Skip to main content
WhatsApp has turned on an encryption system to protect messages sent with the Android version of its app.
The WhatsApp Android application has been downloaded about 500 million times.
It said the data scrambling system should make it much harder to eavesdrop on the messages users exchange.
Tech firms have faced criticism by law enforcement figures who said greater use of encryption made it harder to track criminals and extremists.
Data scramble
The encryption system being applied to WhatsApp is called TextSecure and has been developed by a non-profit group called Open Whisper Systems.
"I do think this is the largest deployment of end-to-end encryption ever,"said TextSecure developer Moxie Marlinspike in an interview with tech news site Wired.
WhatsApp said the encryption system would be turned on by default for its huge number of Android users. In October, Facebook completed a $22bn (£14bn) acquisition of WhatsApp.
Many sites and organisations shy away from adopting these technologies because they can be technically demanding to install and administer, said Peter Eckersley, EFF technology projects director, in a statement.
"By making it easy, fast and free for websites to install encryption for their users, we will all be safer online," he said.
Let's Encrypt has been set up with the help of Mozilla, Cisco, Akamai and others and aims to launch in 2015.
Both moves could anger intelligence and law enforcement agencies, which have criticised tech firms for their greater use of encryption.
Earlier this month, GCHQ boss Robert Hannigan said US tech companies were becoming a "command and control" network for terror groups as more secure communications presented a surveillance challenge.
Cited BBC News

Comments

Post a Comment

Popular posts from this blog

HCA International fined 200k for Data loss #ITSecurity #DataSecurity #unencrypted

HCA International Ltd, private health firm are the latest to be fined by the ICO.  They have been fined £200,000 for failing to keep data secure after it was found that conversations had by IVF patients were online. Audio recordings of interviews with patients were being sent to a company unencrypted in India for transcription. The Indian company was unable to maintain secure access due to an unsecure server. By failing to ensure its subcontractor had acted responsibly, HCA International failed to comply with the seventh data protection principle. More details on the monetary penalty notice click here Supplier Risk is a huge concern for most companies - You may have all the bells and whistles when it comes to security your infrastructure but your partners may not. Failing to ensure due diligence in the Supply chain costs - with HCA it was £200,000 - next year it would of been much more!! #EUGDPR
1 comment
Read more

Time to get serious in 2015

Security professionals are faced with the on-going problem of stakeholders under-estimating the security flaws within their organisation. In most cases this is not the failing of the security team but depending on the market/vertical, teams are faced with budget constraints, redundancies, or most commonly, companies not taking responsibility that Security starts within. This means educating internal staff to take responsibility from the moment they walk into the office; I.e. The devices they bring, the doors that they open to 'guests',  the confidential conversations they have in open areas and the general ethos. Furthermore, there is the responsibility of your key suppliers and other third parties that you share information with.  You may have all the IT/Cyber security gadgets and resources you need but what are your suppliers doing with that data? Do they share the same vision for security and are they as vigilant as you? How do you measure that in an effici...
Post a Comment
Read more

2016 Cyber attacks review #Throwback #Lookout2017

2016 has been an interesting year for Cyber Crime with companies like Yahoo, LinkedIn, Lynda.com, TalkTalk (again), Ashley Maddison (being fined $1.6 million for 2015 data breach), KFC, Wells Fargo, MailChimp, AdultFriendFinder, MichaelPage; to name a few.  It's Christmas time and I don't want to be the bearer of bad news however it will get worse as the months/years go on and as companies we can only be prepared and react at our best ability. But a word to the wise; learn from others mistakes. Communication is the key here with customers and suppliers; that is internally and externally. Many bury their head in the sand but making sure you have a robust and up-to-date Incident response plan, Governance Risk and Compliance, Runbooks, Security awareness training, Solutions are being used, or needed etc.  EU GDPR will come into force by 2018 which gives another year to get the ducks in a row . Which could lead to fines of up to €20 million or 4% of global annual turnover f...
Post a Comment
Read more