Wednesday 4 May 2016

E2E Encryption Could Make WhatsApp a Spam Magnet

 WhatsApp has rolled out end-to-end encryption for its users to protect their privacy, but the move could make the service more attractive to spammers, too.


While encryption can safeguard information from data thieves, it also can block data protectors from detecting malicious activity on their networks.

Over the last three to four years, mobile carriers have made it harder for spammers to deliver their junk messages. That's prodded them to look for greener pastures.

Not only does it cost spammers less to spew their rubbish on WhatsApp, but it's easier to find targets there.

WhatsApp is a very friendly service to spammers because it allows them to validate phone numbers to see if they have a WhatsApp account, so they can upload large number ranges to test who has a WhatsApp account and just send bulk messages to them.

Because end-to-end encryption prevents protection systems from seeing what's in a spam message, they can't guard against malicious activity like phishing, account hijacking, spam and malware.

It's simple economics. As certain channels get closed off to these spammers, they're finding other ways to reach their targets. They only make money if they get their messages through and they get a reasonable conversion rate.