The National Cyber Emergency Response Team (National CERT Pakistan) has issued a warning about a sharp rise in WhatsApp account hijacking incidents across the country. According to the advisory, attackers are not exploiting technical flaws in the app but instead using social engineering tricks to deceive users into giving away access codes or clicking on malicious links. This surge in hijacking has put millions of users at risk, as compromised accounts are often misused to impersonate victims, spread scams, and steal sensitive information.
How Cybercriminals Hijack WhatsApp Accounts?
Cybercriminals are employing several methods to hijack accounts. The most common technique involves tricking users into sharing the six digit verification code sent by WhatsApp during login. In other cases, attackers exploit call forwarding features to intercept verification codes or send phishing links disguised as job offers, bank alerts, or reward schemes. Fraudsters have also been found using QR codes that secretly link a victim’s account to their own device, as well as abusing WhatsApp Web and Desktop linking to connect unauthorized devices. Once an account is hijacked, it can be used to spread misinformation, commit fraud, or damage reputations.
WhatsApp Account Hijacking Signs
National CERT has urged users to remain vigilant and watch for warning signs such as unexpected logouts, suspicious outgoing messages, unknown devices linked to WhatsApp Web, or sudden prompts for two step verification. These indicators often suggest that an account has been compromised and immediate action is required.
Read this: WhatsApp unveils 2026 sticker pack for New Year chats
Recommended Security Measures
To protect against hijacking, CERT strongly recommends enabling two step verification on WhatsApp, which adds a PIN to secure the account. Users should never share verification codes, even if requests appear to come from trusted contacts or institutions. It is also important to regularly check linked devices and remove any unknown connections, avoid clicking on suspicious links, and keep WhatsApp updated to the latest version. Disabling call forwarding is another effective measure to prevent attackers from intercepting verification calls.
What To Do If Your Account Is Hijacked?
If a user suspects their account has been hijacked, they should immediately re register their number with WhatsApp to regain control, enable two step verification, and inform their contacts about the compromise. Incidents should also be reported to National CERT Pakistan through its official portal at pkcert.gov.pk. The advisory emphasizes that WhatsApp hijacking is not a flaw in the app itself but a scam that relies on tricking users. By staying alert, refusing to share codes, and enabling security features, individuals can protect themselves and their communities from this growing cyber threat.
