Recent Legal Complaint Accuses WhatsApp of Misleading Users on End-to-End Encryption; Malware Campaigns and Cybercriminal Arrest Highlighted

28 Jan 2026

WhatsAppend-to-end encryptionMetaprivacydata securitymalwareChrome extensionEdge extensionNexShielduBlock Origin LiteModeloRatcybercrimecybercriminal arrestGeorgiaEDR bypasscorporate networksopsec failure

A recent legal complaint accuses WhatsApp of lying about its end-to-end encryption. According to the document, Meta allegedly allows its employees to access user messages through an internal tool, without external audits of the app's source code. The allegations are based on anonymous testimonies and lack concrete evidence at this stage. Meta has denied these accusations, calling them "false and absurd." Meanwhile, a malicious campaign is using a Chrome/Edge extension named NexShield, cloned from uBlock Origin Lite, to crash browsers after 60 minutes. A fake error message tricks victims into executing a clipboard-copied command, which downloads ModeloRat malware targeting corporate networks. Additionally, a cybercriminal known as r1z (Feras Albashiti, 40) was arrested in Georgia due to operational security (opsec) failures, including using a personal Gmail address for illegal activities. He sold EDR bypass tools and access to corporate networks and faces up to 10 years in prison.