Social media: Security experts raise flags over WhatsApp

Facebook’s plan of acquisition brings fresh criticism.

Afp February 22, 2014
buyout 19b is the amount facebook will pay to buy the whatsapp messenger photo publicity
Buyout: $19b is the amount Facebook will pay to buy the WhatsApp messenger. PHOTO: PUBLICITY
WASHINGTON:


The Facebook deal for WhatsApp drew attention for its whopping price tag, but has also brought out fresh criticism over security for the billions of messages delivered on the platform.


WhatsApp, which is to be acquired for $19 billion, says on its website that ‘communication between your phone and our server is fully encrypted’.

The company warns users to be aware that when they send messages, the recipient’s device may not be secure. But it says it does not store any chat history and that messages are wiped off its system after delivery.

Yet security researchers and others point out that there may be vulnerabilities in the system used by some 450 million people globally.

Paul Jauregui, at the security firm Praetorian, said in a blog post on Thursday that WhatsApp security and encryption are not ideal, citing vulnerabilities in the way it handles SSL, the secure socket layer protocol for communications.

“The group’s mobile security test picked up on several SSL-related security issues affecting the confidentiality of WhatsApp user data that passes in transit to back-end servers,” Jauregui said.

“This is the kind of stuff the NSA (National Security Agency) would love. It basically allows them -- or an attacker -- to man-in-the-middle the connection and then downgrade the encryption so they can break it and sniff the traffic. These security issues put WhatsApp user information and communications at risk.”

Jauregui noted that Praetorian would need authorisation from Facebook and WhatsApp to do a more thorough security evaluation.

He added that it would be “not very difficult” to patch the security flaws.

Meanwhile in Germany, the data commissioner in the state of Schleswig-Holstein, said in a statement this week the deal raises serious privacy concerns and that WhatsApp does not comply with European data protection rules.

The official, Thilo Weichert, said in a statement that people should opt out of WhatsApp for more ‘trusted services’.

Published in The Express Tribune, February 23rd, 2014.

Like Business on Facebook, follow @TribuneBiz on Twitter to stay informed and join in the conversation. 

COMMENTS

Replying to X

Comments are moderated and generally will be posted if they are on-topic and not abusive.

For more information, please see our Comments FAQ

Join Us

TRIBUNE VIDEOS

112 K

Express Tribune Headlines Today | 6 PM | US President Biden Bans Tiktok | 25 April 2024

Germany Calls for Big Polluters like China to Fund Climate Aid | Latest News

President of France Calls for Robust Defense to Preserve Europe | Latest News

Columbia Protests Escalate as Speaker Johnson Faces Student Backlash | Latest News

Guangdong Floods: Intense Rains Trigger Massive Displacements | Latest News

MEP Releases Dove in the European Parliament Chamber as a Plea for Peace in the World | Latest News

Cavalry Horses Run Wild in Central London | Latest News

Netanyahu Condemns Pro-Palestine Protests in USC and other U.S. College Campuses | Latest News

Express Tribune Headlines Today | 12 PM | Iran-Pakistan Pipeline Ebrahim Raisi | 25 April 2024

Houthi Strikes Target U.S. and Israeli Ships in Strategic Waters | Latest News

TikTok Ban Bill Becomes Law as Biden Signs Legislation | Tiktok CEO Fights Back | Latest News

Woman Loses £40,000 in Elon Musk Deepfake Scam | Latest News

Juveniles Arrested Following Australia Church Stabbing Investigation | Latest News

Recommended Stories

2013: The good, the bad and the ugly of internet in Pakistan

Facebook to buy WhatsApp for $19 billion in deal shocker

Latest

Chiefs CEO’s daughter Ava Hunt looks like Taylor Swift in new dress

Zendaya and Tom Holland “discuss marriage”

Insult to armed forces unacceptable: Vawda

Harvey Weinstein's rape conviction overturned: Could LA case be next?

Eminem confirms new album 'The Death of Slim Shady (Coup de Grâce)' for summer release

200,000 metric tonnes urea import on cards

T.Edit

Skincare 101

Style 101

The Home Edit

On Express Urdu

The Express

پٹرولیم سیلرز ایسوسی ایشن نے پمپس بند کرنیکی دھمکی دیدی

The Express

سیلز سسٹم تنصیب میں تاخیر پر ان پُٹ ٹیکس ایڈجسٹمنٹ میں کمی

The Express

نجی شعبہ زراعت تبدیل کرنے میں موثر کردار ادا کرسکتا ہے، وزیر خزانہ

The Express

2023 میں پاکستان کو 2.35 ارب ڈالر فراہم کیے، ایشیائی بینک

The Express

بجلی مزید 2 روپے 94 پیسے فی یونٹ مہنگی ہونے کا امکان

The Express

روشن ڈیجیٹل اکاؤنٹس، مارچ تک ترسیلات زر 7.660 ارب ڈالر ریکارڈ

Most Read

Drive kicks off to secure Nur Khan Airbase

Paige Bueckers stands strong after leak of explicit AI-generated photos

Kudos for sticking to your beliefs: Lara Dutta applauds PM Modi after he calls Muslims infiltrators

Woman who ran over motorway cop arrested from Islamabad

Industrialists urge action on Pak-Iran trade targeting $10b

Pakistan, Iran renews IP gas pipeline cooperation

Opinion

Climate, conflict and security: the interplay

Transforming research libraries

Time to broaden South Aisa’s water sharing treaties

The inheritors

Consumerism and economic implications

The mask is off

FOLLOW US

This material may not be published, broadcast, rewritten, redistributed or derived from. Unless otherwise stated, all content is copyrighted © 2024 The Express Tribune.

  • express-pk
  • express e-paper
  • Cricket Pakistan
  • Food Tribune
  • Campus Guru
  • Express Entertainment
  • express-pk
  • express e-paper
  • Cricket Pakistan
  • Food Tribune
  • Campus Guru
  • Express Entertainment