Yet another whatsapp phishing

VXRL
2 min readDec 12, 2023

researcher: {alanh0}

You may have encountered this kind of whatsapp message many times, asking for recovery code, once you give them the code from your SMS, your account will probably be taken over.

There is another version, it may be coming from SMS. This time it pretends to be a bank staff.

As a cybersecurity researcher, of course I will follow the link.
https://wa.me is legitimate, it is for you to create a link that will allow you to start a chat with them (as long as your know their number)

You can find it from whatsapp FAQ https://faq.whatsapp.com/5913398998672934?locale=en_US&cms_id=5913398998672934&draft=false

As expected, it will open whatsapp and start the chat

Well, the profile pic looks some AI generated image? It does not look like Harper or some real bank managers for sure. And waiting for its reply.

If it starts the conversation, it may ask for your personal information, or most likely send you some links to download some malware. So be aware of such messages, especially it seems to be urgent, but then the profile pic looks so AI-gen.

--

--

VXRL

VXRL Team is founded by group of enthusiastic security researchers, providing information security services and contribute to the community. https://www.vxrl.hk