Jeff LarsonMar 27, 2024

Look, I went over the Snowden documents as a journalist, but I never saw anything that shocked me quite like this story of Meta buying a VPN company for "security" but then spying on users of competitive apps by decrypting the traffic.

This is a real SSL added and removed here :) moment.

Seriously, like wow: https://techcrunch.com/2024/03/26/facebook-secret-project-snooped-snapchat-user-traffic/

Court document: https://storage.courtlistener.com/recap/gov.uscourts.cand.369872/gov.uscourts.cand.369872.735.0.pdf

Facebook snooped on users' Snapchat traffic in secret project, documents reveal | TechCrunch

A secret program called "Project Ghostbusters" saw Facebook devise a way to intercept and decrypt the encrypted network traffic of Snapchat users to study their behavior.

TechCrunch
Show threadAllan ChowMar 27, 2024
@seriouslyjeff guh I really hope cloudflare isn't doing this shit
Show threadJeff LarsonMar 27, 2024
@grumpasaurus me too. But if im reading it correctly this requires a “kit” that has access to add a fake cert into the app and then the trust store. For like “advertising” reasons.
Show threadbutternutMar 27, 2024
@seriouslyjeff @grumpasaurus many organizations terminate their SSL at cloudflare. So cloudflare sees a lot of cleartext traffic without the need to install / have users trust fake certs.
Show threadAllan Chow
@butternut @seriouslyjeff yeah it's how their waf and other Goodies work
Mar 27, 2024 at 12:32pmWeb
Show threadJeff LarsonMar 27, 2024
@grumpasaurus @butternut oh right good point!