WhatsApp Screen-Sharing Scam Emerges as Major Global Threat

A fast-spreading scam exploiting WhatsApp’s screen-sharing feature has become one of the biggest security threats across messaging platforms worldwide. The scheme, reported in countries including the UK, India, Hong Kong and Brazil, relies on social engineering rather than malware—making it especially dangerous. In one Hong Kong case alone, a victim reportedly lost HK$5.5 million (about ₹6.25 crore).

The fraud begins with an unsolicited WhatsApp video call from someone posing as a bank official, Meta support agent or even a family member. To appear credible, scammers spoof local numbers and keep their video feed off or blurred. They create panic by claiming suspicious bank activity, unauthorized card transactions or urgent verification issues.

Security firm ESET has flagged this as a potent variant of remote-access fraud, powered by three factors: impersonation, urgency and control over the victim’s device. If a user agrees to share their screen, criminals gain full visibility of passwords, OTPs, banking apps and sensitive messages. Many victims are also tricked into installing remote-access tools like AnyDesk or TeamViewer, giving fraudsters complete control. In some cases, keylogger malware is silently installed to capture data.

Once attackers view incoming text messages or WhatsApp verification codes, they can immediately take over the WhatsApp account, access chats and personal details, and use the compromised profile to target the victim’s contacts—creating multiple layers of fraud.

Experts emphasize that the strongest defence is awareness. Users should never share their screen with unknown callers and must verify any alarming claim directly with their bank or service provider. Enabling WhatsApp’s two-step verification—found under Settings → Account → Two-step verification—adds essential protection against unauthorized takeover.

As this scam continues to spread globally, cybersecurity researchers warn that social engineering remains a powerful tool for cybercriminals, making caution and skepticism critical for all users.