WhatsApp's end-to-end encryption is a gimmick

The discovery that hackers could snoop on WhatsApp should alert users of supposedly secure messaging apps to an uncomfortable truth: "End-to-end encryption" sounds nice - but if anyone can get into your phone's operating system, they will be able to read your messages without having to decrypt them.

According to a report in the Financial Times on Tuesday, the spyware that exploited the vulnerability was Pegasus, made by Israeli company NSO. The malware could access a phone's camera and microphone, open messages, capture what appears on a user's screen, and log keystrokes - rendering encryption pointless.

Please or to continue reading the full article. Learn more about ST PREMIUM.

Enjoy unlimited access to ST's best work

  • Exclusive stories and features on multiple devices
  • In-depth analyses and opinion pieces
  • ePaper and award-winning multimedia content
A version of this article appeared in the print edition of The Straits Times on May 16, 2019, with the headline 'WhatsApp's end-to-end encryption is a gimmick'. Print Edition | Subscribe