WhatsApp Security Concerns Heightened by Elon Musk’s Remarks

WhatsApp security has come under scrutiny as Elon Musk recently shared on X (formerly Twitter) that WhatsApp is not secure. He questions the reliability of Signal as well, urging users to utilize X chat instead.

This statement follows a significant legal situation for WhatsApp, the global messaging powerhouse, which is currently embroiled in a lawsuit in a US district court.

According to a Bloomberg report, the lawsuit has been brought forth by users from various nations, including Australia, Mexico, and South Africa. They assert that the platform lacks adequate security measures and that Meta employees can easily access private communications.

Claims About Security Breaches in WhatsApp

The core of the lawsuit relies on testimonies from unnamed whistleblowers who allege that Meta’s internal systems permit staff to circumvent encryption through a straightforward internal request procedure.

The 51-page complaint states that Meta employees can allegedly bypass encryption by submitting a “task” within the company’s systems. When an engineer approves this request, they gain access to a special widget that allows them to monitor a user’s messages in real-time, utilising the user’s unique User ID.

Allegations of Extensive Access

The plaintiffs further claim that this access is “unlimited in temporal scope,” implying that employees could explore a complete message history of users, including those communications the users believe they have erased.

However, the lawsuit has yet to furnish any technical proof to bolster these dramatic assertions. Traditionally, WhatsApp has held that encryption keys are solely stored on the devices of the sender and recipient, rendering it mathematically impossible for the company to decrypt and peruse messages while they are being transmitted.

Meta’s Response to WhatsApp Security Allegations

Meta has firmly rejected these claims. A spokesperson for the firm informed PCMag that the allegations are “false and absurd,” emphasising that WhatsApp has maintained end-to-end encryption through the Signal protocol for over ten years. They describe the lawsuit as a frivolous work of fiction and intend to pursue sanctions against the plaintiffs’ legal representatives.

Previous Privacy Controversies Involving WhatsApp

This isn’t the first occasion that WhatsApp’s privacy measures have been called into question. In 2021, reports indicated that the platform could view messages flagged for abuse by users, which stirred debate regarding the “metadata” the company collects, like location and contact activities that remain unencrypted.

Telegram’s CEO, Pavel Durov, also communicated on X, asserting that it would be naive to believe in WhatsApp’s security in 2026.

He remarked that after scrutinising the “encryption” implemented by WhatsApp, they discovered numerous vulnerabilities.

Legal Challenges for WhatsApp

The existing lawsuit also follows a distinct legal dispute involving WhatsApp’s previous security chief, Attaullah Baig. He claimed retaliation after he attempted to address systemic cybersecurity issues within the organisation.