The Guardian Backtracks On WhatsApp 'Backdoor' Report

Five months after The Guardian published an investigative report, in which it found a "backdoor" in the Facebook-owned service, the publication is finally making amendments. The January report immediately stirred controversy among security experts, who began questioning The Guardian's piece. Weeks later, Zeynep Tufekci, a researcher and op-ed writer for the New York Times, published an open letter with over 70 major security researchers working at major universities and companies like Google condemning the story, and asking the publication to retract it.. Paul Chadwick, The Guardian's reader's editor, said "The Guardian was wrong to report last January that the popular messaging service WhatsApp had a security flaw so serious that it was a huge threat to freedom of speech." From his article: In a detailed review I found that misinterpretations, mistakes and misunderstandings happened at several stages of the reporting and editing process. Cumulatively they produced an article that overstated its case. The Guardian ought to have responded more effectively to the strong criticism the article generated from well-credentialled experts in the arcane field of developing and adapting end-to-end encryption for a large-scale messaging service. The original article -- now amended and associated with the conclusions of this review -- led to follow-up coverage, some of which sustained the wrong impression given at the outset. The most serious inaccuracy was a claim that WhatsApp had a "backdoor", an intentional, secret way for third parties to read supposedly private messages. This claim was withdrawn within eight hours of initial publication online, but withdrawn incompletely. The story retained material predicated on the existence of a backdoor, including strongly expressed concerns about threats to freedom, betrayal of trust and benefits for governments which surveil. In effect, having dialled back the cause for alarm, the Guardian failed to dial back expressions of alarm.

still be an idiot to use facebook shite

you would still be an idiot for using a facebook product.

Re: still be an idiot to use facebook shite

[epyT-R]

..and how do you know that for sure?

Re: still be an idiot to use facebook shite

You're still just taking whatsapp's word for it.

Re: still be an idiot to use facebook shite

That Whatsapp is "fully encrypted" is an unsubstantiated claim. Fully encrypted would mean end-to-end encrypted, which they don't even pretend it is. TFA admits that

Facebook’s servers are a black box. It is not possible for outsiders to verify exactly what happens when messages pass through Facebook’s servers on their way to and from WhatsApp users. Trust is required. Given Facebook’s record, steady scrutiny is the right stance.

How do you scrutinize a black box? You can't. This wouldn't be a problem if the messages were encrypted properly (by an open algorithm, in a way that only the recipient can decrypt them) when they reach the server, but they aren't.

has none of the [] social nonsense of facebook

Uh... Whatsapp is Facebook.

Re: still be an idiot to use facebook shite

[vakuona]

Except that Whatsapp actually say they use end-to-end encryption. I know this, because I have Whatsapp, and the first time I exchange messages with anyone, it says that.

Re: still be an idiot to use facebook shite

[cyber-vandal]

Email is of course well known to be secure by default

Media trust.

I don't want to make this a right v left thing but I want to genuinely ask how we can trust the media. CNN and The NY Times have both had huge retractions recently and now this.

The real issue as I see it is that it's not a fog of war issue where mistakes happen, it's all driven by a business requirement for more viewers or visitors. Everyone wants a salatious headline to keep eyeballs. How do we get to a place where the media just presents the dry, boring and honest truth?

Re:Media trust.

Look to those who offer retractions and publish information on their mistakes rather than blindly pressing ahead in the face of contradictory facts.

Re:Media trust.

Exactly. I don't condemn anyone for admitting a mistake. I'm suspicious of anyone who will never admit to a mistake.

Re:Media trust.

[__aaclcg7560]

Reinstatement of the Fairness Doctrine?
https://en.wikipedia.org/wiki/Fairness_Doctrine

The Fairness Doctrine was a policy of the United States Federal Communications Commission (FCC), introduced in 1949, that required the holders of broadcast licenses both to present controversial issues of public importance and to do so in a manner that was — in the Commission's view — honest, equitable, and balanced. The FCC, which was believed to have been under pressure from then President Ronald Reagan, eliminated the Doctrine in 1987. The FCC formally removed the language that implemented the Doctrine, in August 2011.

Re:Media trust.

[AmiMoJo]

The difference between fake news and these guys is that they publish corrections.

People deride Breitbart etc. because they don't own up to their mistakes and correct/retract them.

Re: Media trust.

You can't trust any media these days, whether private company, state owned, individual blogger, etc. You really have to read them all and make an informed decision on what the truth really is. It's much tougher than just reading and believing every twatter or fakebook link, but there are still some of us out there who can think.

Of all the news sources, my first goto is still the BBC, but if I have time to check multiple sources, I do so, because even the BBC has biases.

CNN is absolute trash. Just panders to the "for the children" crowd with stories of child abduction or feel good shit masquerading as news. The New York Times is a wannabe intellectual rag. It tries using big words to sound smart but all it does is cover up the fact the articles are devoid of content. And usually the articles are social justice bullshit or feel good stories about some minority anyway.

Re: Media trust.

[SirSlud]

This is a dumb thing to say on an article about a newspaper making corrections. If anything, there are no institutions more transparent and beholden to scrutiny than the press. I mean, if you probably shouldn't trust anything you read, if you can't figure that out, if only because you're a poor judge of information .

Re: Media trust.

What about people who only admit mistakes when caught?

Because that's who you are defending. They aren't sorry about the lies (they keep printing them). They're sorry the lies were so blatant as to be obvious.

Re:Media trust.

[Carewolf]

Trust the media that retracts stories when they rarely are wrong, and do not trust the media that never retracts stories because they are wrong every day on purpose. It is not difficult.

This increases my trust in the Guardian.

Re:Media trust.

[cavreader]

It doesn't matter if they own up to their mistakes after the damage is already done. How many months did it take Guardian to fully correct their original incompetence?

Re:Media trust.

[AmiMoJo]

What do you propose instead? No-one publish any news just in case it turns out to be incorrect? One mistake and burn the whole organization to the ground?

Re:Media trust.

[vakuona]

Maybe they should allow the person they are accusing a fair hearing before they publish. Their research could have been proven to be hopelessly wrong, and they would have avoided publishing the fake news.

Re:Media trust.

[AmiMoJo]

How do you have a fair hearing without publishing the accusation? Courts are public.

Cover up!

All these closed source messaging programs have backdoors (especially anything by facebook). That should be obvious by now. The guardian just received a nasty letter from the spies in the government to keep its mouth shut, an offer they can't refuse. The entire industry has a gun to its head and is being ordered to discredit the truth. The 'retraction' is a lie. The backdoors do exist.

Re:Cover up!

[wyHunter]

Indeed. The only privacy you have online...is not to be online.

the app isnt the backdoor

[FudRucker]

the facebook administration that gives your data to their corporate overlords are the backdoor

Even in North Korea

[ThePangolino]

Freedom of speech is not at stake. Freedom after speech is what this impairs.

Are you downloading a real or modified app?

When WhatsApp or any other app is updated, and a seemingly small update needs several weeks to be processed by Apple or whoever, will you be downloading the app that was submitted, or one that has been modified? There's no way for you to know.

Consider those 4 weeks the time needed to modify the app before publishing it, to be able to listen in on certain targets, or why not everyone. It's not you who publish the app, you just make _an_app and submit the source code for it, and Apple, or really specifically targetted employees, then decide exactly what to publish, remember that.

As long as you haven't got control over your device, you have to consider it to be insecure, and you will _never_ have control over your iPhone or your Android phone.

Did Facebook release the source code?

[hackel]

Unless Facebook actually went so far as to release the source code to WhatsApp, we have NO IDEA what it contains. that's the whole point. The Guardian shouldn't have been making claims that they could not substantiate. But likewise, no one should be defending WhatsApp in this case. Anyone who relies on proprietary software for security or encryption is just asking for trouble.