How to Protect Your WhatsApp Account: Kaspersky Tips

Your WhatsApp account may be targeted not only by jealous spouses and curious coworkers but also by cybercriminals. Stolen WhatsApp accounts are commonly used for a variety of illegal activities, including spam distribution and sophisticated scam operations. Cybercriminals are always looking for ways to gain access to WhatsApp accounts, employing various methods to do so.

There are two main ways cybercriminals can take control of a WhatsApp account: they can either add another device to an existing account using the “Linked devices” feature or re-register the account on their own device, as if the user had acquired a new phone. In the first case, the user can continue using WhatsApp as usual, but the criminals also have access to all recent conversations. In the second scenario, the user loses access to their personal account, and when attempting to log in, WhatsApp notifies them that the account is already active on another device, giving the attackers control of the account—though without access to past conversations.

“Messengers are a private space, often containing personal information about our lives, relationships, work, and, in some cases, confidential data. If you notice any unusual activity, such as receiving replies to messages you didn’t send, or if friends complain about strange messages coming from your account, it’s crucial to take immediate action to protect your privacy,” says Seifallah Jedidi, Head of Consumer Channel, META, at Kaspersky.

While you can follow instructions for recovering a compromised WhatsApp account, here are the key steps to help prevent your WhatsApp account from being hacked:

• Enable two-step verification on WhatsApp and remember your PIN—it’s not a one-time code. To do this, go to Settings → Account → Two-step verification.
• Never share your PIN or one-time registration codes with anyone. Only scammers will ask for these details.
• WhatsApp now supports passkeys. By enabling this option (Settings → Account → Passkeys), logging in will require biometric authentication, and your smartphone will store a long cryptographic key instead of a PIN. This is a highly secure option, though it may not be convenient if you frequently switch devices or change between Android and iOS.
• Set up a backup email address for account recovery: Settings → Account → Email address.
• If you’ve already linked an email address, log in to your email account and change the password to something strong and unique. Consider using a password manager, like Kaspersky Password Manager, to securely store it.
• Enable two-factor authentication for your email account.
• Protect yourself from SIM swap scams. Contact your mobile carrier—preferably in person—and confirm that no duplicate SIM cards have been issued for your number. Also, verify there’s no unauthorized call forwarding set up. If you notice any suspicious changes, cancel them immediately and ask about additional security measures for your SIM card, such as requiring an extra password for SIM-related actions or other protections. Security measures vary by country and carrier.

Any security features in WhatsApp won’t be effective if your smartphone or computer is infected with malware. To safeguard your devices, install comprehensive protection like Kaspersky Premium on all your devices. During Ramadan, those who purchase Kaspersky Premium will receive a 30% discount, plus a complimentary 1-month OSN Plus subscription for unlimited access to a vast library of top series and movies in stunning 4K—completely ad-free, anytime, on any device.