TechCentralTechCentral
    Facebook Twitter YouTube LinkedIn
    Facebook Twitter LinkedIn YouTube
    TechCentral TechCentral
    NEWSLETTER
    • News

      Saboteurs threaten South Africa’s power supply

      20 May 2022

      Prosus to sell Russia’s Avito

      20 May 2022

      Curro pilots artificial intelligence for learning in its schools

      20 May 2022

      Dark weekend lies ahead thanks to you know who

      20 May 2022

      CSIR develops app to help kids learn to read

      20 May 2022
    • World

      Chip giant ASML places big bets on a tiny future

      20 May 2022

      Musk moves to soothe investor fears over Tesla

      20 May 2022

      Apple is almost ready to show off its mixed-reality headset

      20 May 2022

      TikTok plans big push into gaming

      19 May 2022

      Musk says he will vote Republican, calls ESG a ‘scam’

      19 May 2022
    • In-depth

      Elon Musk is becoming like Henry Ford – and that’s not a good thing

      17 May 2022

      Stablecoins wend wobbly way into the unknown

      17 May 2022

      The standard model of particle physics may be broken

      11 May 2022

      Meet Jared Birchall, Elon Musk’s personal ‘fixer’

      6 May 2022

      Twitter takeover was brash and fast, with Musk calling the shots

      26 April 2022
    • Podcasts

      Dean Broadley on why product design at Yoco is an evolving art

      18 May 2022

      Everything PC S01E02 – ‘AMD: Ryzen from the dead – part 2’

      17 May 2022

      Everything PC S01E01 – ‘AMD: Ryzen from the dead – part 1’

      10 May 2022

      Llew Claasen on how exchange controls are harming SA tech start-ups

      2 May 2022

      The inside scoop on OVEX’s big expansion plans

      20 April 2022
    • Opinion

      A proposed solution to crypto’s stablecoin problem

      19 May 2022

      From spectrum to roads, why fixing SA’s problems is an uphill battle

      19 April 2022

      How AI is being deployed in the fight against cybercriminals

      8 April 2022

      Cash is still king … but not for much longer

      31 March 2022

      Icasa on the role of TV white spaces and dynamic spectrum access

      31 March 2022
    • Company Hubs
      • 1-grid
      • Altron Document Solutions
      • Amplitude
      • Atvance Intellect
      • Axiz
      • BOATech
      • CallMiner
      • Digital Generation
      • E4
      • ESET
      • Euphoria Telecom
      • IBM
      • Kyocera Document Solutions
      • Microsoft
      • Nutanix
      • One Trust
      • Pinnacle
      • Skybox Security
      • SkyWire
      • Tarsus on Demand
      • Videri Digital
      • Zendesk
    • Sections
      • Banking
      • Broadcasting and Media
      • Cloud computing
      • Consumer electronics
      • Cryptocurrencies
      • Education and skills
      • Energy
      • Fintech
      • Information security
      • Internet and connectivity
      • Internet of Things
      • Investment
      • IT services
      • Motoring and transport
      • Public sector
      • Science
      • Social media
      • Talent and leadership
      • Telecoms
    • Advertise
    TechCentralTechCentral
    Home»News»WhatsApp has ‘security backdoor’

    WhatsApp has ‘security backdoor’

    News By Staff Reporter13 January 2017
    Facebook Twitter LinkedIn WhatsApp Telegram Email

    There’s a security backdoor in WhatsApp that can be used by parent Facebook, government agencies and others to intercept and read encrypted messages sent through the popular mobile phone messaging app, according to a report.

    The Guardian reported exclusively on Friday about the backdoor, saying it flies in the face of claims by Facebook that messages sent securely using the app’s end-to-end encryption cannot be intercepted, even by the social networking company’s own employees.

    But a problem in the way WhatsApp’s encryption has been implemented allows for interception, according to the report. It said a cryptography researcher at the University of California, Berkeley, Tobias Boelter, had uncovered the vulnerability.

    “If WhatsApp is asked by a government agency to disclose its messaging records, it can effectively grant access due to the change in keys,” Boelter is quoted by The Guardian as saying.

    He reportedly informed Facebook of the problem in April, but the company has failed to address it, calling it “expected behaviour”.

    WhatsApp has more than a billion daily active users, some of whom use the service to share sensitive information on the understanding that it cannot be intercepted.

    According to The Guardian, the vulnerability is caused by the fact that WhatsApp “has the ability to force the generation of new encryption keys for offline users, unbeknownst to the sender and recipient of the messages, and to make the sender re-encrypt messages with new keys and send them again for any messages that have not been marked as delivered”.

    “The recipient is not made aware of this change in encryption, while the sender is only notified if they have opted in to encryption warnings in settings, and only after the messages have been re-sent. This re-encryption and rebroadcasting effectively allows WhatsApp to intercept and read users’ messages.”

    WhatsApp hits back

    WhatsApp, meanwhile, has hit back at any suggestion that it intentionally created a backdoor that allows governments to force it to decrypt message streams.

    “WhatsApp does not give governments a ‘backdoor’ into its systems and would fight any government request to create a backdoor,” it said in a statement e-mailed to TechCentral.

    “The design decision referenced in The Guardian story prevents millions of messages from being lost, and WhatsApp offers people security notifications to alert them to potential security risks,” it said.

    “WhatsApp published a technical white paper on its encryption design, and has been transparent about the government requests it receives, publishing data about those requests in the Facebook Government Requests Report.  — (c) 2017 NewsCentral Media

    Facebook Tobias Boelter WhatsApp
    Share. Facebook Twitter LinkedIn WhatsApp Telegram Email
    Previous ArticleDrone industry crashes into reality
    Next Article TalkCentral: Ep 163 – ‘Backdoors and Bobiverses’

    Related Posts

    Saboteurs threaten South Africa’s power supply

    20 May 2022

    Prosus to sell Russia’s Avito

    20 May 2022

    Curro pilots artificial intelligence for learning in its schools

    20 May 2022
    Add A Comment

    Comments are closed.

    Promoted

    Fast-rising fintech Bankingly closes $11m investment round

    20 May 2022

    Creating an effective employer value proposition for the new era of work

    20 May 2022

    Why fibre is the new utility – and what it means for South Africa

    19 May 2022
    Opinion

    A proposed solution to crypto’s stablecoin problem

    19 May 2022

    From spectrum to roads, why fixing SA’s problems is an uphill battle

    19 April 2022

    How AI is being deployed in the fight against cybercriminals

    8 April 2022

    Subscribe to Updates

    Get the best South African technology news and analysis delivered to your e-mail inbox every morning.

    © 2009 - 2022 NewsCentral Media

    Type above and press Enter to search. Press Esc to cancel.