How to recover and secure a hacked WhatsApp account

WhatsApp is the preferred mobile communication channel and, therefore, a very juicy target for criminals. Account hijacking is used to impersonate people, ask for money, or spread spam., so it's important to know how to react quickly to cut off access and minimize damage. What should you do if your WhatsApp account is hacked?

Although the app incorporates several layers of protection, there are social engineering techniques and oversights that still operate. From stealing the verification code via SMS to hacking WhatsApp Web or taking advantage of mobile phone theft.Here's a clear action plan to recover your account and secure it.

Signs and detection of a hacked WhatsApp account

If you notice unusual activity in your chats or settings, set your alarms. You may be facing a hacked WhatsApp account. Attackers often move quickly to scam your contacts or drain your address book.

Some common signs of commitment are especially revealing. Pay attention if your friends receive messages that you didn't send or respond with things you don't recognize., and act immediately to prevent fraud.

• Replies to messages you never wrote or deleted messages in chats where you don't remember sending anything.
• Contacts reporting strange texts sent from your number, with requests for money or suspicious links.
• SMS or call with the verification code that you didn't ask for; also statuses or stories published without your creating them.
• Unexpected changes to photo, name, or description from your profile; additions to groups you never joined on your own.
• “Your account is in use on another device” warning when you try to log in: this is the clearest sign of hijacking.

To check access, log in to your app and visit Linked Devices: It works as a “session checker” to see computers with an active session in Web WhatsApp or DesktopIf you see something that doesn't fit, close it immediately with the Sign Out option.

Also, if you use Google Drive backups, check your Google account with Google Security Checkup. A strange login on your Google account associated with WhatsApp may indicate a risk., especially if it matches other signals in the app.

Previously, WhatsApp more clearly displayed an active web session notification; now, it may not always notify you. Therefore, the Linked Devices section is your reference to detect open accesses on other devices. and expel them with a touch.

How can they steal our account?

There are two main ways for hackers to get into your WhatsApp: Either add a device using Linked Devices (Web/Desktop), or register your number on another mobile with the verification code.

If access is done through Linked Devices, you will continue to use your app normally, but The intruder will see your recent conversations on his computerIf you re-register on another phone, you will be banned from your account; They will monitor your profile but will not see your past chats. saved on your old phone.

The most common hook is social engineering: You receive an alarming message asking you for the six-digit code that comes via SMS (sometimes they say “your account was hacked” to scare you). If you give them the code, they can activate your number on their device, and you’re out of the loop.

On desktops, login often requires biometrics or unlocking your phone, but it's not foolproof. If someone knows your unlock PIN and takes your phone, they can scan the QR code and stay inside. without you realizing it at the time.

Recover your account step by step and protect yourself

First, try opening WhatsApp on your phone with the correct SIM. If the app opens normally, the most urgent thing is to expel added devices and reinforce security before they try again.

If you can still log into WhatsApp

Review and log out of other people's computers. Go to Settings (iPhone) or the three-dot menu (Android) and tap Paired Devices to view the list of active teams.

1. Tap each session and press Sign OutYou'll see the last access date; if something doesn't sound familiar, delete it without hesitation.
2. Turn on two-step verification to add a six-digit PIN. In Settings → Account → Two-Step Verification you can create and memorize that PIN.

If your contacts have already received strange messages pretending to be you, let them know. Call family and close friends to nip potential scams in the bud.; also, it updates your Info with a temporary warning like “Don't trust strangers' messages, they tried to steal my account.”

If you have been banned from the account

When you see the notice that your number is in use on another device, tap Register. Enter your number, request the unique code and wait for the SMS or voice call. If the SMS does not arrive due to too many previous attempts, and if you are going to change devices, consult How to transfer WhatsApp to a new phone.

1. Enter the six-digit code you receive via SMS/call. Upon completing the registration, the attacker's session on the other mobile is closed. automatically.
2. If the app asks for a second six-digit code, the attacker has enabled two-step verification. Click Forgot PIN? to retrieve it..

• If you have an associated email You'll receive a link to reset your PIN on WhatsApp; open it and confirm to create a new one.
• If there is no linked email, you'll need to wait approximately one week for the PIN to be removed and for you to log back in.

When you regain access, the app may offer to restore your history. Agree to recover your chats and settings from iCloud, Google Drive, or local storage if you had backups.

If you suspect WhatsApp Web or Desktop

This route is common when someone had your phone in their hand. Go to Linked Devices and log out of any sessions you don't recognize. (you will see location/approximation and date of last use).

1. Open WhatsApp and go to Linked Devices.
2. Tap the session and press Sign out to expel it. Repeat with all the ones you don't recognize..

Stolen or lost cell phone: what to do

If you don't have your phone handy, limit the damage as soon as possible. Call your carrier to block the SIM; you will prevent third parties from receiving new verification codes via SMS or calls.

1. Request a duplicate SIM with your same number and use it to verify your account again on another mobile.
2. If you need to temporarily deactivate your account, writes [email protected] with the subject line “Stolen/Lost Phone: Please deactivate my account” and include your full number with prefix (for example, +34 in Spain).
3. Please note that if your account is deactivated for 30 days, WhatsApp can delete it permanently.

As long as you don't have an active SIM card with your number, you won't be able to verify your account. Support does not provide information about who accessed your profile., and will not “magically” deactivate your account if you do not make the appropriate request.

Account restricted for spam

If the intruder sent spam, you may face a time limit. Use the Request a Review button under the restriction notification.The evaluation typically takes from a couple of hours to about three days and cannot be expedited.

Report the incident to your surroundings

The attacker likely sent dramatic or urgent messages to extort money. Notify as many contacts as possible that your profile was impersonated and ask them to ignore or report any strange texts. You can also post a notice on your Info and other social media accounts.

Useful tools for checking access

In addition to the Linked Devices panel, there are two simple checks to keep in mind. Use them as support to confirm that no one else is still inside..

• WhatsApp Web “Session Checker”: : Check open sessions in browsers/PCs from the app and close any external access.
• Google Security Checkup (if you back up to Google Drive): Check your Google account for recent logins or unknown devices.

 

Strengthen your security so that it doesn't happen again.

The most effective thing is to add extra barriers and good habits. Activate two-step verification now and memorize your PIN; never share it with anyone (no one legitimately will ask you to).

• Access keys (passkeys): In Settings → Account → Passwords you can enable biometric authentication and a cryptographic key on the device.
• Set up a recovery email in Settings → Account → Email Address so you can reset your PIN instantly if something goes wrong.
• Strengthen your email: change to a unique and strong password, save the keys with a manager (for example, Kaspersky Password Manager) and enable two-factor.
• SIM swap frauds prevented: Check with your carrier if they've issued any recent duplicate calls or call forwarding; ask for additional measures such as passwords at the counter.
• Keep your devices clean: Install security protection and keep your system and apps up to date against malware that steals codes or notifications.
• adjust your privacy: Limit who sees your photo, news, info, or statuses to reduce the social attack surface.
• Families and minorsIf necessary, consider parental control solutions to manage usage time and block suspicious contacts (e.g., AirDroid Parental Control).

Finally, remember that there is also institutional support. Cyber ​​police units in your region often publish recommendations and help channels. for impersonation incidents in messaging.

If you've encountered messages you didn't send, unexpected verification codes, or a message that your number is "already on another device," don't let it go: Re-register your account, close linked sessions, notify your contacts, and activate two-step verification.With up-to-date backups, passwords, and some regular checks (including the security of your email and SIM), you can regain control and minimize the chances of re-intrusion.