Assume Clubhouse Conversations Are Being Recorded, Researchers Warn

2021-02-22 19:40

At nearly a year old, the invitation-only, audio-based social-media platform ClubHouse is grappling with security issues on multiple fronts, but the consensus among researchers is coming into focus: Assume your ClubHouse conversations are being recorded.

Another user, located in mainland China, meanwhile wrote code that allows anyone to listen in on ClubHouse conversations without the required invitation code, and posted it on GitHub, Silicon Angle reported.

Clubhouse web traffic is directed to Agora's server in China, including personal metadata, without encryption, according to the Stanford Internet Observatory, which was the first to raise the alarm about ClubHouse's privacy and security protections on Feb. 12.

Agca said the issues surrounding ClubHouse are much like previous security concerns raised around TikTok.

As ClubHouse gains notoriety, Katie Moussouris, CEO of Luta Security told Silicon Angle that it's important for users and analysts to keep an eye on how its security posture evolves.

"Today's ClubHouse data routing through China while optimizing for maximum social graph is tomorrow's congressional inquiry of another runaway tech giant, too big and too late to regulate," she said.

News URL

https://threatpost.com/clubhouse-conversations-recorded/164158/

#researcher