WhatsApp is reportedly working on a new feature that would allow its users to chat with people who do not have a WhatsApp account. The update, known as “Guest Chats,” is still in its early development stages and has yet to reach the beta testing phase.
According to tech-tracking platform WABetaInfo, the feature is expected to appear in an upcoming Android update on the Google Play Beta Program. It would enable WhatsApp users to send a link that allows non-users to join a conversation, removing the need for them to create an account.
While the development promises greater accessibility and convenience, cybersecurity experts have raised concerns that it could open the door to new risks. Haider Pasha, Chief Security Officer at Palo Alto Networks EMEA, warned that such a system might make it easier for attackers to disguise their identities.
“Attackers might exploit the anonymity feature to launch social engineering attacks or spread malicious links,” Pasha told Khaleej Times. He added that without an account, impersonation becomes much simpler, which could erode trust between individuals communicating through the feature.
Despite these risks, Pasha noted that WhatsApp does implement safeguards, but users would need to exercise caution. He advised people to remain alert when chatting with unknown contacts.
On the other side of the debate, Ahmed Ashraf, Senior Security Consultant at Kaspersky, suggested the system would still rely on verification processes. “With guest chats, the sender — a verified WhatsApp account — generates and shares a link. The recipient, the ‘guest,’ doesn’t register inside WhatsApp, but their identity is confirmed through the channel the link is sent to,” Ashraf explained.
He added that much would depend on what information is visible within the guest chat window. If the sender’s number or profile is hidden, recipients may struggle to confirm who is contacting them. Conversely, if the details are displayed, there is at least some form of verification.
Ashraf pointed out that the real threat lies with malicious WhatsApp users who could distribute fake or harmful links in bulk. However, he noted that Meta, WhatsApp’s parent company, retains details of account holders, enabling abusive users to be reported, investigated, and blocked.
Both experts highlighted steps that users can take to safeguard themselves if the feature becomes widely available. Pasha recommended enabling two-factor authentication, avoiding suspicious links, and limiting the sharing of personal information. In the event of a breach, he advised reinstalling the app and securing a fresh verification code.
Ashraf suggested that users restrict their profile visibility to trusted contacts only and take advantage of WhatsApp’s existing tools for reporting and blocking spammers. He also recommended that the platform introduce the option to revoke or end guest sessions at any time, similar to unlinking a device.
While WhatsApp has not announced a rollout date, the potential arrival of Guest Chats highlights the company’s efforts to expand accessibility — even as questions remain about the balance between convenience and security.
