India’s cyber security agency, CERT-In, has issued a warning regarding a new cyber threat known as “GhostPairing,” which enables hackers to take over WhatsApp accounts without needing passwords or SIM swaps. This attack exploits the device-linking feature of WhatsApp, allowing cybercriminals to connect their devices to users’ accounts through misleading messages that appear trustworthy. Victims are tricked into providing their phone numbers under the guise of identity verification, granting attackers full access to their messages, photos, and contacts. This significant vulnerability raises concerns about user privacy and the security of digital communications in India, highlighting the ongoing challenges faced in safeguarding the nation’s digital landscape against evolving cyber threats.