SlowMist founder Yu Jian recently highlighted a growing security concern involving WeChat account hijacking. According to Jian, cybercriminals leverage leaked credentials, often sourced from various data breaches, to compromise accounts. These attackers then exploit the victim’s social network, including frequently contacted friends and group chat members, to intercept the 6-digit verification codes necessary for account takeover. This method enables them to execute unauthorized access with alarming efficiency.
The attacks predominantly occur during late-night hours and are frequently linked to OTC USDT trading scams within the cryptocurrency ecosystem. Given the increasing prevalence of such threats, users are urged to exercise heightened vigilance when accepting new contacts on WeChat. Additionally, it is critical to regularly update passwords and monitor for any unusual login alerts to mitigate potential risks associated with account compromise.