Welcome Guest ( Log In | Register )

Outline · [ Standard ] · Linear+

 Whatsapps hacked, How is that possible?

views
     
TSPowerGadget
post Apr 23 2025, 07:51 AM, updated 8 months ago

Enthusiast
*****
Junior Member
821 posts

Joined: Apr 2012
Hi guys, I realised that my whatsapp account has been logged out from my phone this morning and I feel rather strange.

The next moment when I log in back, everybody was asking me whetehr I am okay? But from my Whatsapp, I never send anything.

My friends and family told me that I have sent them a virus-link/website to them during midnight.

The link is something like

SEMAK STATUS BANTUAN EWALLET MADANI 2025 SEKARANG!!

xxxxxxx-log1.com/info1

I am very caution with online scam, using iPhone and never install any suspicious apps or click into any scammer-link before. It just happened so suddenly when I fall asleep last night. Unfortunately I forgot to add 2-FA into my Whatsapp account.

Anybody can advise how the hacker able to take control of my device?
TSPowerGadget
post Apr 23 2025, 11:05 AM

Enthusiast
*****
Junior Member
821 posts

Joined: Apr 2012
QUOTE(Roadwarrior1337 @ Apr 23 2025, 08:02 AM)
Ah yes the hack and msg your contacts

It’s popular. You may have downloaded an apk or some form of infested file so they could take over your acc
*
Eventually that happened to my wife and we discovered it in the morning.

She said she did tried to log into the semakan bantuan of whatever and eventually gave away her OTP for telegram account.

I helped her to log out from all locations already but I still wonder how they able to take control of her Whatsapp in middle of night since she last online at around midnight 12am+.



QUOTE(xHj09 @ Apr 23 2025, 08:15 AM)
Recently got one article about WhatsApp vulnerability - auto download files.

Do turn it off.

Didn’t read in detail, probably doesn’t affect iPhone. But good to turn it off anyway.
*
Thanks, would do so. you're really helpful

QUOTE(hightechgadgets8 @ Apr 23 2025, 08:16 AM)
Also check your archive chats
*
Thanks for your reminder, will do so!

QUOTE(gashout @ Apr 23 2025, 08:19 AM)
get back your wa. then remove all connected devices. people may have hacked you using shared gadgets like laptop or computer
*
The hacker gained control of the Telegram account. But I wonder how they able to accesss to Whatsapp through Telegram?

QUOTE(Blofeld @ Apr 23 2025, 08:56 AM)
did you download something recently?
*
My wife said she gave away the telegram OTP when she do the semakan bantuan
TSPowerGadget
post Apr 23 2025, 11:07 AM

Enthusiast
*****
Junior Member
821 posts

Joined: Apr 2012
QUOTE(annoymous1234 @ Apr 23 2025, 08:59 AM)
Oh yes! Exactly!

My wife gave away the Telegram OTP and gained access to the Telegram account.

But how they gain control of Whatsapp since Whatsapp should always need OTP from SMS or CALL

QUOTE(WongTheThief @ Apr 23 2025, 09:28 AM)
Have you logged in before your Whatsapp other than your iPhone? Example you logged into your PC via apps, or PC via whatsapp Web, maybe somehow they just controlled your whatsapp via PC?
*
Her device is not logged into any other device but she gave away the Telegram OTP and hacker ained access to the Telegram account through phising site.

QUOTE(submergedx @ Apr 23 2025, 10:02 AM)
user posted image

check this

if got login attempt, change your pw and 2FA now
*
she gave away the Telegram OTP and gained access to the Telegram account through phising site.

But how they gain control of the WA?

QUOTE(jerm57 @ Apr 23 2025, 10:34 AM)
This... why?
*
Eventually it's not my device, it's my wife one.

She gave away the Telegram OTP and hacker gained access to the Telegram account through phising site.

TSPowerGadget
post Apr 23 2025, 12:20 PM

Enthusiast
*****
Junior Member
821 posts

Joined: Apr 2012
QUOTE(WongTheThief @ Apr 23 2025, 11:19 AM)
If I were to guess:

The request for Telegram OTP is actually not for Telegram - but for Whatsapp, and gave away Whatsapp OTP instead

Try check whether that OTP received is actually for Telegram or Whatsapp?
*
Thanks for your detailed breakdown.

I can confirmed from the OTP sent to her phone is on telegram.

But after a day, there are two more verification code sent to her telegram. But those two I not sure is verify for what services as it just written down verification code.

She lost her WhatsApp account during we were sleeping. Because last online was about 1.30am and she found out the WhatsApp has been logged out at about 5.30am when wake up.


QUOTE(touristking @ Apr 23 2025, 11:41 AM)
This is what I am most afraid of, knowingly or unknowingly got something installed that cause security problem.

iPhone are supposed to be very secure but I think their main security relies on control of what apps you can install onto your phone.

Among Android, Samsung is probably the most secure but they work different via Secure Folder. I using Samsung primarily because of this feature. It is basically a sandbox with both hardware and software protection. Being a sandbox, it is "cut" off from other part of the unfortunately infected phone.

So good idea to find any other Android phone with such feature.
*
I never know for such feature like sandbox from Samsung. Really good to know, thanks for your sharing.

Do you know any feature that can enhance security on iPhone ecosystem?

QUOTE(poweredbydiscuz @ Apr 23 2025, 11:57 AM)
If you wife can fell into that kind of trap, I won't be surprised if she actually forgot/confused/mistaken the whatsapp OTP as telegram. Even worse, she may have given out more OTP than you know.
*
She gave out OTP at 4.30am Tuesday and hacker gain control of her account for about 48 hours. But she only lost her WhatsApp today 3am.

I did see she received verification code twice on telegram. But not sure the verification code is for what

QUOTE(Xploit Machine @ Apr 23 2025, 12:03 PM)
dont click or answer unknown URL / calls .. activate 2FA smile.gif
*
Is it possible they hack through call?

Because usually I just pick up any calls as we’re working and sometime new client would call up for potential deal.

 

Change to:
| Lo-Fi Version
0.0128sec    0.50    6 queries    GZIP Disabled
Time is now: 29th November 2025 - 03:10 PM