Some key excerpts:
Court filings unsealed last week allege Meta created an internal effort to spy on Snapchat in a secret initiative called “Project Ghostbusters.” Meta did so through Onavo, a Virtual Private Network (VPN) service the company offered between 2016 and 2019 that, ultimately, wasn’t private at all.
It’s Meta’s in-house wiretapping tool to spy on data analytics from Snapchat starting in 2016, later used on YouTube and Amazon. This involved creating “kits” that can be installed on iOS and Android devices, to intercept traffic for certain apps, according to the filings. This was described as a “man-in-the-middle” approach to get data on Facebook’s rivals, but users of Onavo were the “men in the middle.”
Facebook ultimately shut down Onavo in 2019 after Apple booted the VPN from its app store.
Prosecutors also allege that Facebook violated the United States Wiretap Act, which prohibits the intentional procurement of another person’s electronic communications. Onavo could also be considered straight spyware, but also seems to fall under the definition of wiretapping, according to prosecutors.
The court filings show chats and emails that depict Zuckerberg as being directly involved in these communications.
Prosecutors allege Project Ghostbusters harmed competition in the ad industry, adding weight to their central argument that Meta is a monopoly in social media.
Isn’t Snapchat terrible at security? Heard of someone who made a plane bombing joke in a private message and the airport wifi intercepted it and he got arrested
Id be surprised if there wasn’t basic encryption to prevent a man in the middle attack like you described.
In the article the talk about needing to install certs to read encrypted traffic from the app.