The National Computer Emergency Response Team (National CERT) has issued a public warning following a sharp rise in WhatsApp hacking and phishing attacks across Pakistan. According to the advisory, cybercriminals are using fake links, misleading messages, and fraudulent verification codes to hijack users’ accounts and steal personal data.
“Attackers use fake links, deceptive messages, and fraudulent verification codes to trick users into revealing personal data or granting unauthorised access,” the advisory warned. Once compromised, these accounts can be exploited to spread scams, access private content, or impersonate victims for fraud.
Many of the phishing attempts appear to come from trusted sources, including delivery companies, banks, and job recruiters. Common scams involve fake job offers, investment schemes, and reward claims. “Scammers also lure victims into fake job scams that falsely promise employment opportunities,” the alert noted.
National CERT urged users to enable two-step verification in WhatsApp, avoid suspicious links, and confirm any questionable messages through official channels. Users are also advised to regularly review connected devices, avoid using WhatsApp on public devices, and refrain from sharing verification codes or passwords.
“Beware of contacts from unknown numbers who later ask you to move conversations to other messaging apps like Telegram — this behaviour is often linked to scams,” the advisory added.
