After more than a decade and a half on the market, WhatsApp is preparing to introduce a feature that many users have long expected: optional account passwords. The update was recently identified in WhatsApp Beta for Android version 2.26.7.8, signaling that broader testing is underway before a potential public release.
The messaging platform, owned by Meta, has historically relied on phone number verification as the primary method of account authentication. Users enter their mobile number, receive a six-digit SMS code, and gain access to their account. While WhatsApp also offers a two-step verification PIN as an added safeguard, the absence of a full account password has stood out compared to other digital services.
The new password feature will not replace the existing signup process. Instead, it will add another layer of security for logins on new devices or after account re-verification. According to details observed in the beta version, passwords will be optional rather than mandatory. Users who prefer the current setup can continue using SMS-based authentication without enabling an account password.
If implemented as currently outlined, the login sequence for users who enable passwords would become more layered. First, they would enter the six-digit SMS code sent to their phone number. If two-step verification is active, they would then input their PIN. Finally, the account password would be required to complete access. This multi-step approach is designed to reduce the risk of unauthorized access, particularly in scenarios where someone gains control of a user’s SIM card and intercepts one-time passcodes.
SIM-swapping attacks and SMS interception remain known vulnerabilities in phone-number-based authentication systems. By introducing passwords, WhatsApp appears to be addressing long-standing concerns about account security. While end-to-end encryption protects message content in transit, account access itself has relied heavily on the security of a user’s mobile number.
At present, the password feature has only been identified in the Android beta build. There is no official confirmation regarding availability on iOS, though it would be unusual for a core account security feature to remain platform-exclusive. Recent feature rollouts suggest Meta has been testing updates separately across Android and iOS before wider deployment.
WhatsApp has not announced a public release timeline. As with other features first spotted in beta versions, availability could depend on testing feedback and stability assessments. If rolled out broadly, the addition of optional account passwords would mark a significant shift in how WhatsApp approaches authentication, bringing it more in line with standard account security practices seen across other online services.
