It’s weird that the notification backdoor never gets talked about, but your Whatsapp messages are decrypted in plain sight when the text content is shipped through the notification services. This is mentioned always for Signal but Whatsapp always gets a pass even though it’s a way more malicious company and indeed probably using that hole to profile/track it’s users.
The only response is “oh no Whatsapp cant leak anything the security model of how chat messages are backed up is a-okay!”
WhatsApp bothers me incessantly about backing up my messages, and from a quick search online it seems like these backups are not E2E encrypted unless you go into settings and explicitly make them so, which I doubt most people do. And if they are encrypted, I would have a lot of questions about how secure those keys are and where they're stored and if they're using password managers from other tech companies, which of those companies have had NSLs requiring them to backdoor said password managers
Signal got called out for it because it actually happened to a user with the police. Of course it affects all apps. It's also local, so irrelevant to the discussion of networked/encryption hacks someone alleged above.
My point is that we simply don’t know what the police mean by “broke encryption”. It could be they are able Mitm the notifications server not that they’ve broken the whatsapp double ratchet.
The only response is “oh no Whatsapp cant leak anything the security model of how chat messages are backed up is a-okay!”