Beware, there’s reportedly a new WhatsApp scam doing the rounds. Rahul Sasi, founder of Cloudsek.com, has highlighted a new OTP fraud that he claims is being used to hijack WhatsApp users’ accounts. According to Sasi, cybercriminals are using a simple trick to takeover WhatsApp accounts. In a Twitter post, Sasi detailed how the scam works.
How the WhatsApp OTP scam works
The hacker calls the victim and convinces him/her to dial “**67* or *405*”. Once the victim dials any of these number, they get logged out from their WhatsApp account, and the attacker gets complete control over it. If you wonder how, then read on. Explaining the same, Sasi says that what happens here is that the number the victims dial is a service request for Reliance Jio and Airtel to do “call forwarding” when their number is busy/engaged. The attacker tricks the victims into call forwarding their calls to a number they own. Now in the backend, the hacker triggers the WhatsApp registration process for the victims’ number and chooses the option to send OTP via phone call. Since the victims’ phone is engaged, the OTP will go on hackers’ phone and they will get access to the WhatsApp account.
From Social
He says that the trick works globally as every country and service provider has a similar service request number.
For those unaware, WhatsApp sends an OTP to registered mobile number to verify users’account. The SMS contains a 6-digit verification code (OTP), which user needs to enter on the verification screen in WhatsApp. The verification code is unique and changes each time WhatsApp account is verified on a new phone number or device.
FacebookTwitterLinkedin
For all the latest Technology News Click Here
For the latest news and updates, follow us on Google News.
