Recommended

Crypto Deposit Make instant crypto transfers to your futures account
USDT-M Perpetual Futures Trade futures contracts settled in USDT
VIP Fee Discounts Enjoy different fee discounts based on your VIP level
Coin-M Perpetual Futures Trade futures contracts settled in cryptocurrency
Fiat Deposit Buy your favourite coins in seconds
Affiliates Invite friends & get rewarded
Convert Covert your crypto instantly
Support Centre Find our FAQs here
Announcements Find all our official announcements
BTCC Academy Learn about blockchain and crypto
News The latest trends in the crypto market

Promotions

Referral
Campaigns
Assets
Crypto Deposit
Fiat Deposit
Convert
Transfer
Withdraw
My vouchers
Fund history
Dashboard
Account Security
Identity verification
API Management
Transaction Report
Log out
register
BTCC / BTCC Square / M1n3rX /
WhatsApp Security Breach Exposes Phone Numbers of 3.5 Billion Users: What You Need to Know in 2025

WhatsApp Security Breach Exposes Phone Numbers of 3.5 Billion Users: What You Need to Know in 2025

Author:
M1n3rX
Published:
2025-11-20 11:09:02
8
2


A massive WhatsApp security flaw has left 3.5 billion users vulnerable, exposing phone numbers and profile data since 2017. Researchers uncovered the issue, which Meta only recently acknowledged. Here’s how it happened, what’s at stake, and how to protect yourself—plus, WhatsApp’s new multi-account feature for iPhones and Meta’s legal win against the FTC.

How Did the WhatsApp Security Breach Happen?

Researchers from the University of Vienna discovered a critical vulnerability in WhatsApp’s contact discovery feature, allowing automated systems to scrape phone numbers en masse. Shockingly, this flaw has existed since 2017 but was only publicly acknowledged by Meta in 2025. In just 30 minutes, researchers extracted millions of U.S. numbers, eventually compiling a global dataset of 3.5 billion users. The lack of rate-limiting protections made it alarmingly easy for bad actors to exploit this loophole.

What Data Was Exposed?

The breach didn’t stop at phone numbers. About 57% of users had their profile photos publicly visible, while 29% exposed their "About" text. "If malicious actors had exploited this, it could’ve been one of the largest data leaks in history," noted one researcher. The team deleted all collected data after testing and reported their findings to Meta, which claims no evidence of criminal exploitation.

Meta’s Response and User Protections

Meta stated it’s "actively enhancing protections against large-scale data extraction" and launched WhatsApp Research Proxy, a tool for security researchers to audit the platform’s network protocol. For users, cybersecurity experts advise:

  • Set profiles to "private"
  • Avoid personal info in the "About" section
  • Limit status sharing
  • Businesses should use WhatsApp Business API’s secure features

WhatsApp’s New Multi-Account Feature for iPhone

Amid the fallout, WhatsApp is testing a multi-account feature for iOS via TestFlight. Users can now manage multiple accounts (including old WhatsApp Business profiles) on one device, with conversations and preferences syncing automatically. It’s currently in beta for select users.

Meta’s Legal Win Against the FTC

In related news, a U.S. court rejected the FTC’s antitrust case against Meta, filed five years ago during the TRUMP administration. The FTC had sought to force Meta to divest Instagram and WhatsApp, alleging anti-competitive "buy or bury" tactics. The ruling, emailed to NPR, was seen as affirming competition in the social media sector.

FAQs About the WhatsApp Breach

How many users were affected by the WhatsApp breach?

Approximately 3.5 billion WhatsApp users globally had their phone numbers exposed due to this vulnerability.

Can I check if my data was leaked?

Meta hasn’t released a tool for this, but assume your number was exposed if you’ve used WhatsApp since 2017. Update your privacy settings immediately.

Is WhatsApp still safe to use?

End-to-end encryption remains intact for messages, but the breach highlights the importance of adjusting privacy settings. No platform is 100% secure.

|Square

Get the BTCC app to start your crypto journey

Download on the App Store GEI IT ON Google Play

Get started today Scan to join our 100M+ users

Exchange for a better future

Products
Services
Guides
About Us
Terms & Agreement
Customer Service

Risk warning: Digital asset trading is an emerging industry with bright prospects, but it also comes with huge risks as it is a new market. The risk is especially high in leveraged trading since leverage magnifies profits and amplifies risks at the same time. Please make sure you have a thorough understanding of the industry, the leveraged trading models, and the rules of trading before opening a position. Additionally, we strongly recommend that you identify your risk tolerance and only accept the risks you are willing to take. All trading involves risks, so you must be cautious when entering the market.

The world’s longest-running cryptocurrency exchange since 2011 © 2011 - 2025 BTCC.com. All rights reserved

All articles reposted on this platform are sourced from public networks and are intended solely for the purpose of disseminating industry information. They do not represent any official stance of BTCC. All intellectual property rights belong to their original authors. If you believe any content infringes upon your rights or is suspected of copyright violation, please contact us at [email protected]. We will address the matter promptly and in accordance with applicable laws.BTCC makes no explicit or implied warranties regarding the accuracy, timeliness, or completeness of the republished information and assumes no direct or indirect liability for any consequences arising from reliance on such content. All materials are provided for industry research reference only and shall not be construed as investment, legal, or business advice. BTCC bears no legal responsibility for any actions taken based on the content provided herein.