In France, the application is used by more than half of the population. Among its advantages, easy sending of audio messages, file sharing and video calls have won over users. Despite all this, many question the application security level and are looking for a way to increase the privacy of their WhatsApp account. Here’s why and how to protect yourself:
WhatsApp: what are the risks?
WhatsApp is a very secure application. Thanks to end-to-end encryption of messages, it is impossible for an intermediary or even Whatsapp to access their content. That said, there are security risks related to other aspects of the app:
Cloud backups
Despite end-to-end encryption which secures messages exchanged between two users, it is possible that a hacker accesses your messages through your cloud backups. When you back up your messages to a third-party app, like Google Drive, your messages become vulnerable if someone gains access to the backup.
Phishing attacks
WhatsApp is one of the most used applications by scammers and fraudsters to carry out phishing attacks: fake links, people pretending to be loved ones by falsifying contacts, etc. Since any number can be added as a contact, it is very easy for scammers to break into the conversations of millions of potential victims.
Sharing information with Meta
Facebook (now Meta) acquired WhatsApp in 2014. Since then, the parent company has been able to collect data about your usage. According to WhatsApp, this includes your account registration information (like your phone number), transaction data (for example, if you use Facebook Pay), information about how you interact with businesses, information about your mobile device, your IP address, and more. Meta is known for collecting data in order to target you with advertisements. It is therefore good to know that the use of WhatsApp is likely to supply its owner with user data.
The IP address: a vulnerable point on WhatsApp
One of the most sensitive points of the application is in the calls made between users. Since these are carried out via the internet, they can easily make available to the person making the call the IP address of the person receiving it. Indeed, a simple consultation on the command prompt will obtain the list of IP addresses connected to the calling device, thus showing the IP address of the receiver. With this IP address it will be possible to obtain the location of the called person.
Fortunately, WhatsApp recently provided a new option to prevent this manipulation. It is now possible to hide your IP address during calls. Here’s how to do it:
- Go to the application settings
- Identify the “Privacy” tab, then go to the advanced settings.
- Enable the “Protect IP address during calls” option.
Once the option is activated, calls are relayed through WhatsApp servers. Please note: call quality may be slightly reduced due to this relay. Despite this, they remain end-to-end encrypted, even when passing through the company’s servers.
How to strengthen the security of your WhatsApp account?
Protecting your IP address is a good first step to taking control of your personal information on WhatsApp. To further strengthen your account and avoid hacker attacks, follow these best practices:
Use 2-factor authentication (2FA)
Widely used to strengthen access to banking sites, mailboxes or social networks, 2-factor authentication can also be activated on WhatsApp. This makes it possible to require a security code when trying to log in again. To enable it, go to the app settings, then tap Account > Two-Step Verification > Activate or Set up PIN.
Enter a 6-digit PIN of your choice. Then provide an email address in case you need to reset two-step verification later. Confirm the email address, then tap Save or Done.
Make regular updates
Avoid using an older version of the application. This can expose you to potential security breaches. These flaws are often detected and corrected in new versions of the application. It is therefore essential to carry out regular updates to avoid any invasion.
Pay attention to backups
If you back up to the cloud, make sure it is secure. If you chose Google to make these backups, you can also enable 2-factor authentication on your account.
🟣 To not miss any news on the WorldOfSoftware, , .
