Vitalik Buterin Warns X’s Location Feature Creates ‘Easy to Fake’ Security Risk

Ethereum co-founder Vitalik Buterin has raised serious concerns about X’s newly launched location-tagging feature, warning that sophisticated actors will easily circumvent the system while legitimate users face privacy risks.

The feature, which displays the country or region where accounts are based, rolled out globally on November 22 through the platform’s “About This Account” section, accessible by tapping the signup date on user profiles.

Buterin’s critique centers on the feature’s vulnerability to manipulation, predicting that within six months, foreign political troll accounts will successfully spoof their locations to appear as though they operate from the United States or the United Kingdom.

He argued that while obtaining fake locations for a million accounts might prove moderately difficult, creating a single account with a fraudulent location and growing it to a million followers would be straightforward through methods such as renting passports, phone numbers, and IP addresses.

Privacy Concerns Overshadow Security Benefits

The location feature has sparked immediate backlash from the crypto community, with figures like Uniswap founder Hayden Adams calling it “psychotic” and questioning its mandatory nature.

Adams distinguished between voluntary and compulsory information sharing, stating, “opt-in doxxing is fine, mandatory doxxing is psychotic.”

The feature’s implementation appears particularly concerning for crypto users, given the industry’s history of targeted attacks and kidnappings related to digital asset holdings.

Buterin later clarified his position following community feedback, acknowledging that revealing location data without consent or an opt-out option violates user privacy.

“There are some people for whom even a few bits of leakage are risky, and they should not have their privacy retroactively rugpulled with no recourse,” he wrote.

While X product director Nikita Bier announced privacy toggles for users in countries where speech carries penalties, critics argue this doesn’t address the fundamental privacy invasion for the broader user base.

The controversy appears particularly stark when contrasted with platform owner Elon Musk’s March 2022 statement promising that X would “do whatever it takes to protect the rights of users to remain anonymous, as they would otherwise face persecution from employers or risk of physical harm.“

That commitment came when the platform updated its privacy policy to ban publishing the real names of people behind anonymous accounts.

Industry Experts Debate Long-Term Implications

Finance professor Maxim Mironov from IE Business School suggested the feature could function similarly to spam prevention mechanisms, arguing that introducing extra costs for faking country information would reduce bot activity.

However, Buterin countered that the current system requires individual users to manually check each account’s location, negating any mass-scale verification benefits and proving useful only for high-profile accounts worth explicitly investigating.

Cryptoanalyst Nic Carter offered a contrasting perspective, framing the location disclosure as recognition that unrestricted access to Western communication infrastructure has enabled widespread abuse.

“Why should we continue to grant scammers direct access to our phones, inboxes, and DMs?” Carter wrote, comparing the approach to China’s long-standing restrictions on foreign participation in domestic platforms.

He characterized the human cost of open access as “astronomical,” citing seniors’ inability to use the internet safely and the constant SIM-farm spam.

Several users highlighted practical workarounds and concerns about the feature’s implementation.

Web3 attorney Langerius instructed followers to disable country visibility through settings or switch from country-level to region-level display.

Developer Mayowa warned the feature could encourage discrimination against users from certain regions, noting that “innocent users will be abused or thrown under the bus simply because of where they’re chatting from.”

Tech investor Jason Calacanis quipped, “Long VPN stocks,” suggesting virtual private networks would see increased adoption as users seek to mask their true locations.

The feature represents X’s stated effort to secure what it calls the “global town square,” with Bier promising additional authenticity verification methods in development.

The post Vitalik Buterin Warns X’s Location Feature Creates ‘Easy to Fake’ Security Risk appeared first on Cryptonews.