The foundational promise of end-to-end encryption—that only the sender and receiver can read a message—is currently at the center of a high-profile clash between some of the world’s most powerful tech figures. Elon Musk and Telegram founder Pavel Durov have launched scathing attacks on Meta Platforms, Inc., alleging that the company’s flagship messaging app, WhatsApp, has misled billions of users about its security protocols.
The controversy follows a new class-action lawsuit claiming that Meta has maintained a “backdoor” in the app’s code, potentially allowing internal employees and third-party contractors to bypass encryption. While WhatsApp has dismissed these allegations as “absurd,” the public dispute highlights a growing tension between the industry’s marketing of “total privacy” and the technical reality of how data is accessed and managed at scale.
For users, the stakes are high. End-to-end encryption (E2EE) is designed to ensure that no one—not even the service provider—can intercept the contents of a conversation. If the allegations of a backdoor are proven true, it would represent a fundamental breach of the trust that has made WhatsApp a primary communication tool for global users, particularly those in sensitive political or professional environments.
The ‘Backdoor’ Allegations and Legal Challenges
At the heart of the current legal battle is the claim that Meta’s promotion of WhatsApp as a secure, encrypted sanctuary is a misrepresentation. The lawsuit alleges that the company’s internal staff, as well as employees from the Ireland-based consulting firm Accenture, may have the ability to access private messages without user consent.
According to the complaint, this access is facilitated through a purported mechanism in the app’s code that allows authorized parties to circumvent the encryption protections. This would imply that while the “lock” on the message exists, Meta may have kept a master key.
This is not the first time Meta has faced such accusations. In January 2026, another lawsuit surfaced claiming that the company misleadingly marketed its encryption services. Meta denied those claims at the time, labeling the litigation as “frivolous.”
Musk and Durov Join the Fray
The legal proceedings have provided a catalyst for Elon Musk and Pavel Durov to voice their skepticism of Meta’s privacy claims. Musk, the owner of X, used his platform to amplify the news of the class-action suit, questioning the reliability of the service.
Can’t trust WhatsApp
— Elon Musk (@elonmusk) Twitter
Pavel Durov, the founder of Telegram, took the criticism a step further, framing the issue not just as a security flaw, but as a systemic deception. Durov characterized WhatsApp’s approach to encryption as one of the most significant frauds in consumer history, alleging that the platform reads messages and shares them with third parties—a practice he claims Telegram has never engaged in.
WhatsApp’s “encryption” may be the biggest consumer fraud in history — deceiving billions of users. Despite its claims, it reads users’ messages and shares them with third parties. Telegram has never done this — and never will 🤝
— Pavel Durov (@durov) Twitter
WhatsApp’s Defense: The Signal Protocol
WhatsApp has responded aggressively to these claims, leaning on its technical partnership with the Signal Protocol. The Signal Protocol is widely regarded by cryptographers as the gold standard for end-to-end encryption, utilized by various secure messaging apps to ensure that keys are stored only on the users’ devices.
In a statement released via X, the platform maintained that its encryption has been robust for a decade and that the claims of a backdoor are categorically false.
The claims in this lawsuit are categorically false and absurd. WhatsApp has been end-to-end encrypted using the Signal protocol for a decade so your messages cannot be read by anyone other than the sender and recipient.
— WhatsApp (@WhatsApp) Twitter
Comparison of Privacy Claims
| Entity | Stated Position | Primary Argument |
|---|---|---|
| Secure/Encrypted | Reliance on the Signal Protocol for a decade. | |
| Elon Musk | Distrustful | Citing class-action reports of unauthorized access. |
| Pavel Durov | Fraudulent | Alleging messages are read and shared with third parties. |
| Lawsuit Plaintiffs | Misleading | Existence of a “backdoor” for employees and contractors. |
Why This Matters for Global Privacy
The debate over whether one “can’t trust WhatsApp” extends beyond the rivalry of tech billionaires. It touches on the fundamental tension between user privacy and the demands of law enforcement and corporate oversight. For years, governments have pressured encrypted platforms to provide “lawful access” to messages to combat crime, often suggesting the implementation of the very “backdoors” that this lawsuit alleges already exist.
If the court finds that Meta did indeed implement a way to bypass encryption, it would set a massive precedent. It would suggest that “end-to-end encryption” in a corporate context may be more of a marketing term than a technical absolute. Conversely, if the claims are debunked, it reinforces the validity of the Signal Protocol as a barrier against corporate surveillance.
As a former software engineer, I find the “backdoor” claim particularly poignant. In secure architecture, a backdoor is not just a feature for the company; it is a vulnerability that can be discovered and exploited by malicious actors. The existence of such a mechanism, if proven, would mean that Meta’s security is only as strong as the discretion of the employees and contractors who hold the keys.
Disclaimer: This article discusses ongoing legal proceedings. The allegations mentioned in the lawsuits have not been proven in a court of law, and Meta Platforms, Inc. Denies all claims of encryption fraud.
The next critical checkpoint in this saga will be the discovery phase of the class-action lawsuit, where internal Meta communications and code audits may be subpoenaed to determine if such a backdoor exists. Further updates will depend on the court’s decision to allow the case to proceed to trial.
Do you prioritize convenience or absolute privacy in your messaging apps? Share your thoughts in the comments below and share this story with your network.
