Telegram Founder Criticizes WhatsApp Security Amid Legal Battle Over Encryption Claims

Meta Platforms, Inc.'s widely used messaging service, WhatsApp, has come under renewed scrutiny following strong public criticism from Pavel Durov, founder of rival messaging service Telegram, and emerging legal and security challenges. On Monday, Durov issued a pointed statement on social media platform X, characterizing WhatsApp’s security as fundamentally compromised. His comments specifically targeted the app's encryption claims, asserting that anyone believing WhatsApp will maintain true security by 2026 would be "braindead." Durov’s contention rests on his team's recent analysis of WhatsApp’s encryption protocols, which he claims uncovered multiple vulnerabilities capable of being exploited through different attack vectors. These assertions echo his prior public stance—he revealed in 2022 that he had deleted WhatsApp years earlier, citing concerns that hackers could easily infiltrate devices used by WhatsApp users. Compounding the scrutiny, Meta faces a lawsuit initiated by an international group of plaintiffs in the U.S. District Court for the Northern District of California in San Francisco. This legal action alleges that Meta, led by CEO Mark Zuckerberg, made deceptive assertions regarding WhatsApp’s privacy. The plaintiffs argue that while Meta markets WhatsApp as offering full end-to-end encryption, the company allegedly retains the capability to store, analyze, and access the vast majority of communications that WhatsApp users believe to be private. In response to these legal accusations, a Meta spokesperson dismissed the case as "frivolous," denying any wrongdoing in the company’s handling or communication of WhatsApp’s privacy features. As of this reporting, Meta has not provided a further comment when approached for additional statements. Adding to WhatsApp’s security concerns, Google’s Project Zero—a specialized team within Alphabet Inc.—identified a critical vulnerability affecting the WhatsApp application on Android devices. The flaw reportedly enables attackers to launch a targeted assault via files that are automatically downloaded by the app, even within group chats. Malicious media files can exploit this automatic download function, potentially compromising an affected user’s device. Details reveal that this vulnerability was confidentially reported to Meta in September of the previous year. However, due to an absence of timely remediation, Project Zero made the information public in November. Although Meta began developing a fix by December, follow-up updates on the vulnerability’s resolution status remain unavailable. Stock market activity reflects some positive investor reception despite these controversies. Meta’s shares rose by approximately 2.06% during regular trading hours on Monday, with a modest after-hours gain of 0.14%. According to Benzinga Pro data and ratings, Meta demonstrates improved short-term price trend strength but continues to show negative momentum in medium- and long-term categories, indicating investor caution amid ongoing uncertainties. Investors and market watchers anticipate Meta’s fourth-quarter financial report, scheduled for release shortly after the market closes on Wednesday. This report will provide further data on the company’s financial health amid the unfolding legal and cybersecurity issues encountered by WhatsApp. In conclusion, WhatsApp’s security and privacy claims currently face significant challenges from both industry rivals and plaintiffs in the legal system. The emergence of a critical Android vulnerability coupled with sharp critiques from figures like Pavel Durov brings attention to the scrutiny of messaging applications’ encryption assurances and user safety in an evolving digital communication landscape.