New Delhi, Dec. 20 -- A sophisticated new scam targeting WhatsApp users has been uncovered, exploiting the app's device-linking feature to gain full access to victims' accounts. Cybersecurity experts have warned that the campaign, called GhostPairing, allows attackers to hijack accounts without stealing passwords, SIM cards, or verification codes.

Unlike conventional hacks, GhostPairing relies entirely on social engineering, tricking users into approving a malicious device themselves. The method is reportedly hard to detect, spreads quickly via trusted contacts, and raises serious questions about how device-pairing features are designed and understood.

According to a report by cybersecurity firm Gen Digital, the scam begins with a seemi...