The case, led by a special agent in the Commerce Department's Bureau of Industry and Security, focused on claims that some Meta employees and contractors could access...
A 10-month Commerce Department probe concluded Meta could view all WhatsApp messages in unencrypted form
What I don’t understand yet is why there haven’t been any independent cybersecurity experts capable of finding a backdoor in WhatsApp. How hard would it be for an expert without access to the source code to find one? Are any independent entities monitoring WhatsApp’s security at all??
The clients are one question, but the servers are another. If the backdoor is on the server end, which it sure looks like, then your experts won’t find anything by examining the client.
I see. I thought that the backdoor had to be in the client, because I thought that could be the only place where the private keys are stored, but I’ve since realized that it could be on the server. Thanks for the insight.
Hey I work in cyber security. Just because an app has a backdoor doesn’t mean that the backdoor can be accessed by anyone. Accessing this backdoor would likely mean compromising meta themselves, not just the app or its communications.
What I don’t understand yet is why there haven’t been any independent cybersecurity experts capable of finding a backdoor in WhatsApp. How hard would it be for an expert without access to the source code to find one? Are any independent entities monitoring WhatsApp’s security at all??
The clients are one question, but the servers are another. If the backdoor is on the server end, which it sure looks like, then your experts won’t find anything by examining the client.
I see. I thought that the backdoor had to be in the client, because I thought that could be the only place where the private keys are stored, but I’ve since realized that it could be on the server. Thanks for the insight.
It’s not about being vulnerable. It’s probably a very tight software.
It’s just that Meta stores the private keys of the e2e encryption. So they can decrypt any and all chats if they want to.
Ooh, I see. Thanks.
Hey I work in cyber security. Just because an app has a backdoor doesn’t mean that the backdoor can be accessed by anyone. Accessing this backdoor would likely mean compromising meta themselves, not just the app or its communications.
I’m sure you must receive lots of annoying questions because of the work you do, so thanks a lot for the insight!