How to Check if Someone Is Using WhatsApp Web on Your Account

WhatsApp Web and the WhatsApp desktop application allow your messages to be accessed from computers and other devices that are linked to your phone.

While this feature is useful for working from a laptop or desktop computer, it also means that additional sessions can remain connected to your account.

If a device was previously authorised, it may continue to access messages until the session is manually disconnected.

Because WhatsApp Web sessions remain active until manually disconnected, reviewing linked devices periodically helps confirm that only authorised devices have access.

This guide explains how to review the devices currently connected to your WhatsApp account and how to log out of any sessions you do not recognise.

If you are concerned that someone may be accessing your WhatsApp account from another device, the first step is to review the list of currently connected sessions.

Follow these steps:

Open WhatsApp on your phone.

Go to Settings.

Select Linked Devices.

Review the list of devices currently connected to your account.

Each entry shows:

• the device type

• the browser or application used

• the approximate location or session activity time

If you recognise all listed devices, your account is likely secure.

WhatsApp Web works by creating a session between your phone and another device.

When you scan the QR code from a computer browser or desktop application, WhatsApp authorises that device to access your messages.

Once authorised, the device remains connected until:

• you log out manually

• the session expires

• the connection is removed from your phone

This means a previously authorised computer may remain connected even if you are no longer using it.

If you see a device you do not recognise, you can disconnect it immediately.

Open:

Settings → Linked Devices

You can either:

• select an individual device and choose Log Out

or

• choose Log Out of All Devices

Logging out removes access instantly and prevents the device from viewing new messages.

Most WhatsApp Web sessions are legitimate, especially if you regularly use WhatsApp from a computer.

However, you may want to investigate further if you notice:

• devices listed that you do not recognise

• sessions from locations you have never used

• unexpected message activity

• your account appearing active when you are not using it

Reviewing linked sessions periodically helps identify unusual activity early.

If you suspect someone attempted to access your account, consider enabling additional protections.

Recommended actions include:

• enabling Two Step Verification in WhatsApp

• protecting your phone with a passcode or biometric lock

• reviewing linked devices periodically

• avoiding scanning QR codes on untrusted computers

These measures reduce the risk of unauthorised access.

For broader guidance on protecting your account and reducing the risk of account takeover, see our guide:

WhatsApp security guide – how to protect your account and device

This explains practical security settings such as two step verification, privacy controls, and account protection measures.

This guide forms part of a broader layered security approach. For structured guidance on security and resilience planning, see our Security and Resilience page.

For information about practical implementation and ongoing support, you can review our IT services and local IT support coverage across London, Hertfordshire, and Essex.

Return to all guides