Recently, India’s national cyber security agency CERT-In has issued a strong warning about a serious threat affecting WhatsApp users across the country. The vulnerability, named “GhostPairing,” allows cyber criminals to take full control of a person’s WhatsApp account without needing the password or SIM swap, simply by exploiting the app’s device-linking feature. Victims receive a message from a trusted contact with a link that leads them to enter their phone number on a fake site. Once this happens, attackers can read messages, view photos and videos, and even send messages to contacts as if they were the owner.This threat shows how vulnerable people are to clever tricks and social engineering. Many users still trust links that appear to come from friends or family, not realising that scammers can copy familiar names and pictures to make malicious messages look harmless. This has serious consequences — an attacker with access to WhatsApp can disrupt personal life, spread misinformation, or even misuse someone’s identity. The rise of such threats underscores the need for greater public awareness and stronger digital safety habits. Technology companies like WhatsApp must do more to protect users by tightening security around device linking and alerting them when unknown devices are connected.
At the same time, users need basic digital education — not clicking suspicious links, checking linked devices regularly, and using two-step verification. India is embracing digital communication at a rapid pace, but this progress comes with risk. Cybercriminals are continuously developing new ways to exploit trust and technology. The government, tech platforms, and citizens must work together — by sharing information, strengthening cybersecurity measures, and building awareness — to ensure our digital lives are safe and secure. Only then can we enjoy the benefits of digital tools without falling prey to hidden dangers.