WhatsApp confirms worrying security flaw that lets ANYONE bypass Face ID or Touch ID locking feature

Mail Online | 2/21/2019 | Reuters;Annie Palmer For Dailymail.com
smnth28 (Posted by) Level 3
Click For Photo: https://i.dailymail.co.uk/1s/2019/02/21/16/10104812-0-image-a-11_1550766006790.jpg


Click For Video: https://videos.dailymail.co.uk/video/mol/2018/08/08/5808107281150067848/1024x576_MP4_5808107281150067848.mp4

A worrying WhatsApp bug has compromised new privacy controls introduced by the app on iPhones this month.

WhatsApp recently introduced new biometric security features that let users lock the app using Face ID or Touch ID.

Feature - Friends - Messages - Phone

The feature is meant to keep nosy friends from scrolling through your messages when your phone is unlocked.

But a Reddit user has discovered a security flaw where anyone can bypass Face ID or Touch ID authentication, even if it's turned on.

Anyone - Secure - Methods - Fingerprint - Recognition

Anyone can bypass the secure log-in methods, which require fingerprint or facial recognition, by using the iPhone's 'share' function to send files over WhatsApp, the Reddit user found.

Users can set verification to be required immediately upon log-in, meaning they would need to supply Touch ID or Face ID each time they open WhatsApp, or at intervals of up to an hour, allowing them to toggle between apps on the iPhone for that time period.

Security - System - Users - Option

The security system fails when users select any interval option other than 'immediately.'

A user named "u/de_X_ter" wrote a Reddit post describing the security...
(Excerpt) Read more at: Mail Online
Wake Up To Breaking News!
Do I know who I am?
Sign In or Register to comment.

Welcome to Long Room!

Where The World Finds Its News!