A Backdoor (/Bug?) in WhatsApp

From 33C3_Public_Wiki
Jump to: navigation, search
Description I demonstrate that the WhatsApp client on Android automatically retransmits messages and encrypts them with newly announced public keys without user interaction. This makes it possible for WhatsApp to snoop on selected messages. WhatsApp is aware of this bug(?) since before April 2016 and did not fix it.
Slides https://tobi.rocks/pdf/whatsappslides.pdf
Website(s) https://tobi.rocks/2016/04/whats-app-retransmission-vulnerability/
Tags whatsapp, cryptography, security, vulnerability
Person organizing T0b0
Contact: tobias@boelter.it
Language en - English
en - English
Duration 3
Desired session Day 4
Desired timeframe begin, middle, end