The latest updates from
Whatsapp now comes with a security bug that lets any person in your contact
list to see your profile pic even though you have set your settings as “contacts
only”.
The person who discovered
the problem is a 17 years old security researcher Indrajeet Bhuyan. According
to him, the problem has occurred due to the new whatsapp web version. This is a
result due to the synchronisation problem of the mobile app with the web
interface.
Other People Are Reading
| |
Normally you share your
profile picture with your contacts but this new update with the security bug
makes your private profile pic as public pic in a way where everyone can have
access to it. Apart from this, Indrajeet has also found another problem in the
web version. The web version shows the pics that you have deleted from your
chats. Normally in the phone, when u delete a photo, it looks blurred but the
web saves them too without our knowing. This only results in one thing, i.e.
the web version doesn’t follow all the operations and security measures
available in the app.
Security professional
Graham Cluley says that though it’s not the most serious security breach that
has ever happened, but that’s the missing point. The fact that WhatsApp users
decide to keep their profile pics private and they also expect the same from
the WhatsApp that they will honour their decision and will make the photos
available for viewing only to those chosen by the user.
We think WhatsApp already
knows about the problem, but still there is no response from the company’s side
regarding the flaw the app bears.