A widely used feature on WhatsApp is coming under scrutiny after cybersecurity experts warned that it could unintentionally expose millions of users to hacking risks.
The app’s automatic media download setting designed to save incoming photos and videos directly to a user’s device which may create an entry point for cybercriminals.
This feature can allow malicious files to be stored on phones without user consent which can potentially enable malware attacks.
Hackers can embed harmful code in seemingly harmless media files. Once downloaded automatically, these files could compromise personal data, including banking details and private information, without the user actively opening or verifying the content.
The concern adds to a growing list of vulnerabilities tied to messaging platforms, where convenience features are increasingly being exploited.
Cybersecurity researchers have previously highlighted how attackers take advantage of built-in tools such as device-linking and media sharing to gain unauthorised access to accounts and sensitive communications.
What to do to mitigate risk?
Users are urged to review their privacy settings and disable automatic downloads for photos, videos, and documents.
This step can act as a first line of defense by preventing suspicious files from being saved directly to devices.
Users are advised to keep their apps updated, avoid clicking on unknown links, and enable additional security layers such as two-factor authentication.
The warning comes amid rising global concerns over digital privacy and mobile security, as messaging apps continue to play a central role in everyday communication.
Join BusinessDay whatsapp Channel, to stay up to date
Open In Whatsapp
