- Meta launches WhatsApp Analysis Proxy to help bug bounty investigations into WhatsApp protocols
- Specialised analysis pilot expands to incorporate abuse points with engineering help and tooling
- In 2025, Meta validated ~800 reviews, paying $4M for crucial bug fixes
Meta has launched new instruments to assist cybersecurity researchers discover bugs in WhatsApp.
In a brand new weblog put up discussing the success of its Bug Bounty program during the last 15 years, Meta mentioned the researchers requested for a product that may assist them examine WhatsApp-specific applied sciences higher, and in response, it constructed WhatsApp Analysis Proxy.
Describing it as a “device that makes analysis into WhatsApp’s community protocol simpler”, Meta mentioned it will likely be out there to “a few of our long-time bug bounty researchers”, who won’t solely use the device, however present suggestions to assist enhance it. Extra researchers will likely be invited to check the device as time goes by, Meta added, and confused that the objective is to launch the device publicly sooner or later. No precise dates have been talked about, although.
Increasing bug bounty packages
Meta additionally introduced it could be increasing its specialised analysis pilot. Earlier this yr, the corporate launched a pilot to assist speed up collaboration particularly areas – however simply with researchers with confirmed credentials.
Now, Meta is trying to increase this partnership by incentivizing analysis “past conventional safety vulnerabilities”.
As a part of this enlargement, Meta is now inviting analysis groups to concentrate on abuse points with devoted inside engineering help and tooling, all with the objective of decreasing the barrier of entry for teachers and different searchers who may not be as acquainted with bug bounty packages.
The corporate that owns Fb, Instagram, WhatsApp, and some different platforms, mentioned it acquired round 13,000 submissions to its bug bounty program in 2025. It validated virtually 800 reviews, for which it made cumulative funds of greater than $4 million.
A few of the worst bugs that have been fastened via this system embody a way that allowed mass WhatsApp account enumeration, an incomplete validation situation, and totally different arbitrary code execution bugs.
Through The Hacker Information
One of the best antivirus for all budgets
Comply with TechRadar on Google Information and add us as a most popular supply to get our knowledgeable information, opinions, and opinion in your feeds. Be certain that to click on the Comply with button!
And naturally you can too observe TechRadar on TikTok for information, opinions, unboxings in video type, and get common updates from us on WhatsApp too.
