The world seems to be shocked by the news that WhatsApp turned any phone into spyware. Everything on your phone – including photos, emails and texts – could be accessed by attackers just because you had WhatsApp installed [1].
This news didn’t surprise me, though. Last year WhatsApp had to admit they had a very similar issue – a single video call via WhatsApp was all a hacker needed to get access to all of your phone’s data [2].
Every time WhatsApp has to fix a critical vulnerability in their app, a new…
This is an article written by telegram’s founder and CEO Pavel Durov in 2019 on “Why whatsapp will never be secure”. Your thoughts?
This is a very good reminder why one should worry about the new messaging standard for interoperability.
WhatsApp users resilient enough not to fall for constant popups telling them to back up their chats can still be traced by a number of other tricks – from accessing their contacts’ backups to invisible encryption key changes [13]. The metadata generated by WhatsApp users – logs describing who chats with whom and when – is leaked to all kinds of agencies in large volumes by WhatsApp’s parent company [14].
It even might result in me thinking that we should have to ban facebook from entering the fediverse because people are lazy and don’t switch to the real fediverse if they can see your posts and contact you directly.
As it stands, Facebook can make unlimited, unauthenticated API calls to Lemmy and Mastodon right now… Blocking them only prevents their users from accessing the data.
Anybody who spins up a server basically gets instant access to that data from other instances, too. You don’t have to ask for permission. They just share it with you.
This is a very good reminder why one should worry about the new messaging standard for interoperability.
It even might result in me thinking that we should have to ban facebook from entering the fediverse because people are lazy and don’t switch to the real fediverse if they can see your posts and contact you directly.
As it stands, Facebook can make unlimited, unauthenticated API calls to Lemmy and Mastodon right now… Blocking them only prevents their users from accessing the data.
Anybody who spins up a server basically gets instant access to that data from other instances, too. You don’t have to ask for permission. They just share it with you.
“Dumb fucks”
This is not about getting the data. This data is public.
It’s about market power