Facebook Messenger Is Not End-to-End Encrypted by Default

Jason Koebler and Anna Merlan, reporting for Motherboard:

A 17-year-old girl and her mother have been charged with a series of felonies and misdemeanors after an apparent medication abortion at home in Nebraska. The state’s case relies on evidence from the teenager’s private Facebook messages, obtained directly from Facebook by court order, which show the mother and daughter allegedly bought medication to induce abortion online, and then disposed of the body of the fetus.

Facebook Messenger is an edge case when it comes to end-to-end encryption. It supports E2EE, but it’s not enabled by default, and has to be enabled on a contact-by-contact basis.

No one should trust a messaging service that isn’t exclusively end-to-end encrypted. And Apple should close the iCloud Backup loophole for iMessage data.

Tuesday, 9 August 2022