Lorenzo Franceschi-BicchieraiMar 26, 2024

NEW: Facebook snooped on Snapchat users' encrypted network traffic to study how they behaved, unsealed court documents reveal.

This was part of a secret program called "Project Ghostbusters," and even inside the company, it was very controversial.

“I can’t think of a good argument for why this is okay. No security person is ever comfortable with this, no matter what consent we get from the general public. The general public just doesn’t know how this stuff works,” Pedro Canahuati, Facebook's then-head of security engineering, wrote in an email.

https://techcrunch.com/2024/03/26/facebook-secret-project-snooped-snapchat-user-traffic/

Facebook snooped on users' Snapchat traffic in secret project, documents reveal | TechCrunch

A secret program called "Project Ghostbusters" saw Facebook devise a way to intercept and decrypt the encrypted network traffic of Snapchat users to study their behavior.

TechCrunch
Show threadInterpipes 💙
@lorenzofb @malwaretech so.. onavo was, what, installing a trusted root cert initiated from a *regular appstore download* and able to MITM traffic that (presumably) wasn't protected by cert pinning? And the app store which is run so expediently and so expensively to "protect consumers" or whatever horseshit Apple has come out with in pursuit of trying to keep their 30% was ok with this, was it? o_O
Mar 26, 2024 at 11:01pmWeb