Unpatched "Design Flaw" in E2E encryption can track everything you do

End to end encrypted messaging apps, such as WhatsApp and Signal, have a shocking, high severity unpatched side channel vulnerability, that can be exploited by any government, intelligence agency, law enforcement agency, and even private company or individual person, the ability to build a complete profile on you, including what devices you use, how long you use them for, who you're communicating with, your daily sleeping habits, working habits, when you physically move, when you're at home, when your on Wi-Fi vs cellular data, the exact times and durations of when you make phone calls, and so much more, without knowing anything other than your phone number. Whether you're a pen tester, security researcher, or cyber security expert, I hope you'll find this attack as fascinating as I did. JOIN THE DISCORD! 👉   / discord   Official Source: https://arxiv.org/pdf/2411.11194 0:00 – Overview 1:53 - End-to-end encryption background 3:21 – Multi-device support 6:31 – Message delivery & receipts 8:03 – Attack vector 10:42 – Timing side-channel 11:35 – Video demo 12:23 – Severe information leaks 15:57 – Solutions and implications 17:36– Can you do anything yourself? 18:18 - Very interesting personal finding + demo MUSIC CREDITS: LEMMiNO - Cipher    • LEMMiNO - Cipher (BGM)   CC BY-SA 4.0 LEMMiNO - Firecracker    • LEMMiNO - Firecracker (BGM)   CC BY-SA 4.0 LEMMiNO - Nocturnal    • LEMMiNO - Nocturnal (BGM)   CC BY-SA 4.0 LEMMiNO - Siberian    • LEMMiNO - Siberian (BGM)   CC BY-SA 4.0 LEMMiNO - Encounters    • LEMMiNO - Encounters (BGM)   CC BY-SA 4.0 #programming #software #softwareengineering #computerscience #code #softwaredevelopment #hacking #exploit #vulnerability #pentesting #privacy #spyware #malware #cyber #cyberattack #security #cybersecurity #bug #bugbounty #pentesting #backdoor #hacked #mobile #android #androidbug #sidechannel #unpatched #iosbug #ios #iphone #iphonevulnerable #signal #signalapp #whatsapp #whatsappexploit #phonetracking