET’s cyber security expert.
The trick can be avoided by activating WhatsApp’s two-factor authentication feature, which provides an additional layer of security for users and gives them their six-digit personal identification number, but many users do not use it because it is not applied by default.