WhatsApp flagged as high-risk app by US House
The U.S. House of Representatives’ top official has prohibited WhatsApp usage on government-issued staff devices due to identified security vulnerabilities, according to Reuters.
The Office of Cybersecurity classified WhatsApp as a high-risk application for users. This assessment stems from concerns regarding the application’s data protection methodologies, specifically citing a lack of transparency in how user data is safeguarded. Another factor contributing to this high-risk designation is the absence of encryption for data stored within the application.
These issues collectively contribute to identified potential security risks associated with WhatsApp’s deployment on official devices. Consequently, the memo disseminated to House staff advises the use of alternative communication platforms. Recommended applications include Signal, iMessage, FaceTime, and Microsoft Teams, which are considered to offer more robust security protocols for official communications.
The trial that could force Meta to sell Instagram and WhatsApp
In January, Meta, the parent company of WhatsApp, reported the detection and subsequent disruption of a targeted hacking campaign. This campaign specifically aimed at approximately 90 WhatsApp users, a group that included journalists. The investigation into this malicious activity linked the hacking efforts to Paragon Solutions, an Israeli company specializing in the development and deployment of spyware.
Paragon Solutions itself was the subject of a significant business transaction in December of the preceding year, when it was acquired by AE Industrial Partners, a prominent private equity firm based in the United States. Further insights into Paragon Solutions’ activities were provided by a research report published in May. This report indicated that the governments of Australia, Canada, Cyprus, Denmark, Israel, and Singapore are probable clients of Paragon, suggesting a broader client base for the spyware maker’s products.
A Meta spokesperson issued a statement directly addressing the U.S. House Chief Administrative Officer’s characterization of WhatsApp’s security. Meta expressed strong disagreement with the assessment, asserting that all messages exchanged on WhatsApp are secured with end-to-end encryption by default. This encryption protocol ensures that only the intended recipients can access the content of the messages, meaning that WhatsApp itself cannot view them. Meta further emphasized that this level of security surpasses that offered by many applications on the Chief Administrative Officer’s approved list, which do not provide comparable end-to-end encryption protection.