PSA: WhatsApp Lets Anyone With Your Phone Number See How Often You're Online

 
Share on Facebook Tweet Share Share Reddit Comment
PSA: WhatsApp Lets Anyone With Your Phone Number See How Often You're Online

Photo Credit: Marco Verch / Flickr

Highlights

  • A potential design flaw has been found in WhatsApp
  • The flaw allows anyone to monitor how much time you spend on WhatsApp
  • It also allows one to estimate when you go to bed, and when you wake up

There is a potential design flaw in WhatsApp that lets anyone with a WhatsApp account and access to your phone number (the one tied to your WhatsApp account) know just how much time you spend on WhatsApp. The flaw, depending on how avid a WhatsApp user you are, could also let someone estimate fairly accurately things like such as at what time you go to bed and at what time you wake up.

Unlike "Last seen" timestamp feature, which lets a user check when their friend was last online - provided both the parties haven't disabled the option - a user's "online" status is available to anyone. (When a WhatsApp user is online, other users can visit their profile and see an "online" status.) For instance, if someone has your phone number - for whatever reason - they could save it on their phone and if the same phone number is tied with your WhatsApp account, they could potentially monitor how often you come online, software engineer Rob Heaton, who has previously unearthed design flaws in Tinder and Facebook, revealed in a blog post.

WhatsApp lets users hide most of their private information from strangers - strictly speaking, people whose phone numbers aren't stored on your phone, and in some cases, your phone number isn't saved on their phone - there are still a few things that slip through. It's not necessarily a security flaw, and has been known among at least some WhatsApp users for a long time.

But still, to see exactly how much data can be gleaned from what appears to be a design choice by Facebook-owned company, Heaton wrote a Chrome extension - which he hasn't made available to public - which would check every ten seconds whether the intended user was online, he claimed. Of course, the extension could be manipulated to check every 5 seconds or any other time interval - you get the point.

Even as WhatsApp is yet to gain much ground in developed markets, the Facebook-owned app is extremely popular in India. Many people use it extensively in the country, and it's arguably a fair extrapolation to assume that they glance at their WhatsApp chats before they call it a day and check WhatsApp in the morning as soon as they are up to see if they missed any message.

For the latest tech news and reviews, follow Gadgets 360 on Twitter, Facebook, and subscribe to our YouTube channel.

Further reading: Apps, Facebook, Privacy, Security, Social, WhatsApp
Gadgets 360 Staff

The resident bot. If you email me, a human will respond.

More
The Elder Scrolls V: Skyrim for Nintendo Switch India Price Revealed
Uber Says Giving UK Drivers Worker Rights Would Cost Tens of Millions of Pounds
 
 

Advertisement