Categories: Security

Is WhatsApp’s Encryption Problematic for Users’ Security?

WhatsApp rolled out end-to-end encryption on its platform in April of last year. This means that WhatsApp users now have all of their photos, media, and messages encrypted by default. In this new system, only the intended recipient of a message can read the message — no one in between, not even WhatsApp or the government, can ostensibly access these conversations.

This January, The Guardian broke the news that Facebook-owned WhatsApp contained a “backdoor” to its encrypted messaging platform. This alleged “backdoor,” the article claims, can allow governments and hackers to snoop on users’ private conversations. This “backdoor” is possible thanks to a vulnerability in the app: the vulnerability was designed to make the app more user friendly. That’s why it’s important to run regular virus scans on your device, to ensure that all of your apps and data are protected — despite any vulnerabilities. Click here to run a full virus scan now:


A False Backdoor?

Almost immediately after The Guardian’s article, cryptologists took to Twitter to criticize the allegation. Brian Acton, WhatsApp’s co-founder, and Moxie Marlinspike, the founder of Open Whisper Systems — the team that helped design WhatsApp’s encryption — released statements calling the claim “false” and “disappointing.” Further, 40 security experts signed an open letter requesting that The Guardian apologize and retract the story since the use of the word “backdoor” implies an intentional design decision on WhatsApp’s end.

In his statement, Marlinspike explained that the feature The Guardian had interpreted as a “backdoor” came about as a necessary trade-off between security and usability. In other end-to-end encrypted messaging systems, users are often blocked if they try to message someone who changed his or her security key — unbeknownst to the sender. In contrast, WhatsApp made the choice to give the sender a warning that the recipient of the message has changed his or her security key.

WhatsApp is Still Safe to Use

Putting aside this drama about the backdoor possibility, security experts have conceded that the flaw in the encrypted messaging system is problematic. The end-to-end system has also briefly impeded WhatsApp’s ability to detect and fight spam. However, as reported by Business Insider, WhatsApp is still the best choice for users who want a secure messaging platform that is easy to use.

An Alternative to WhatsApp

For users who still feel concerned however, consider downloading the Signal app. This messaging app was developed by Open Whisper Systems, and is largely considered to be the most secure messaging app on the market. You can download this app for free from the Play store or directly from Open Whisper Systems’ website.

PSafe Newsroom

The dfndr blog is an informative channel that presents exclusive content on security and privacy in the mobile and business world, with tips to keep users protected. Populated by a select group of expert reporters, the channel has a partnership with dfndr lab's security team. Together they bring you, first-notice news about attacks, scams, internet vulnerabilities, malware and everything affecting cybersecurity.

Recent Posts

Vulnerabilities in Cyber Security: what they are and how to fix them?

Learn all about one of the hackers' favorite breach method and keep your company safe…

1 year ago

3 ways to recover deleted photos on Android

Have you ever wondered how to recover deleted photos on Android? After all, the lack…

1 year ago

What is worm?

Digital worms are among the most serious threats in the wild kingdom of the Internet.

2 years ago

Spoofing: What’s it all about?

Spoofing is a fairly sophisticated virtual scam that can fool even the most cautious and…

2 years ago

Careful With That QR Code! Five Steps For QR Code Safety

Five Steps to Reduce QR Code Risk! Step one? Read this article…

2 years ago

Pharming: Phishing’s Nasty Big Brother

Pharming is creating a new, dangerous brand of impostor syndrome. Check how to avoid pharming…

2 years ago