Close Menu
TechBrunchTechBrunch
  • Home
  • AI
  • Apps
  • Crypto
  • Security
  • Startups
  • TechCrunch
  • Venture

Subscribe to Updates

Subscribe to our newsletter and never miss our latest news

Subscribe my Newsletter for New Posts & tips Let's stay updated!

What's Hot

Why European founders are winning (and that's not about less work)

September 17, 2025

How Algore, Lila Preston and the world's energy economics have been reversed

September 17, 2025

Jaguar Land Rover suspends production for third week due to cyber attack

September 17, 2025
Facebook X (Twitter) Instagram
TechBrunchTechBrunch
  • Home
  • AI

    OpenAI seeks to extend human lifespans with the help of longevity startups

    January 17, 2025

    Farewell to the $200 million woolly mammoth and TikTok

    January 17, 2025

    Nord Security founder launches Nexos.ai to help enterprises move AI projects from pilot to production

    January 17, 2025

    Data proves it remains difficult for startups to raise capital, even though VCs invested $75 billion in the fourth quarter

    January 16, 2025

    Apple suspends AI notification summaries for news after generating false alerts

    January 16, 2025
  • Apps

    Google brings Pixel 6 and new devices to Material3 Expressive, along with other features, to the Pixel 6 and new devices

    September 3, 2025

    Google's NoteBookLM now allows you to customize the tone of your AI podcasts

    September 3, 2025

    Roblox expands the use of age estimation techniques and introduces standardized assessments

    September 3, 2025

    Instagram finally launches the iPad app

    September 3, 2025

    Complete the 2025 Confusion Builder Stage Agenda with the Maximum Scaling Voice

    September 3, 2025
  • Crypto

    PayPal will add a new one-to-one payment link to support Crypto soon

    September 15, 2025

    10 additional exhibition tables open and open in 2025

    September 15, 2025

    Stripe will showcase who WHO including Humanity, Openai and Paradigm to build a new blockchain

    September 4, 2025

    Coinbase CEO explains why he fired an engineer who didn't try AI right away

    August 22, 2025

    Your next customer is destroying the 2025 Expo floor

    August 19, 2025
  • Security

    Jaguar Land Rover suspends production for third week due to cyber attack

    September 17, 2025

    Insight Partners at VC Company say thousands of staff and limited partners have stolen personal data in ransomware attacks

    September 17, 2025

    Samsung Patch Zero Day Security Flaws are used to hack into customer's mobile phones

    September 16, 2025

    Gucci, Balenciaga and other brands own companies checking hacks

    September 15, 2025

    Israel announces $1.5 million seizure from crypto wallet linked to Iran

    September 15, 2025
  • Startups

    7 days left: Founders and VCs save over $300 on all stage passes

    March 24, 2025

    AI chip startup Furiosaai reportedly rejecting $800 million acquisition offer from Meta

    March 24, 2025

    20 Hottest Open Source Startups of 2024

    March 22, 2025

    Andrill may build a weapons factory in the UK

    March 21, 2025

    Startup Weekly: Wiz bets paid off at M&A Rich Week

    March 21, 2025
  • TechCrunch

    OpenSea takes a long-term view with a focus on UX despite NFT sales remaining low

    February 8, 2024

    AI will save software companies' growth dreams

    February 8, 2024

    B2B and B2C are not about who buys, but how you sell

    February 5, 2024

    It's time for venture capital to break away from fast fashion

    February 3, 2024

    a16z's Chris Dixon believes it's time to focus on blockchain use cases rather than speculation

    February 2, 2024
  • Venture

    Why European founders are winning (and that's not about less work)

    September 17, 2025

    How Algore, Lila Preston and the world's energy economics have been reversed

    September 17, 2025

    Jason Citron, founder of Discord, is back to disrupt 2025

    September 17, 2025

    The CEO of Lovable, one of the fastest growing startups in history, has been on the way in 2025.

    September 17, 2025

    Jack Altman raised $275 million in new early stage funds just a week

    September 16, 2025
TechBrunchTechBrunch

Signal CEO warns EU lawmakers to stop messing around with online security

TechBrunchBy TechBrunchJune 17, 20245 Mins Read
Facebook Twitter Pinterest Telegram LinkedIn Tumblr WhatsApp Email
Share
Facebook Twitter LinkedIn Pinterest Telegram Email


A controversial European Union legislative proposal to scan citizens' private messages for child sexual abuse material (CSAM) is a risk to the future of web security, warned Meredith Whittaker, head of the non-profit foundation that runs the end-to-end encrypted (E2EE) messaging app Signal, in a public blog post on Monday.

“Implementing such proposals in the context of end-to-end encrypted communications would be impossible without fundamentally undermining encryption and creating dangerous vulnerabilities in core infrastructure with global implications far beyond Europe,” she wrote.

The European Commission tabled its initial proposal for mass scanning of private messaging apps to combat the spread of CSAM online in May 2022. MEPs have since unitedly rejected the approach, and last fall proposed an alternative that would exempt E2EE apps from scanning. But the European Council, the legislative body made up of representatives of member states' governments, continues to push for strongly encrypted platforms to remain subject to the scanning law.

The latest council proposal, submitted in May during the Belgian presidency, includes a requirement that “providers of interpersonal communication services, also known as messaging apps,” install and operate what the draft text describes as “technology for upload management,” according to documents published by Netzpolitik.

Article 10a, which sets out the upload control plan, says the technologies are expected to “detect the dissemination of known and new child sexual abuse material before it is transmitted.”

Last month, Euraactive reported that the proposed changes would require users of E2EE messaging apps to consent to being scanned for CSAM. Users who don't consent would reportedly be prevented from using any features that involve sending visual content or URLs, effectively downgrading their messaging experience to basic text and voice.

Whittaker's statement criticized the council's plan as an attempt to use “rhetorical tactics” to rebrand client-side scanning, a controversial technology that security and privacy experts say is at odds with the strong encryption that underpins sensitive communications.

“[M]”Bulk scanning of private communications fundamentally weakens encryption. It's a no-no,” she stressed. “This can happen, for example, whether that's done by tampering with the random number generation in the encryption algorithm, by implementing key escrow systems, or by running communications through a monitoring system before encrypting them.”

“You can call it a backdoor, a frontdoor, or even 'upload moderation,' but whatever you call it, all of these approaches create vulnerabilities that hackers and hostile nation states can exploit, taking away the unbreakable protections of mathematics and creating high-value vulnerabilities instead.”

Patrick Breyer, a member of the MEP from the Pirate Party, who has been an early opponent of the European Commission's controversial message scanning plans, also slammed the revised Commission proposal in a statement last month, warning: “The Belgian proposal means that the essence of the European Commission's extreme and unprecedented original chat moderation proposals will remain in place. In the 21st century, using messenger services purely for sending text messages is not an option.”

The EU's own data regulator has also expressed concerns, warning last year that the plans pose a direct threat to democratic values ​​in free and open societies.

Meanwhile, it is likely that it will be law enforcement agencies that pressure governments to force E2EE apps to scan private messages.

In April, Europol chiefs issued a joint statement calling for platforms to design security systems that could identify illegal activity and send reports on message content to law enforcement. The statement, which called for “technical solutions” to ensure “lawful access” to encrypted data, did not specify how platforms should achieve this subtlety. But as we reported at the time, the lobbying had called for some form of client-side scanning. So it seems no coincidence that the Council published its “upload moderation” proposals just a few weeks later.

The draft bill contains several statements that attempt to put a fig leaf over the huge security and privacy black hole that “upload moderation” represents, such as the statement that “without prejudice to Article 10a, this Regulation does not prohibit or make impossible end-to-end encryption,” the assertion that service providers are not required to decrypt or provide access to E2EE data, a clause that says service providers should not introduce cybersecurity risks “for which they are unable to take effective measures to mitigate them,” and a statement that service providers should not be able to “infer the true nature of the content of communications.”

“These are all good points, but this proposal creates a self-negating paradox,” Whitaker told TechCrunch when asked for her reaction to these conditions. “Because what's being proposed – incorporating mandatory scanning into end-to-end encrypted communications – weakens the encryption and creates significant vulnerabilities.”

She contacted the European Commission and the Belgian Presidency of the Council for a response to her concerns, but had not received a response from either at the time of writing.

It remains to be seen what conclusion the EU will ultimately reach on CSAM scanning, as EU legislation is typically done in tripartite consultations. If the Council agrees to a position, so-called tripartite consultations between the Parliament and the European Commission will begin to explore a final compromise. However, it is also worth noting that the composition of Parliament has changed since MEPs agreed to a negotiating mandate last year following the recent EU elections.



Source link

Share. Facebook Twitter Pinterest LinkedIn Tumblr Email

Related Posts

Jaguar Land Rover suspends production for third week due to cyber attack

September 17, 2025

Insight Partners at VC Company say thousands of staff and limited partners have stolen personal data in ransomware attacks

September 17, 2025

Samsung Patch Zero Day Security Flaws are used to hack into customer's mobile phones

September 16, 2025

Gucci, Balenciaga and other brands own companies checking hacks

September 15, 2025

Israel announces $1.5 million seizure from crypto wallet linked to Iran

September 15, 2025

This is Tech Powering that drives the crackdown on Ice's deportation.

September 13, 2025

Leave A Reply Cancel Reply

Top Reviews
Editors Picks

7 days left: Founders and VCs save over $300 on all stage passes

March 24, 2025

AI chip startup Furiosaai reportedly rejecting $800 million acquisition offer from Meta

March 24, 2025

20 Hottest Open Source Startups of 2024

March 22, 2025

Andrill may build a weapons factory in the UK

March 21, 2025
About Us
About Us

Welcome to Tech Brunch, your go-to destination for cutting-edge insights, news, and analysis in the fields of Artificial Intelligence (AI), Cryptocurrency, Technology, and Startups. At Tech Brunch, we are passionate about exploring the latest trends, innovations, and developments shaping the future of these dynamic industries.

Our Picks

Why European founders are winning (and that's not about less work)

September 17, 2025

How Algore, Lila Preston and the world's energy economics have been reversed

September 17, 2025

Jaguar Land Rover suspends production for third week due to cyber attack

September 17, 2025

Subscribe to Updates

Subscribe to our newsletter and never miss our latest news

Subscribe my Newsletter for New Posts & tips Let's stay updated!

© 2025 TechBrunch. Designed by TechBrunch.
  • Home
  • About Tech Brunch
  • Advertise with Tech Brunch
  • Contact us
  • DMCA Notice
  • Privacy Policy
  • Terms of Use

Type above and press Enter to search. Press Esc to cancel.