Wednesday, August 28, 2024

Account security tips

 

WhatsApp account security tips


To better secure your WhatsApp account, follow these tips:
  • Never share your registration code or two-step verification PIN with others.
  • Enable two-step verification and provide an email address in case you forget your PIN.
  • Set a voicemail password on your phone that's difficult to guess to prevent anyone from accessing your voicemail.
  • Check your linked devices regularly. Go to WhatsApp Settings > Linked Devices to review all devices linked to your account. To remove a linked device, tap the device > Log Out.
  • Set a device code and be aware of who has physical access to your phone. Someone who has physical access to your phone might use your WhatsApp account without your permission.
We recommend you share this advice with friends and family to help secure their WhatsApp accounts.
Note:If you receive unrequested emails to reset your two-step verification PIN or registration code, don't click on any links. Someone could be attempting to access your phone number on WhatsApp.

Resources


From Meta Logo
© 2024 WhatsApp
on No comments:

How to Protect your WhatsApp Account from hackers.

 

How to protect your WhatsApp account from hackers

It’s important to be aware of who has physical access to your phone. If someone has physical access to your phone, they can use your WhatsApp account without your permission.
If you believe someone has scanned your QR code and has access to your account through WhatsApp Web and Desktop, you have the option to log out of all your active WhatsApp Web and Desktop sessions on your phone. To do so:
  1. Open WhatsApp on your phone.
    • Android: Tap 
      more options
      .
    • iPhone: Go to WhatsApp Settings.
  2. Tap Linked Devices.
  3. Tap a device > Log Out.
  4. Repeat these steps for all linked devices.
When you launch WhatsApp Web or Desktop, you can uncheck the option to Keep me signed in before scanning the QR code so your WhatsApp session will be logged out automatically after 15 minutes of inactivity.
Note: WhatsApp can't provide information about who accessed your account or the time and place of it.


From Meta Logo
© 2024 WhatsApp
on No comments:

Thursday, August 8, 2024

Cyber alert: NCC-CSIRT warns Nigerians on latest Phishing attack

Cyber alert: NCC-CSIRT warns Nigerians on latest Phishing attack


News                         December 3, 2022

By Juliet Umeh

The Nigerian Communications Commission’s Computer Security Incident Response Team (NCC-CSIRT) has warned that a new Phishing, Attacks Exploit Windows Zero-Day Vulnerability, can load a malicious QBot malware on the compromised device without triggering any Windows security alerts. An its advisory, NCC-CSIRT indicated that the vulnerability, which is present in all versions of Windows-based products, presents as Phishing Attacks and Malware threats. NCC-CSIRT reports that ProxyLife security researcher discovered the new phishing exploit on Windows zero-day vulnerability to drop a Qbot malware without displaying Mark of the Web (MoTW) security warnings.

It said: “To take advantage of the Windows Mark of the Web zero-day vulnerability, threat actors have switched to a new phishing strategy that involves propagating JS files (plain text files that include JavaScript code) signed with forged signatures.

“The newest phishing attempt begins with an email that contains a password for the file along with a link to an allegedly important document.

“When the link is clicked, a password-protected ZIP folder that includes another zip file and an IMG file is downloaded.

“Normally, launching the JS file in Windows would result in a Mark of the Web security warning because it is an Internet-based file. However, the forged signature permits the JS script to function and load the malicious QBot program without triggering any Windows security alerts,” the advisory said.

Accordingly, NCC-CSIRT advised that users apply updates per vendor instructions.

Source: https://www.vanguardngr.com/2022/12/cyber-alert-ncc-csirt-warns-nigerians-on-latest-phishing-attack/

on No comments:
Labels:
Subscribe to: Comments (Atom)