How is this theft done?
Cybercriminals use various techniques to achieve their mission:
1. Know your number or any telephone number within those available in Uruguay.
In this case, it will seek to verify the account on another device but, for this to happen, it will need to access your verification code.
The system asks for a verification code that arrives by SMS or voice call. In the event that a user receives a verification code without having been requested, they should be alerted.
Another possibility is that the attacker requests the code by voice. In this case, you will receive a call and, if it is not answered, the verification code will be saved in the answering machine of the cell phone.
If the user did not change the password to access the answering machine and uses the one that the device has by default, the attacker could easily access the verification code in order to log into WhatsApp from another device.
2. Through a user contact that has been previously hacked
In this case, it is the user himself who provides the verification code. The most frequent way is to send a message through a user contact who has previously been hacked with a message that says, for example: “You received a code by mistake on your cell phone but it is actually for me, can you tell me? give please?
If the user forwards the code, the attacker gains control of the account and activates the second factor of authentication to shield the account.
3. Qrjacking code
It occurs in the case of using WhatsApp Web where the user must scan a QR code to allow direct access to the desktop version of the application.
The WhatsApp QR code stores information to validate user access to the web version, but does not offer any additional validation.
In this case, you must always access from the official website (https://web.whatsapp.com) and log out once the computer is no longer used.
recommendations
To avoid these types of maneuvers, Interpol’s Cybercrime Department recommends:
Activate two-step verification by entering WhatsApp in the “Account” section, located within the “Settings” or “Configuration” section, depending on the device model.
In case you receive a message in which a verification code is provided, avoid sharing it with third parties by any means.
Remember that the platform does not request information from its users through SMS, WhatsApp or other messaging services or through phone calls.
If you receive a WhatsApp message from an unknown user, it is advisable to block and report the user through the options that will appear on the screen.
Check regularly on which devices WhatsApp Web sessions are open and avoid opening sessions on shared devices.
In case of being the victim of a maneuver of this type, notify your contacts and report what happened before the corresponding authorities.
How do I recover my account?
Register in WhatsApp with your phone number and enter the six-digit code that you receive by SMS to verify the number.
Once you enter the six-digit code sent by SMS, the session of the person with access to your account will be automatically closed.
You may also be asked to enter a two-step verification code. If you don’t know that code, the person with access to your account may have activated 2-Step Verification. In that case, you must wait seven days to be able to verify your number without the two-step verification code. Regardless of whether you know the two-step verification code or not, the session of the person with access to your account will be closed as soon as you enter the six-digit code sent by SMS.
Where and how can I report?
You can go to Calle Maldonado 1109 corner of Paraguay or contact the offices of the General Directorate for the Fight Against Organized Crime and Interpol (Department of Computer Crimes) at the telephone numbers or emails detailed below:
• Email: This email address is being protected against spam bots. You need JavaScript enabled to view it. .
• Telephone: 2030 4614 or 2030 4625.
Source: Department of Computer Crimes of the General Directorate for the Fight Against Organized Crime and Interpol
Montevideo, January 28, 2021
– .
