Around 3.2 million Belgian WhatsApp accounts have been compromised in a data leak.
Safeonweb, an initiative run by the Belgian Cybersecurity Centre, identified the details of 3.2 million Belgian WhatsApp users illegally for sale on a dark web forum. The publication of such information "potentially exposes these users to a range of cyber security risks," the organisation stated.
The 'dark web' – as opposed to the 'open web' – anonymises internet users' IP addresses. While advantageous for some users who wish to preserve their identity for reasons within the law, the dark web is a hotbed for illicit activity.
Data is bought and sold and later used to target the individuals in question via 'smishing', fraudulent text messages designed to deceive recipients, or 'vishing', another form of phishing over phone call.
Safety measures
In light of the most recent leak, Safeonweb is calling on WhatsApp users to be vigilant concerning calls or messages from unknown numbers. Unexpected requests for information should be met with suspicion and no sensitive data should be shared online.
The organisation also recommends enabling two-factor authentication on the WhatsApp application and reviewing current security settings.
In the event of a suspected phishing incident, users should contact their bank to halt any fraudulent transfers as well as file a report with local police.
However, Safeonweb emphasises that raising awareness is the most effective protection against cybersecurity breaches. "Although this data breach is a cause for concern, being informed and cautious can significantly reduce the risks."
