If you remember, WhatsApp introduced end-to-end Encryption in the year 2016 and was highly appreciated for the same. However, a security researcher from ‘The Guardian’ has now revealed that the end-to-end encryption on WhatsApp might not be that reliable. As per Tobias Boelter (researcher), even after encryption, WhatsApp can leave all your messages and calls open to someone to intercept. For instance, the likes of Facebook can easily get access to all the messages with no trouble.
Boelter said – “If WhatsApp is asked by a government agency to disclose its Messaging records, it can effectively grant access due to the change in keys”. He further added that at first what was regarded as a bug can now be used as a security backdoor. Not only this, when Boelter went to Facebook to inform about the same, the company even after accepting the issue was hardly interested in working upon it. Further, WhatsApp denied the issue and said that it believes in delivery simple fast and reliable service to its users.
To explain, WhatsApp’s end-to-end encryption mechanism generates keys for every time we send an encrypted message to someone. However, these messages need additional implementation for offline users which makes several messages and calls, done through the famous messaging app, vulnerable to a security breach. So when the messages are delivered offline, they get re-encrypted which is when some other middlemen can intercept these messages.
Interestingly, this is not the first time WhatsApp has been accused of a security vulnerability. Earlier in 2016, after it changed its privacy policy, WhatsApp was accused of misrepresenting its privacy policy which said that the parent company Facebook can sometimes access the data sent across the famous messaging service. However, the company was eventually forced to take back the policy by the Delhi High Court.