Why in the News?
The Indian Computer Emergency Response Team has issued an advisory warning WhatsApp users about a new cyber attack technique called GhostPairing.
What is GhostPairing?
• GhostPairing is a WhatsApp account takeover attack
• Hackers secretly link their own device to a victim’s WhatsApp account
• No password theft or SIM swap is required
• Victim often remains unaware of the compromise
• Gives attackers near complete access to chats and data
How GhostPairing Works (Modus Operandi)?
• Victim receives a message from a trusted contact saying “Hi, check this photo”
• Message contains a malicious link with Facebook style preview
• Link opens a fake Facebook photo viewer
• User is prompted to “verify” to view content
• Victim enters phone number and pairing code
• Attackers use the code to link their device
• Full WhatsApp access is granted to attackers
Advisory and Preventive Measures
• Do not click suspicious links even from known contacts
• Never share WhatsApp verification or pairing codes
• Regularly check Linked Devices in WhatsApp settings
• Enable two step verification
• Log out unknown linked devices immediately
Prelims Pointers
• GhostPairing exploits human trust, not software vulnerability
• Uses social engineering and fake web interfaces
• CERT In is the nodal agency for cyber security advisories in India
• Linked device feature can be misused if verification codes are shared
| The terms ‘Wanna Cry, Petya and Eternal Blue’ sometimes mentioned in the news recently are related to: (2018)
(a) Exo-planets (b) Crypto-currency (c) Cyber attacks (d) Mini satellites |
Get an IAS/IPS ranker as your 1: 1 personal mentor for UPSC 2024
