WhatsApp “View Once” Flaw Fixed: Enhanced Privacy for Disappearing Media

WhatsApp has resolved a vulnerability in its “View Once” feature, designed to automatically delete photos and videos after they are opened. Introduced in 2021, this feature aimed to enhance user privacy.

However, in August of this year, researchers from Zengo discovered that the restriction could be bypassed through the web version of the app in conjunction with a malicious browser extension, allowing such media files to be easily saved. Upon identifying the issue, the vulnerability was responsibly disclosed to WhatsApp’s developers.

Initially, the company released an urgent patch, but it failed to provide comprehensive protection. Media files remained accessible even after their supposed deletion. Now, WhatsApp representatives claim the issue has been definitively addressed through a software update. Nevertheless, users are advised to send disappearing messages only to trusted individuals and ensure they are using the latest version of the application.

Tal Be’ery, co-founder of Zengo, remarked that the latest update, which blocks the use of malicious extensions, marks a significant improvement over the original “View Once” feature. He expressed satisfaction that their research prompted WhatsApp to develop a more robust layer of protection for its users.