Friday, January 24, 2025
Follow us On Linkedin
HomeInternetWhatsApp Privacy Flaw - Delete for Everyone Feature Fails to Delete Media...

WhatsApp Privacy Flaw – Delete for Everyone Feature Fails to Delete Media from iPhone

InternetiOSPrivacy

Published on

By Gurubaran
delete for everyone

Free Webinar DevSecOps Hacks

SIEM as a Service

Follow Us on Google News

WhatsApp introduced ‘delete for everyone’ feature last year. this is a quite life-saving feature which let you recall the message that you sent accidentally.

Security Consultant Shitesh Sachan, noted that the feature was not working an intended with media files if the recipient using an iPhone and having WhatsApp feature Save to Camera Roll enabled.

This feature is available only for iPhone users and it can be enabled or enabled WhatsApp > Settings > Chats > Save to Camera Roll.

WhatsApp Feature Save to Camera Roll

The problem is that if a user having this feature enabled then automatically images will get saved in the device’s Camera Roll and it cannot be deleted. Because of security restriction with iOS that denies third-party apps in accessing device gallery without permission.

According to Shitesh Sachan findings shared with GBHackers On Security, if the sender accidentally posted a photo and if he wants to delete the message using ‘delete for everyone’ feature the message will get delete only from the Whatsapp chat thread and not from Gallery if the recipient uses the iOS device.

With the android device the feature works as intended, Whatsapp can delete the photo’s saved in the Gallery, but not with iOS device’s,

“WhatsApp should accept and tell to everybody that images will not get removed from Iphone users if they have enabled this feature or they should remove the item once user requested for that despite having that feature enabled,” Shitesh Sachan added.

The issue is more sensitive in the case of Whatsapp group’s that contains both iOS and Android users. If user A shared a confidential photo in the group, later he deletes the message using ‘delete for everyone’ feature it works only for Android devices and not for iOS devices.

WhatsApp explained in a statement shared to The Hacker News, that using ‘delete for everyone’ feature removes the media from the chat thread, but if the user selected to save with Camera Roll, then it is out of WhatsApp control.

WhatsApp possibly make changes in the future release, it is always safe to double-check the messages before sending it.

Related Read:

WhatsApp Web – A Complete Guide To Use on Windows, Mac, Linux

Israel Firm Linked With WhatsApp Spyware Hack Faces Lawsuit

Gurubaran
Gurubaran
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Latest articles

Cyber Attack

Critical Vulnerability in Next.js Framework Exposes Websites to Cache Poisoning and XSS Attacks

A new report has put the spotlight on potential security vulnerabilities within the popular...
Browser

New Cookie Sandwich Technique Allows Stealing of HttpOnly Cookies

The "Cookie Sandwich Attack" showcases a sophisticated way of exploiting inconsistencies in cookie parsing...
ChatGPT

GhostGPT – Jailbreaked ChatGPT that Creates Malware & Exploits

Artificial intelligence (AI) tools have revolutionized how we approach everyday tasks, but they also...
Cyber Security News

Tycoon 2FA Phishing Kit Using Specially Crafted Code to Evade Detection

The rapid evolution of Phishing-as-a-Service (PhaaS) platforms is reshaping the threat landscape, enabling attackers...

API Security Webinar

Free Webinar - DevSecOps Hacks

By embedding security into your CI/CD workflows, you can shift left, streamline your DevSecOps processes, and release secure applications faster—all while saving time and resources.

In this webinar, join Phani Deepak Akella ( VP of Marketing ) and Karthik Krishnamoorthy (CTO), Indusface as they explores best practices for integrating application security into your CI/CD workflows using tools like Jenkins and Jira.

Discussion points

Automate security scans as part of the CI/CD pipeline.
Get real-time, actionable insights into vulnerabilities.
Prioritize and track fixes directly in Jira, enhancing collaboration.
Reduce risks and costs by addressing vulnerabilities pre-production.

Register Now

More like this

Computer Security

Is this Website Safe: How to Check Website Safety – 2025

is this website safe? In this digital world, Check a website is safe is...
cyber security

PriveShield – Advanced Privacy Protection with Browser Profile Isolation

A browser extension named PRIVESHIELD automatically creates isolated profiles to group websites based on...
cyber security

Hackers Exploit iOS Settings to Trigger Fake iOS Updates on Hijacked Devices

A sophisticated mobile attack vector involves a deceptive iOS update that masquerades as the...

GBHackers on Security is a top cybersecurity news platform, delivering up-to-date coverage on breaches, emerging threats, malware, vulnerabilities, and global cyber incidents.

Company

Trending

Categories

Copyright @ 2016 - 2024 GBHackers On Security - All Rights Reserved