The Guardian Backtracks On WhatsApp 'Backdoor' Report (theguardian.com)

← Back to Stories (view on slashdot.org)

The Guardian Backtracks On WhatsApp 'Backdoor' Report (theguardian.com)

Posted by msmash on Wednesday June 28, 2017 @02:45AM from the for-the-best dept.

Five months after The Guardian published an investigative report, in which it found a "backdoor" in the Facebook-owned service, the publication is finally making amendments. The January report immediately stirred controversy among security experts, who began questioning The Guardian's piece. Weeks later, Zeynep Tufekci, a researcher and op-ed writer for the New York Times, published an open letter with over 70 major security researchers working at major universities and companies like Google condemning the story, and asking the publication to retract it.. Paul Chadwick, The Guardian's reader's editor, said "The Guardian was wrong to report last January that the popular messaging service WhatsApp had a security flaw so serious that it was a huge threat to freedom of speech." From his article: In a detailed review I found that misinterpretations, mistakes and misunderstandings happened at several stages of the reporting and editing process. Cumulatively they produced an article that overstated its case. The Guardian ought to have responded more effectively to the strong criticism the article generated from well-credentialled experts in the arcane field of developing and adapting end-to-end encryption for a large-scale messaging service. The original article -- now amended and associated with the conclusions of this review -- led to follow-up coverage, some of which sustained the wrong impression given at the outset. The most serious inaccuracy was a claim that WhatsApp had a "backdoor", an intentional, secret way for third parties to read supposedly private messages. This claim was withdrawn within eight hours of initial publication online, but withdrawn incompletely. The story retained material predicated on the existence of a backdoor, including strongly expressed concerns about threats to freedom, betrayal of trust and benefits for governments which surveil. In effect, having dialled back the cause for alarm, the Guardian failed to dial back expressions of alarm.

48 comments

Min score:

Reason:

Sort:

still be an idiot to use facebook shite by Anonymous Coward · 2017-06-28 02:52 · Score: 1

you would still be an idiot for using a facebook product.
1. Re: still be an idiot to use facebook shite by Anonymous Coward · 2017-06-28 03:09 · Score: 0
  
  WhatsApp is fully encrypted by default now, and I'm not sure if they even have the option to turn it off now.
  It's become my main form of messaging now because it has none of the bloat of Skype or social nonsense of facebook, Snapchat, etc.
2. Re: still be an idiot to use facebook shite by Anonymous Coward · 2017-06-28 03:16 · Score: 0
  
  It's no good as it relies on one company. Better to use something like email which you can host anywhere or even yourself and not be dependant on any particular company.
3. Re: still be an idiot to use facebook shite by Anonymous Coward · 2017-06-28 03:47 · Score: 0
  
  But still, the fact stands that they can't read your conversations, which is better than email for most (how many common people actually set up encryption on email? Most just use the website or app, which most certainly isn't encrypted so the provider can harvest data).
  WhatsApp is an easy to use solution thats suitable for the everyday user who wants privacy without having to jump through hoops or understand technical jargon or make all their friends and family switch to some service that almost no one uses. And besides, email is odd for what WhatsApp is a replacement for, short instant messages that were previously sent via texting or IM.
  Is there honestly a better solution? If so, let me know. But until then, WhatsApp is what I recommend to everyday people who ask me what to use to replace texting.
4. Re: still be an idiot to use facebook shite by epyT-R · 2017-06-28 04:58 · Score: 1
  
  ..and how do you know that for sure?
5. Re: still be an idiot to use facebook shite by Anonymous Coward · 2017-06-28 04:59 · Score: 0
  
  Yeah, we're all trapped with shady companies like Facebook and Google. The most personal message I'll send someone these days is " can you grab me a coffee on the way over!"
6. Re: still be an idiot to use facebook shite by Anonymous Coward · 2017-06-28 05:33 · Score: 1
  
  You're still just taking whatsapp's word for it.
7. Re: still be an idiot to use facebook shite by Anonymous Coward · 2017-06-28 05:41 · Score: 1
  
  That Whatsapp is "fully encrypted" is an unsubstantiated claim. Fully encrypted would mean end-to-end encrypted, which they don't even pretend it is. TFA admits that
  
  Facebook’s servers are a black box. It is not possible for outsiders to verify exactly what happens when messages pass through Facebook’s servers on their way to and from WhatsApp users. Trust is required. Given Facebook’s record, steady scrutiny is the right stance.
  How do you scrutinize a black box? You can't. This wouldn't be a problem if the messages were encrypted properly (by an open algorithm, in a way that only the recipient can decrypt them) when they reach the server, but they aren't.
  
  has none of the [] social nonsense of facebook
  Uh... Whatsapp is Facebook.
8. Re: still be an idiot to use facebook shite by vakuona · 2017-06-28 05:53 · Score: 1, Informative
  
  Except that Whatsapp actually say they use end-to-end encryption. I know this, because I have Whatsapp, and the first time I exchange messages with anyone, it says that.
9. Re: still be an idiot to use facebook shite by cyber-vandal · 2017-06-28 06:19 · Score: 1
  
  Email is of course well known to be secure by default
10. Re: still be an idiot to use facebook shite by Anonymous Coward · 2017-06-29 06:56 · Score: 0
  
  mmm, so the app tells you and you trust it? how fucking stupid are you?
Media trust. by Anonymous Coward · 2017-06-28 02:55 · Score: 1

I don't want to make this a right v left thing but I want to genuinely ask how we can trust the media. CNN and The NY Times have both had huge retractions recently and now this.
The real issue as I see it is that it's not a fog of war issue where mistakes happen, it's all driven by a business requirement for more viewers or visitors. Everyone wants a salatious headline to keep eyeballs. How do we get to a place where the media just presents the dry, boring and honest truth?
1. Re:Media trust. by Anonymous Coward · 2017-06-28 03:00 · Score: 2, Insightful
  
  Look to those who offer retractions and publish information on their mistakes rather than blindly pressing ahead in the face of contradictory facts.
2. Re:Media trust. by Anonymous Coward · 2017-06-28 03:10 · Score: 2, Insightful
  
  Exactly. I don't condemn anyone for admitting a mistake. I'm suspicious of anyone who will never admit to a mistake.
3. Re:Media trust. by __aaclcg7560 · 2017-06-28 03:10 · Score: 1
  
  Reinstatement of the Fairness Doctrine?
  https://en.wikipedia.org/wiki/Fairness_Doctrine
  
  The Fairness Doctrine was a policy of the United States Federal Communications Commission (FCC), introduced in 1949, that required the holders of broadcast licenses both to present controversial issues of public importance and to do so in a manner that was — in the Commission's view — honest, equitable, and balanced. The FCC, which was believed to have been under pressure from then President Ronald Reagan, eliminated the Doctrine in 1987. The FCC formally removed the language that implemented the Doctrine, in August 2011.
4. Re:Media trust. by AmiMoJo · 2017-06-28 03:13 · Score: 1
  
  The difference between fake news and these guys is that they publish corrections.
  People deride Breitbart etc. because they don't own up to their mistakes and correct/retract them.
  
  --
  const int one = 65536; (Silvermoon, Texture.cs)
  SJW, n: "Someone I don't like, and by the way I'm a fuckwit" - AC
5. Re:Media trust. by Anonymous Coward · 2017-06-28 03:18 · Score: 0
  
  Great idea. I'd love to see the Sesame Street characters talking about how clean coal will create millions of new jobs and that arming teachers is the only way to keep our children safe.
6. Re: Media trust. by Anonymous Coward · 2017-06-28 03:19 · Score: 1
  
  You can't trust any media these days, whether private company, state owned, individual blogger, etc. You really have to read them all and make an informed decision on what the truth really is. It's much tougher than just reading and believing every twatter or fakebook link, but there are still some of us out there who can think.
  Of all the news sources, my first goto is still the BBC, but if I have time to check multiple sources, I do so, because even the BBC has biases.
  CNN is absolute trash. Just panders to the "for the children" crowd with stories of child abduction or feel good shit masquerading as news. The New York Times is a wannabe intellectual rag. It tries using big words to sound smart but all it does is cover up the fact the articles are devoid of content. And usually the articles are social justice bullshit or feel good stories about some minority anyway.
7. Re: Media trust. by SirSlud · 2017-06-28 03:25 · Score: 1
  
  This is a dumb thing to say on an article about a newspaper making corrections. If anything, there are no institutions more transparent and beholden to scrutiny than the press. I mean, if you probably shouldn't trust anything you read, if you can't figure that out, if only because you're a poor judge of information .
  
  --
  "Old man yells at systemd"
8. Re: Media trust. by Anonymous Coward · 2017-06-28 03:30 · Score: 2, Insightful
  
  What about people who only admit mistakes when caught?
  Because that's who you are defending. They aren't sorry about the lies (they keep printing them). They're sorry the lies were so blatant as to be obvious.
9. Re: Media trust. by Anonymous Coward · 2017-06-28 03:32 · Score: 0
  
  Breitbart is a blog, and entirely opinion / entertainment. They don't sell a holy narrative like traditional news media.
10. Re:Media trust. by Anonymous Coward · 2017-06-28 03:41 · Score: 0
  
  Carl Sagan said "Extraordinary claims require extraordinary evidence." (Also pretty obvious, although I prefer LePlace's "The weight of evidence for an extraordinary claim must be proportioned to its strangeness." 1812) What I find outrageous is that it took 5 MONTHS for The Guardian to fully correct the record and that is 5 months AFTER they knew the article should have been removed. That's just not acceptable for a source that I can have confidence in. But as always, we each have to consider the source and actively search for "the other side(s)" of any claim, which suggests a slightly different aphorism:"The more extraordinary the claim, the greater our efforts need to be confirm (or deny) it. I'm still scratching my head over a claim about Gorsuch and sexual harassment which I saw before his confirmation, but which also disappeared as suddenly and as quietly as it appeared....I suspect I've been had.
11. Re: Media trust. by Anonymous Coward · 2017-06-28 03:54 · Score: 0
  
  In theory, you're right. But in the modern day, people only read or watch what supports their viewpoint (liberals only watch CNN and conservatives only watch FOX). Watching or reading news isn't about challenging viewpoints, it's about finding more information that agrees with your worldview and feeling good about yourself. Pathetic that that's what we've come to, especially with how easy it is to find other opinions online, but thats the new normal I suppose. Politics has become like a sport. Root for your team no matter what.
12. Re: Media trust. by Anonymous Coward · 2017-06-28 04:02 · Score: 0
  
  Give it some time and Trump will push for it. And the show will probably be full of his slogans and promote his products as well. Lol.
13. Re: Media trust. by Anonymous Coward · 2017-06-28 04:02 · Score: 0
  
  There's no reason to think The Guardian was lying or trying to mislead. They made a mistake and are admitting it. Good on them.
14. Re:Media trust. by Anonymous Coward · 2017-06-28 04:04 · Score: 0
  
  Companies like Breitbart and Washington Post aren't reliable sources of information, you should be able to recognize how dishonest this type of reporting is by their shortage of facts and plentiful opinions.
15. Re:Media trust. by Carewolf · 2017-06-28 04:31 · Score: 1
  
  Trust the media that retracts stories when they rarely are wrong, and do not trust the media that never retracts stories because they are wrong every day on purpose. It is not difficult.
  This increases my trust in the Guardian.
16. Re:Media trust. by cavreader · 2017-06-28 04:45 · Score: 1
  
  It doesn't matter if they own up to their mistakes after the damage is already done. How many months did it take Guardian to fully correct their original incompetence?
17. Re:Media trust. by AmiMoJo · 2017-06-28 05:26 · Score: 1
  
  What do you propose instead? No-one publish any news just in case it turns out to be incorrect? One mistake and burn the whole organization to the ground?
  
  --
  const int one = 65536; (Silvermoon, Texture.cs)
  SJW, n: "Someone I don't like, and by the way I'm a fuckwit" - AC
18. Re:Media trust. by vakuona · 2017-06-28 05:55 · Score: 2
  
  Maybe they should allow the person they are accusing a fair hearing before they publish. Their research could have been proven to be hopelessly wrong, and they would have avoided publishing the fake news.
19. Re:Media trust. by Anonymous Coward · 2017-06-28 07:01 · Score: 0
  
  First off I propose the media publish the factual news stories on the Front Page and move their Opinions page back a few pages to where it belongs. Next I would propose every major media outlet that claims to be providing factual information to the public renounce their "editorial line". How can anyone trust a single thing media outlet publishes or airs when they have clearly, without hesitation, announced their institutional bias and then proceed to publish the information that only supports it's "editorial line". The MSM has compromised their objectivity and turned into politically motivated propaganda outlets. Trump became President because a wide swath of people ignored everything the MSM was pumping out towards the end of the Presidential campaign. I propose the media actually research their facts. I would propose the media stopped using "anonymous" sources and the sources "that are not authorized to speak" when creating their articles. Why should we automatically believe every fact attributed to these types of sources?
  We have entered an era when "facts" that support your particular political viewpoint are obviously correct and beyond reproach. If the "facts" that do not support your unyielding political viewpoint then the "facts" are simply dismissed. Is everything an anonymous source declares the truth and nothing but the truth? Should we assume everything a journalist says if they are willing to go to jail rather than reveal their sources? I doubt there is a shortage of journalist martyrs waiting on the sidelines to make a name for themselves.
  It has always been funny and a little disheartening to hear people buy into the "I read it on the Internet so it must be true!". Now we have added "I heard/saw it on Fox, CNN,ABC ,CBS, NBC, BBC, RT, and any other MSM outlet so it must be true!"
  Our modern day ability distribute news and information across the world in minutes use to be something positive to look forward to. Now it is the catalyst propelling us towards the next world war. Our global communication network is accomplishing two things. A tiny minority are reaping obscene amounts of money while everyone else is reaping obscene amounts of animosity which will be harnessed by the first group to make even more money from the growing number of armed conflicts taking place across the world. The good news is after the radiation levels subside and the global population is reduced to a few million we will no longer need to fret over global warming since the use of fossil fuels will dramatically decrease when there will be nothing in need fueling for at least a couple hundred years if not more.
20. Re:Media trust. by Anonymous Coward · 2017-06-28 08:15 · Score: 0
  
  I don't want to make this a right v left thing but I want to genuinely ask how we can trust the media. CNN and The NY Times have both had huge retractions recently and now this.
  The real issue as I see it is that it's not a fog of war issue where mistakes happen, it's all driven by a business requirement for more viewers or visitors. Everyone wants a salatious headline to keep eyeballs. How do we get to a place where the media just presents the dry, boring and honest truth?
  By being willing to pay for quality and not demanding speed, or full up-time on tv news.
  If people bought newspapers based on how accurate and well reasserted they were there would be newspapers with excellent research staff who cater to that market. To some extent there are. However generally speaking people no longer buy newspapers, instead they expect the news to be ad supported.
  This means that clickbait articles and 'scooping' stories are the best way to make money. You need to have it first or be able to tart it up more flashily than everyone else of you don't get payed.
21. Re:Media trust. by AmiMoJo · 2017-06-28 09:30 · Score: 1
  
  How do you have a fair hearing without publishing the accusation? Courts are public.
  
  --
  const int one = 65536; (Silvermoon, Texture.cs)
  SJW, n: "Someone I don't like, and by the way I'm a fuckwit" - AC
22. Re:Media trust. by Anonymous Coward · 2017-06-28 10:18 · Score: 0
  
  Since when are "they" the courts? The topic is about news outlets.
  A hearing doesn't just mean a court hearing. It could just be reaching out to the person/party in question for comment.
Cover up! by Anonymous Coward · 2017-06-28 02:59 · Score: 1

All these closed source messaging programs have backdoors (especially anything by facebook). That should be obvious by now. The guardian just received a nasty letter from the spies in the government to keep its mouth shut, an offer they can't refuse. The entire industry has a gun to its head and is being ordered to discredit the truth. The 'retraction' is a lie. The backdoors do exist.
1. Re:Cover up! by wyHunter · 2017-06-28 04:03 · Score: 1
  
  Indeed. The only privacy you have online...is not to be online.
the app isnt the backdoor by FudRucker · 2017-06-28 03:06 · Score: 1

the facebook administration that gives your data to their corporate overlords are the backdoor

--
Politics is Treachery, Religion is Brainwashing
1. Re:the app isnt the backdoor by Anonymous Coward · 2017-06-28 03:22 · Score: 0
  
  Pretty much exactly spelled out in their EULA in terms vague enough to allow any information transfer except the actual content of your WhatsApp message.
  https://www.whatsapp.com/legal/#privacy-policy-affiliated-companies
  "We joined the Facebook family of companies in 2014. As part of the Facebook family of companies, WhatsApp receives information from, and shares information with, this family of companies. We may use the information we receive from them, and they may use the information we share with them, to help operate, provide, improve, understand, customize, support, and market our Services and their offerings. This includes helping improve infrastructure and delivery systems, understanding how our Services or theirs are used, securing systems, and fighting spam, abuse, or infringement activities. Facebook and the other companies in the Facebook family also may use information from us to improve your experiences within their services such as making product suggestions (for example, of friends or connections, or of interesting content) and showing relevant offers and ads. However, your WhatsApp messages will not be shared onto Facebook for others to see. In fact, Facebook will not use your WhatsApp messages for any purpose other than to assist us in operating and providing our Services."
2. Re:the app isnt the backdoor by Anonymous Coward · 2017-06-28 03:42 · Score: 0
  
  It's not even a backdoor, it's an API for several agencies (and no doubt pay-for-access service to advertisers). FOI requests show full data-dumps of accounts. All those drunk messages, friend goofing around, and misguided comments you made but deleted are all present.
Even in North Korea by ThePangolino · 2017-06-28 03:16 · Score: 1

Freedom of speech is not at stake. Freedom after speech is what this impairs.

--
My ignorance is just as good as your knowledge.
China is throttling WhatsApp too by Anonymous Coward · 2017-06-28 03:57 · Score: 0

Messages on WhatsApp are delayed when in China, but send immediately in Hong Kong. Happened around since WhatsApp became encrypted. Guess China really wants everyone to use Wechat to censorship lol. Stupid commies.
Are you downloading a real or modified app? by Anonymous Coward · 2017-06-28 04:06 · Score: 2, Insightful

When WhatsApp or any other app is updated, and a seemingly small update needs several weeks to be processed by Apple or whoever, will you be downloading the app that was submitted, or one that has been modified? There's no way for you to know.
Consider those 4 weeks the time needed to modify the app before publishing it, to be able to listen in on certain targets, or why not everyone. It's not you who publish the app, you just make _an_app and submit the source code for it, and Apple, or really specifically targetted employees, then decide exactly what to publish, remember that.
As long as you haven't got control over your device, you have to consider it to be insecure, and you will _never_ have control over your iPhone or your Android phone.
truth in news reporting by Anonymous Coward · 2017-06-28 04:12 · Score: 0

This is why we should have a truth in news reporting act.
If you voluntary claim to be a new agency, then your writers and editors should be held liable and accountable to their mistakes. We should be able to trust in our news agencies to the extent that what is said, printed, or published should be admissible as testimony in court under penalty of perjury. News agencies will need to verify what they produce instead of just publishing the possible deception from one anonymous source.
The 7th page, one paragraph, print only redaction of a front page online headline from seven month ago doesn't cut it.
facepalm product by Anonymous Coward · 2017-06-28 04:34 · Score: 0

Th0r, the mighty thundergod, sayz: "hangout" and "line" are better.
Give me source. by Anonymous Coward · 2017-06-28 04:38 · Score: 0

I can probably tell if there is a backdoor for a very small value of backdoor within 60 to 80 hours. And I am no expert by any means.
Did Facebook release the source code? by hackel · 2017-06-28 05:29 · Score: 3, Insightful

Unless Facebook actually went so far as to release the source code to WhatsApp, we have NO IDEA what it contains. that's the whole point. The Guardian shouldn't have been making claims that they could not substantiate. But likewise, no one should be defending WhatsApp in this case. Anyone who relies on proprietary software for security or encryption is just asking for trouble.
What shocks me more is this... by Anonymous Coward · 2017-06-28 10:04 · Score: 0

The Guardian does narrative, not investigation. Well, I guess this proves that they should stick to dubious narrative as opposed to doing actual journalism.