Topics
previous
AI
Amazon
Image Credits:Simonkr / Getty Images
Apps
Biotech & Health
clime
The warning that WhatsApp displays on its desktop app and web app when a user receives a “View Once” media.Image Credits:TechCrunch/screenshot
Cloud Computing
Commerce Department
Crypto
The warning that WhatsApp displays on its mobile apps when a user tries to take a screenshot of a “View Once” picture or video.Image Credits:TechCrunch/screenshot
Enterprise
EVs
Fintech
fundraise
Gadgets
Gaming
Government & Policy
Hardware
Layoffs
Media & Entertainment
Meta
Microsoft
seclusion
Robotics
Security
Social
outer space
Startups
TikTok
transportation system
Venture
More from TechCrunch
Events
Startup Battlefield
StrictlyVC
Podcasts
video
Partner Content
TechCrunch Brand Studio
Crunchboard
touch Us
WhatsApp , the most democratic end - to - last encrypted message app in the worldwith more than two billion users , allow users to convert pictures and videos that disappear before long after porta .
But a bug in how WhatsApp implements its so - called “ View Once ” feature in its web internet browser - based web app allow any malicious recipient to display and save up the movie and video , which should fly right away after being viewed .
The “ View Once ” feature is designed to work only on WhatsApp ’s mobile apps on Android and iOS . WhatsApprolled out the feature of speech in 2021 .
In typical circumstance , when a user get a “ View Once ” picture or video while using WhatsApp on the screen background app or on the connection app , the exploiter will see a word of advice that the picture or television can only be opened using WhatsApp on their phone .
As an added privacy protection , WhatsApp prevents users from claim screenshots or screen recording of “ View Once ” ikon and video in its Android and iOS apps .
Tal Be’ery , asecurity research worker who has been researching WhatsApp secrecy proceeds for several month , recently come across the bug . On Monday , Be’ery published a blog post detail his finding .
Be’ery provided TechCrunch with a resilient demo of the bug last hebdomad , in which he show he was capable to capture and save a copy of a picture that TechCrunch transmit as “ View Once , ” while he was using WhatsApp on the web .
Join us at TechCrunch Sessions: AI
Exhibit at TechCrunch Sessions: AI
“ The only matter that is worse than no privacy , is a false gumption of secrecy in which users are led to believe some anatomy of communication are individual when in fact they are not , ” said Be’ery , who is the CTO and co - laminitis of crypto wallet Zengo , in his web log post . “ Currently , WhatsApp ’s ‘ look at Once ’ is a blunt kind of false privacy and should either be thoroughly fixed or abandoned , ” wrote Be’ery .
Be’ery reported the hemipterous insect to WhatsApp ’s parent troupe Meta through its official hemipteran H.M.S. Bounty platform on August 26 .
In response to TechCrunch ’s request for comment last calendar week , and days after Be’ery file his bug report , WhatsApp spokesperson Zade Alsawah transport a statement : “ We are already in the summons of stray out update to view once on web . We continue to encourage users to only send survey once messages to the great unwashed they be intimate and trust . ”
Be’ery is not the first person to find out about this bug . Be’ery and TechCrunch saw posts promoting multiple browser app extension phone that make it trivially easy to bypass the “ View Once ” feature while using WhatsApp ’s web app . TechCrunch has also come across participating discussions on how to bypass the feature on societal media . TechCrunch is not colligate to the posts as to not help malicious actors in exploiting the bug .
WhatsApp did not provide a timeline for when it plans to finish its updates to View Once .
