WhatsApp Adds Tool to Detect Unauthorized Account Access

WhatsApp is introducing a new security tool for iPhone users designed to identify unauthorized access to accounts by providing visibility into connected hardware.

The feature, referred to as a Security Lens, introduces a dedicated view within the app’s settings to monitor connected peripherals. These peripherals are devices that connect to a WhatsApp account automatically without requiring manual authentication steps, such as scanning a QR code or entering a six-digit verification code.

According to reporting from ABP Live on December 26, 2025, these peripherals often include wearables and companion apps that pair quietly in the background. Previously, these connections occurred with little to no on-screen confirmation, leaving them largely invisible to the user.

The new interface places these peripherals directly within the Linked Devices section of the application. Users can now audit their account activity by viewing the specific names of the connected peripheral devices and their last active times.

The update began rolling out to select iOS beta users and started appearing on stable versions of the app around December 26, 2025.

Cybersecurity Context and Emerging Threats

The addition of the Security Lens comes as cybercriminals evolve their methods to exploit trusted communication tools. On December 17, 2025, reports indicated a new attack where hackers used social engineering to gain full access to WhatsApp accounts without stealing passwords or exploiting technical vulnerabilities.

Further threats emerged on January 17, 2026, with the discovery of a malware campaign known as Boto Cor-de-Rosa. This campaign specifically targets Windows users and leverages WhatsApp Web as both a delivery system and an engine for propagation.

The Boto Cor-de-Rosa attack functions by sending a routine-looking ZIP file. Once opened, a Visual Basic script disguised as a document downloads Astaroth banking malware and a Python-based module designed to control WhatsApp Web. Both components operate in the background, allowing the infection to become self-sustaining by spreading through the user’s contacts.

Expanded Security Measures

Beyond the Security Lens, Meta has implemented other tools to mitigate fraud and unauthorized access. On March 12, 2026, the company launched scam detection and parent-linked WhatsApp accounts.

WhatsApp also utilizes proactive security alerts. The system is designed to prompt users to verify their identity if it detects suspicious or unauthorized attempts to take over an account.

By surfacing silently connected peripherals and implementing scam detection, the platform is increasing the transparency of how and where accounts are being accessed, addressing the gap where background connections previously remained hidden from the user.