Skip to main content

Hackers can figure out when you go to sleep via a WhatsApp flaw

whatsapp
Image used with permission by copyright holder
WhatsApp is a great way to connect with your friends and family around the world, but it turns out it may also be a great way for a hacker or stalker to keep tabs on when two people are communicating. That’s thanks to a new flaw discovered in the app by software engineer Rob Heaton, who was able to exploit the flaw by creating a Chrome extension with a minimal four lines of code.

The flaw came about because of the fact that as part of WhatsApp, your “online” status — whether you’re online or not — can be checked by any of your contacts. What that means is that when you go offline and then come back online to read a message, that action is being logged. Those online and offline actions from both participants in the conversation can then be correlated to identify when two people are messaging each other.

The code could even be tweaked to correlate more than two people messaging each other, and while that would require a little more code, the principle remains the same. Using the data collected, Heaton was even able to identify when users were going to sleep by seeing their first and last “online” statuses for the day.

Unfortunately, there’s really nothing you can do to prevent hackers from being able to spy on you in this manner. Using WhatsApp, you can set the app to show your “last seen” statuses to either everyone, only contacts, or no one, but no such feature exists for your online status, leaving things somewhat open.

Heaton went on to note that it would be pretty easy for this information to be collected on a mass scale, then sold to companies for the purpose of advertising. For example, people with strange sleeping patterns might be good candidates for sleeping pill advertisements.

While this is certainly a privacy issue, it’s not clear if WhatsApp will ever make a fix. The online status feature has been a part of WhatsApp since its inception, and the company may not want to change it. Still, it would be pretty easy to allow users to choose who sees their online status, as they can with their “last seen” status.

Editors' Recommendations

Christian de Looper
Christian’s interest in technology began as a child in Australia, when he stumbled upon a computer at a garage sale that he…
WhatsApp adds new privacy features that everyone should start using
The WhatsApp app icon on a phone with other messaging apps.

You'll soon be able to lurk and leave groups quietly on WhatsApp. Three new features have been announced for Meta's messaging app, and they all seem to be about helping users protect their privacy.

On Tuesday, WhatsApp announced three new privacy features: leaving groups silently, deciding who gets to see if you're online, and screenshot blocking.

Read more
WhatsApp just upgraded its emoji reactions and I want them now
Close up of WhatsApp icon as seen on a smartphone display. Credits: WhatsApp official.

WhatsApp will now allow users to react to messages with any emoji, in an expansion of its reaction feature that came out last year. It's coming to iOS and Android over the coming weeks, and it brings more personalization to one of the world's most used messaging apps.

Once you get the update, the emoji reactions will work as they do now, with a long press bringing up the basic six options with the incision of a new plus button. Pressing that plus icon will show you the new expanded set of emojis, and you'll be able to add whatever emoji you want. This includes skin tone variations, family types, and more.

Read more
WhatsApp now lets you control who can see your profile
The WhatsApp app icon on a phone with other messaging apps.

WhatsApp is now letting you decide who gets to view certain aspects of your profile.

This week, Meta's popular messaging and calling app announced via a tweet that it is offering new privacy options for its users, including the ability to choose "who from your contact list can see your Profile Photo, About, and Last Seen status."

Read more