Skip to content
  • Home
  • Cyber Map
  • About Us – Contact
  • Disclaimer
  • Terms and Rules
  • Privacy Policy
Cyber Web Spider Blog – News

Cyber Web Spider Blog – News

Globe Threat Map provides a real-time, interactive 3D visualization of global cyber threats. Monitor DDoS attacks, malware, and hacking attempts with geo-located arcs on a rotating globe. Stay informed with live logs and archive stats.

  • Home
  • Cyber Map
  • Cyber Security News
  • Security Week News
  • The Hacker News
  • How To?
  • Toggle search form
WhatsApp Encryption Claims Criticized by Telegram’s Durov

WhatsApp Encryption Claims Criticized by Telegram’s Durov

Posted on April 13, 2026 By CWS

Accusations of Misleading Encryption Claims

Telegram founder Pavel Durov has strongly criticized WhatsApp’s claims regarding its end-to-end encryption (E2EE), labeling them as a significant consumer deception. He argues that a considerable number of private messages remain unprotected, stored as plain-text backups on platforms like Apple iCloud and Google Drive.

Durov’s assertions, shared on April 9, 2026, highlight that about 95% of WhatsApp messages are susceptible because they are stored outside WhatsApp’s E2EE framework. This situation arises due to a gap that has been a concern for security experts and digital rights advocates.

Understanding the Encryption Loophole

The core of the problem lies in the fact that while messages are encrypted during transmission, their backups are not encrypted by default. WhatsApp provides an option for encrypted backups, but this feature requires manual activation and a strong password or a lengthy encryption key, which most users neglect to use.

Durov emphasizes the issue with WhatsApp’s E2EE structure, which ends at the device level. When users opt for cloud backups, the decrypted messages are stored on Google Drive or iCloud without E2EE unless users specifically enable the encrypted backup option.

This flaw means that entities with access to these cloud services, including Apple, Google, and potentially law enforcement, can access these messages.

Privacy Concerns and Legal Implications

Even if users enable encrypted backups, the privacy is not foolproof. If a user’s conversation partner does not enable the same encryption, the messages remain vulnerable. This inconsistency underscores the limited effectiveness of E2EE backups on a larger scale.

These concerns have led to legal actions, including a class-action lawsuit in the U.S. against Meta, claiming that WhatsApp contains a backdoor allowing access to private messages, contradicting public privacy assurances. Meta has refuted these claims but has not provided a detailed explanation of the alleged vulnerabilities.

Recommendations for Enhanced Security

The Electronic Frontier Foundation (EFF) warns against unencrypted backups due to risks from government requests and unauthorized access. They advise users to enable E2EE backups through WhatsApp settings and to use strong, unique passwords.

Security experts recommend users monitor their contacts’ backup settings and consider alternative messaging apps like Signal for sensitive communications, as it avoids cloud backups by design.

While Durov positions Telegram as a privacy-centric alternative, it’s important to note that only its ‘Secret Chats’ feature uses E2EE by default, making it an imperfect comparison.

Stay updated on cybersecurity topics by following us on Google News, LinkedIn, and X. Contact us to share your stories.

Cyber Security News Tags:cloud backups, consumer fraud, Encryption, end-to-end encryption, Meta, Pavel Durov, Privacy, Security, Telegram, WhatsApp

Post navigation

Previous Post: Critical Adobe Reader Flaw Patched After Months of Exploitation
Next Post: Windows 11 Update Disrupts Critical Reset Function

Related Posts

TrueConf Vulnerability Added to CISA’s KEV List TrueConf Vulnerability Added to CISA’s KEV List Cyber Security News
Ivanti ITSM Vulnerability Risks Admin Access Ivanti ITSM Vulnerability Risks Admin Access Cyber Security News
PoC released for W3 Total Cache Vulnerability that Exposes 1+ Million Websites to RCE Attacks PoC released for W3 Total Cache Vulnerability that Exposes 1+ Million Websites to RCE Attacks Cyber Security News
Broadcom Allegedly Breached by Clop Ransomware via E-Business Suite 0-Day Hack Broadcom Allegedly Breached by Clop Ransomware via E-Business Suite 0-Day Hack Cyber Security News
5 Actionable Tactics for SOC Analysts 5 Actionable Tactics for SOC Analysts Cyber Security News
Microsoft Disrupted Vanilla Tempest Attack by Revoking Certificates Used to Sign Fake Teams File Microsoft Disrupted Vanilla Tempest Attack by Revoking Certificates Used to Sign Fake Teams File Cyber Security News

Categories

  • Cyber Security News
  • How To?
  • Security Week News
  • The Hacker News

Recent Posts

  • July 2026 SAP Security Updates Address Critical Flaws
  • US, Allies Alert on Russian Cyber Threats to Key Infrastructure
  • UK Issues Alert on Russian Cyber Threats to Networks
  • SAP Addresses Major Security Flaws in NetWeaver and More
  • Canadian Cybersecurity Leaders Shine at Web Summit Vancouver

Pages

  • About Us – Contact
  • Disclaimer
  • Privacy Policy
  • Terms and Rules

Archives

  • July 2026
  • June 2026
  • May 2026
  • April 2026
  • March 2026
  • February 2026
  • January 2026
  • December 2025
  • November 2025
  • October 2025
  • September 2025
  • August 2025
  • July 2025
  • June 2025
  • May 2025

Recent Posts

  • July 2026 SAP Security Updates Address Critical Flaws
  • US, Allies Alert on Russian Cyber Threats to Key Infrastructure
  • UK Issues Alert on Russian Cyber Threats to Networks
  • SAP Addresses Major Security Flaws in NetWeaver and More
  • Canadian Cybersecurity Leaders Shine at Web Summit Vancouver

Pages

  • About Us – Contact
  • Disclaimer
  • Privacy Policy
  • Terms and Rules

Categories

  • Cyber Security News
  • How To?
  • Security Week News
  • The Hacker News

Copyright © 2026 Cyber Web Spider Blog – News.

Powered by PressBook Masonry Dark