Dan GillmorMar 27, 2024

Well, this is a transcendent level of evil: Facebook bought a VPN company and deployed it, in part, to spy on its competitor's users.

https://techcrunch.com/2024/03/26/facebook-secret-project-snooped-snapchat-user-traffic/

It's a reminder that VPNs have their own risks, beyond technical ones if operated incompetently -- namely, that you have to trust the VPN company itself.

UPDATED to reflect which users were being spied on.

Facebook snooped on users' Snapchat traffic in secret project, documents reveal | TechCrunch

A secret program called "Project Ghostbusters" saw Facebook devise a way to intercept and decrypt the encrypted network traffic of Snapchat users to study their behavior.

TechCrunch
Show threadcharlagMar 27, 2024
@dangillmor it seems liks the article is inaccurate, the traffic between the app and Snapchat is servers is still encrypted with TLS, whether it goes over (additional) encrypted VPN tunnel or not, unless I'm missing some detail somewhere
Show threadArtemesia

@charlag @dangillmor

Yeah, it doesn't make sense to me either, unless snapchat is downloading encryption keys dynamically? Then you can MITM the key download, give the snapchat app your key, while storing the snapchat server key for your middleman use. Then the app sends you traffic encrypted with your key, your MITM server decrypts it to plaintext, makes a copy for "research", then re-encryps the plaintext with the snapchat-supplied key and sends it off to snapchat.

Mar 27, 2024 at 4:16pmWeb