so they claim… not that fb has ever given us a reason to trust them.
Since the forward is instantaneous and not involve a reupload, it looks to me the files are cached on the servers. If the recipient can see thee files and they are encrypted, it means that the server itself encrypted it using their public cryptographic key. If the server can do that, it means it either: - can decrypt your own files - cache them unencrypted
Correct me if I am wrong.
It is easy to test by sending a large video recording over a crappy connection, then forwarding it to another recipient. First upload can literally take a minute or more, the second action is immediate.
You encrypt and upload the media to the storage server.
You share the download URL and key with person #1
Now how long would it take to forward that same message with the url and key to person #2...n?
https://theintercept.com/2020/03/31/zoom-meeting-encryption/
https://newatlas.com/computers/facebook-not-secretly-listeni...
And this:
https://www.pcmag.com/news/facebook-app-caught-activating-ph...
And this:
https://www.wired.com/story/whatsapp-facebook-data-share-not...
And of course this:
https://www.propublica.org/article/how-facebook-undermines-p...
>WhatsApp reviewers gain access to private content when users hit the “report” button on the app, identifying a message as allegedly violating the platform’s terms of service. This forwards five messages — the allegedly offending one along with the four previous ones in the exchange ...
This may not have much to do with the more specific abuse case of criminal financial conspiracies.
