WhatsApp warning: A simple trick compromised 3.5 billion accounts
There may be hidden risks to billions of WhatsApp accounts. According to a recent analysis, there are major security flaws in the privacy of the communications that hackers might take advantage of.
With merely their phone number, finding someone on WhatsApp is very simple for many users, and the frequency of searches appears to be limitless. However, according to a recent analysis, this has turned into a significant security flaw that leaves 3.5 billion users of the messaging program vulnerable to assault.
Big WhatsApp security risk
Through a study carried out between December 2024 and April 2025, security researchers at the University of Vienna in Austria found the vulnerability. The primary cause of the problem is WhatsApp’s long-standing built-in capability for locating and adding contacts.
Read Also: Samsung June 2026 Security Update Rolls Out to Galaxy S25 Series, S25 Edge, and Galaxy Z Fold 7
In theory, the app will display whether a number has an account if you add it and then search it up. Additionally, anyone with an active phone number is able to send messages to public accounts and view the profile.
A program known as “libphonegen,” which creates combinations of account numbers from other nations that may be registered on WhatsApp, was used by the team to carry out this procedure.
They were able to produce 63 billion possible accounts and 100 million numbers each hour in their study. 3.5 billion accounts were taken out of those. Of these, 29% had written profiles with sensitive information including political and religious affiliations and links to other social media accounts, while 57% had their profile images made public.
The vulnerability Is alarming
The results show how this WhatsApp security vulnerability could be exploited by malevolent parties, including fraudsters and attackers. For example, the encryption in the messaging app is weakened since public and identification keys are reusable rather than unique. Attackers might intercept and decrypt messages if security was compromised.
The identical WhatsApp vulnerability was discovered in 2017, but Meta has not been able to fix the flaw.
Following the discoveries, Meta was contacted by the security research group. The company verified that it implemented system modifications in October that restrict the number of account searches that may be done within the app.
How to protect yourself
Users with public profiles, however, are still vulnerable because others can still read their profile images and text. Making their WhatsApp profile private is advised for those who are worried about security and privacy.
Additionally, Meta has added new security and privacy features. A monthly message cap and automatically muting calls and messages from strangers are two of these that are presently being testing.
Google Pixel Watch 4
Google Pixel 9
Samsung Galaxy Watch 8
Comments & Discussions
Join the conversation! We use Disqus to handle comments. Click the button below to load the comment section.
Keep Reading
One of Android’s longest-standing strengths is how much it lets you personalize your device. From launchers to icon packs, there’s no shortage of ways to make a phone feel like your own — and changing the wallpaper is usually the first place people start. It’s quick, it’s visual, and it immediately changes the character of […]
Nearly 18 months after the FBI warned Americans about the security risks of texting between iPhones and Android devices, Apple has introduced end-to-end encrypted cross-platform messaging through iOS 26.5, according to Forbes. The update enables encrypted RCS messaging between iPhone and Android users for the first time – though Apple has noted that the feature […]
Samsung has officially confirmed what many Galaxy users feared: Samsung Messages is going away. The app will be fully discontinued in July 2026. It’s already been pulled from pre-installation on newer Galaxy devices, including the Galaxy S26 series. Once July hits, you won’t be able to download it from the Galaxy Store either. And shortly […]
Google Wallet has grown into one of the most versatile digital wallet solutions available. Beyond storing credit and debit cards, it handles state IDs, passports, event tickets, transit passes, digital car keys, and plenty more – effectively everything you’d normally carry in a physical wallet. Over time, Google has steadily expanded its capabilities, adding features […]
Google Photos has been on a steady update streak lately, picking up long-requested features alongside smaller quality-of-life improvements. The app isn’t slowing down either – Google is now rolling out another update that brings a set of touch-up tools directly into the built-in image editor. The company is framing the addition around the idea that […]
