A viral message circulating in Malaysia has urged users to click a link to avoid having their WhatsApp accounts blocked within hours. Investigation by MyCheck Malaysia found the alert to be a phishing attempt that redirected recipients to a fraudulent site with a misspelt domain.
WhatsApp scam Malaysia what to watch for
The message claimed to be from WhatsApp and warned that accounts would be automatically suspended for alleged terms of service violations unless the recipient followed a link to an “official” website. MyCheck examined the link and found glaring errors: the sender used the misspelt name “whtasapp” and a suspicious domain such as https://whtasapp-a.com rather than the legitimate whatsapp.com.
When investigators tried to access the fake site it was no longer available and may have been taken down. Similar messages have appeared outside Malaysia. A Reddit user reported receiving an identical message in Chinese that threatened suspension within 12 hours; commenters confirmed the message was a scam and one user said a relative’s account had been compromised after clicking a similar link.
How WhatsApp actually handles bans
Official guidance from WhatsApp makes it clear that the company does not send advance SMS notifications with links to unban accounts. If WhatsApp concludes an account breaches its terms through spam, fraud or abusive behaviour, the company may ban that account without prior notice. Users discover the action only when they open the app and see the message: “This account is not allowed to use WhatsApp”.
If someone believes a ban is a mistake, the correct procedure is to tap “request a review” within the WhatsApp application. The review takes place entirely inside the app and WhatsApp will notify the user of the outcome. WhatsApp also states that no third-party service can reverse a ban.
Simple steps to avoid falling for the scam
Phishing messages typically contain spelling or grammar errors, pressure recipients to click links, request sensitive information such as passwords or payment details, or ask for money. To stay safe, do not click links in unexpected messages, verify domains carefully, and report suspicious messages to WhatsApp or your mobile operator.
Users should also enable two-step verification in WhatsApp settings, avoid sharing verification codes, and only follow account recovery steps that appear inside the official app. If a message looks urgent or requests personal information, treat it with caution.
Authorities and consumer groups advise the public not to panic when they receive such messages. Reporting the sender, blocking the contact and seeking help from official support channels are the recommended responses. The MyCheck investigation and guidance from WhatsApp serve as a reminder that scammers exploit fear and urgency to coax people into revealing credentials or handing over control of their accounts.
Key Takeaways:
- MyCheck Malaysia found a fraudulent SMS claiming accounts would be blocked; the link used a misspelt domain.
- WhatsApp does not send advance SMS warnings; bans happen immediately and must be appealed inside the app.
- Phishing signs include misspellings, unexpected links, requests for personal information and pressure to act.
- Users are advised not to click links, to report suspicious messages and to request reviews only via the WhatsApp app.
