Over the past six months, the fake package has reportedly been downloaded more than 56,000 times., Technology & Science, ...

A malicious package in the Node Package Manager (NPM) registry poses as a legitimate WhatsApp Web API library to steal ...

Malicious npm package posing as a WhatsApp Web API library operated for months as a functional dependency while stealing messages and maintaining persistence.

The scam usually starts with a short, casual message that appears to come from someone the victim already knows and trusts.

Indian government warns WhatsApp users about the GhostPairing scam that silently hijacks accounts using device linking.

It started with a moment of confusion that felt almost trivial. A Mumbai-based accountant received a message from a colleague ...

Hyderabad police have warned users about ‘GhostPairing’, a new WhatsApp scam that exploits the app’s device-linking feature to hijack accounts through fake links. The scam relies on social engineering ...

Threat actors are abusing the legitimate device-linking feature to hijack WhatsApp accounts via pairing codes in a campaign dubbed GhostPairing. This type of attack does not require any authentication ...

The advisory said that the "high" severity attack campaign usually begins with the victim receiving a message like "Hi, check this photo" from a "trusted" contact.

It can enable attackers to take control of an account, including access to real-time messages, photographs, and videos on the web version ...

India's CERT-In has identified a serious security vulnerability in WhatsApp that could allow hackers to fully control user accounts without needing passwords or SIM swaps. , India News, Times Now ...

Cyber fraudsters are employing a new 'ghost pairing' scam to secretly access WhatsApp accounts, bypassing traditional ...