A bug was discovered recently that reportedly allowed anyone to bypass Face and Touch ID authentication, making the user’s account vulnerable to third parties. A Reddit user, de X ter, found that the security lock in the instant messaging app was being evaded with the use of a bug. The Reddit user gave a detailed explanation on how this has been happening. He said, that the bug can be triggered if lock activation time in the app’s settings is kept in any duration except ‘Immediately’. We should mention that options other than ‘Immediately’ include 1 minute, 15 minutes, and 1 hour.
With the use of WhatsApp Share Extension in any apps, the messaging platform would not ask you for your Face ID and Touch ID authentication, even when the time limit which you have set is crossed, the Reddit user said. Consequently, when you open WhatsApp, the bug is activated and you can bypass the security authentication. In simpler words, the app will open without Face ID or Touch ID authentication. So, anyone with physical access to your iPhone will be able to access you messages because they wouldn’t be asked to submit biometric authentication.
However, you can tackle this issue with the method we are going to talk about now. Just choose the authentication kick-in time to ‘Immediately’. If you do this, then accessing your WhatsApp account from share sheet will prevent Face ID and Touch ID from being bypassed by anyone. Even though the bug has been verified, WhatsApp has not confirmed its existence. Unless the Facebook-owned messaging app does not find a way to fix this problem, the method that we have just jotted down is the only way to tackle this bug.
We have no clue as to when WhatsApp will fix this bug, but we hope that it acknowledges it as soon as possible. It won’t be long enough before users start detesting the Face ID and Touch ID unless the Facebook-owned messaging app does something immediately about it.