this post was submitted on 19 Nov 2025
46 points (100.0% liked)

Privacy

2913 readers
321 users here now

Icon base by Lorc under CC BY 3.0 with modifications to add a gradient

founded 2 years ago
MODERATORS
Ategon@programming.dev
danielintempesta@programming.dev
46
3.5 Billion Accounts: Complete WhatsApp Directory Retrieved and Evaluated (www.heise.de)
submitted 1 day ago by IceFoxX@lemmy.world to c/privacy@programming.dev
7 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[–] IceFoxX@lemmy.world 1 points 1 day ago

What would help immediately if something like this were prohibited by law is if the account used a phone number for identification instead of an account with login details. Then the issue of phone numbers would be off the table, and with it many other issues as well. The information about when and where a device was paired does not have to be public (devices should actually be removed when no longer in use instead of being kept in the logs).

What about SIM spoofing? The mere existence of SIM spoofing should ensure that phone numbers are not used for authentication and then displayed elsewhere... regardless of whether they are set to public or private, whereby Meta should not offer this as an option at all, but strictly refrain from storing the number in plain text anywhere, let alone publicly.