WhatsApp Confirms the Bug in the New Authentication Feature on its iOS App

whats app
Image Source: dignited.com

The data security has become the prime concern today and to maintain proper privacy, WhatsApp had rolled out a new biometric security feature for its iPhone app users, earlier this month. The security features made use of the Face Id and Touch Id to unlock WhatsApp, such that in the case of the unlocked phone screen, the users had to use the Face Id or the Touch Id to unlock WhatsApp.

But, a bug has been discovered in this new biometric feature that allows anyone to access WhatsApp, even the Face Id or the Touch Id is enabled for the app. This new feature was made available to the iOS users having WhatsApp version 2.19.20, and the bug was first reported on Reddit by a user named de_X_ter. Even WhatsApp has accepted that it is aware of the bug and is taking proper measures to fix it asap.

According to the Reddit post, the user can bypass the FaceId or the Touch Id security if the user selects any option other than “Immediately” for the Screen Lock under the WhatsApp Account’s Privacy Settings. The Screen Lock options other than “Immediately” are “After 1 minute”, “After 15 minutes”, and “After 1 hour”, which lets the users bypass the security using the WhatsApp share option on any other third-party application.

In reality, when the Screen Lock is enabled for the WhatsApp account, and the user tries to use the WhatsApp share option using other apps, a Face ID or Touch Id authentication must appear on the screen every single time. But due to the bug, the Screen Lock is not working the way it should. If we use the same share feature when the “Immediately” option for the Screen Lock is enabled, the Face Id and the Touch Id is working perfectly fine.

WhatsApp has acknowledged the issue and said in a statement, “We are aware of the issue and a fix will be available shortly. In the meantime, we recommend that people set the screen lock option to immediately.”