WhatsApp’s “View Once” feature, designed to enhance privacy by making shared media disappear after a single view, was recently compromised by a security flaw.
Bug Discovery & Exploit
A cybersecurity researcher, Ramshath, exposed a bug that allowed iPhone users to access “View Once” photos and videos multiple times instead of just once. The exploit was surprisingly simple:
Read More: WhatsApp Introduces Event Creation Feature for Individual Chats
- Users could go to Settings > Storage and Data > Manage Storage
- Locate the sender’s chat and sort media by “Newest”
- This allowed them to reopen supposedly vanishing content
While the issue only affected iOS users, the large number of iPhone users made it a significant concern for WhatsApp and Meta.
Meta’s Response & Fix
Ramshath reported the flaw through Meta’s bug bounty program, but the company responded that they were already aware of it and working on a solution. WhatsApp has since released an iOS update (version 25.2.3) that patches the vulnerability, urging users to update their app.
Recurring Privacy Concerns
This isn’t the first security issue with “View Once.” In September 2024, researchers found that self-destructing media could still be accessed via its direct file URL on WhatsApp’s servers. Although that issue was resolved, repeated vulnerabilities cast doubt on WhatsApp’s ephemeral messaging reliability.
With Meta promoting WhatsApp as a privacy-centric platform, such recurring flaws could make users hesitant to share sensitive content.
