this post was submitted on 09 Jul 2023
1149 points (96.7% liked)

Technology

57432 readers
4465 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots

founded 1 year ago
MODERATORS
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
1149
Facebook turns over mother and daughter’s chat history to police resulting in abortion charges (www.theverge.com)
submitted 1 year ago by [email protected] to c/[email protected]
171 comments fedilink hide all child comments
 

cross-posted from: https://lemmy.ml/post/1874605

A 17-year-old from Nebraska and her mother are facing criminal charges including performing an illegal abortion and concealing a dead body after police obtained the pair’s private chat history from Facebook, court documents published by Motherboard show.

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 8 points 1 year ago (2 children)

Can't you just look at the data in. The database though? No need to login as the user. Surely not every field is hashed

[–] [email protected] 17 points 1 year ago* (last edited 1 year ago)

Hashing is not reversible so obviously it is not hashed. You hash data you want to compare later to see if it is still the same. For example you may hash user passwords you store in your database. So you don’t know the actual password, but can confirm later that the same password is still being used. You know or can infer someone is storing your passwords in plaintext when they have a maximum length as that indicates they are not correctly hashing.

It is however possible and even easy in many databases to do row or document level encryption. Many privacy first applications do client side keys and encryption so the database does in fact have no plain text in it.

[–] [email protected] 4 points 1 year ago (2 children)

That's a good point and I don't know the answer to that (my guess is encryption is involved), but as other people have pointed out, Facebook has an alternate encrypted messaging service, WhatsApp, so Facebook is clearly capable of not being able to access its users' messages.

[–] [email protected] 6 points 1 year ago* (last edited 1 year ago)

Yeah, based on Signal's protocol. Signal is the only messaging app I use.

[–] [email protected] 2 points 1 year ago

Wasn't there strong evidence Facebook has a built-in backdoor to their encryption?