X’s new features may lead to the disclosure of user privacy is profiled by BTW Media because published evidence links it to internet infrastructure, governance, operational dependencies, or market visibility.

• Elon Musk’s X app introduces audio and video calling, but default settings leak users’ IP addresses.
• The encryption dealing with the leakage is still unspecified.
• Managing call restrictions on X can be confusing, and experts recommend disabling the feature to mitigate privacy risks.

OUR TAKE:
The introduction of audio and video calling features in X presents exciting possibilities for users. However, the concerns raised about privacy leakage and encryption ambiguity cannot be ignored. X must prioritize addressing these issues promptly to ensure user data protection and build trust in their platform.
— Iris Deng, BTW reporter

As a global social networking platform, X’s new video calling feature comes with the worrying issue of personal information leakage. At a time when data security and privacy concerns are growing, X needs to address this thorny issue as soon as possible.

The X adds a new feature for video calls but brings up the issue of user privacy leakage

In an ambitious move to transform a basic Twitter app into a multifunctional platform known as X, Elon Musk recently introduced audio and video calling features. However, concerns have been raised about default settings that leak users’ IP addresses and the complexity of managing call restrictions on the app.

X’s official announcement touted the availability of audio and video calling to all users, with a prompt to initiate calls. The feature is integrated within the Messages section of the X app, accessible through a newly added phone icon in the top right corner for both iOS and Android users.

By default, calls on X are peer-to-peer, exposing users’ IP addresses to each other due to direct device connections—a common practice in messaging and calling apps. While X offers an option to enhance call privacy by masking IP addresses through its infrastructure, the absence of mention regarding encryption raises concerns about potential eavesdropping by the platform.

Also read:

The encryption to deal with IP address leakage is unclear

Despite attempts to seek clarity on encryption measures from X, responses have been elusive, pointing to potential privacy risks associated with the calling feature. As a result, experts recommend disabling the feature entirely to mitigate these risks.

Moreover, configuring call settings within X can be intricate, with options ranging from limiting calls to those followed or in the address book to allowing calls from verified users or anyone, potentially leading to unwanted spam calls.

During tests conducted by TechCrunch using Burp Suite, distinct scenarios highlighted the intricacies of call permissions between X accounts, shedding light on the underlying network structure inherited from Periscope, Twitter’s former live-streaming service.

X needs to address this thorny issue as soon as possible when public concentration on data security is growing

Amidst growing concerns over data privacy and security, users are encouraged to weigh the convenience of X’s calling feature against the potential risks posed by IP exposure and limited transparency on encryption practices. As individuals navigate the complexities of call settings and privacy controls within the app, striking a balance between functionality and data protection remains paramount.

In an industry marked by evolving communication technologies and heightened privacy concerns, X’s foray into audio and video calling underscores the need for robust safeguards to protect user data and ensure seamless user experiences.

While X aims to position itself as the go-to platform for comprehensive communication solutions, addressing user privacy concerns and enhancing transparency around data handling will be critical in fostering trust and long-term user engagement.