Users of the instant messaging application WhatsApp have been warned that a new phishing scheme could hand over all their private messages to cybercriminals. Phishing is a tactic in which fraudsters obtain private information by sending malware via email, message or call. WhatsApp users usually search on the official website search engine to login account on desktop. Users type web.whatsapp.com into a computer’s Internet browser and then enter a special code to unlock the app. Once users reach the site, they scan the QR code with their phone to access the account. Can be accessed. But experts have pointed out the use of fake WhatsApp websites by fraudsters. According to the Singapore Police, some phishing websites contain an actual QR code obtained from a genuine website. Victims of fraud click on the initial website in the search results without verifying their address. When victims scan the code, the website freezes and the user is redirected to another account instead of the real one. After which the fraudsters go to the accounts of the duped people and impersonate them. They can send messages to the user’s contacts and get their private data and online bank details. During this time fraud victims can use their account and it may take a long time for them to know about the fraud. The Singapore Police has urged users to thoroughly authenticate websites using WhatsApp on computers.