Messenger JusTalk Leaks Users' Unencrypted Messages

Popular video calling and messenger JusTalk, which claims to be secure and encrypted, has turned out to be unprotected. A huge cache of unencrypted users private messages has been discovered online.

TechCrunch analysis showed that the data included millions of user messages, as well as the exact date and time they were sent and the phone numbers of the sender and recipient. The data also contained records of calls that were made using the app. Entire conversations could be traced from this data.

Security researcher Anurag Sen found the leak this week and contacted TechCrunch to bring the information to Juphoon, the Chinese company behind the app. But despite numerous attempts to contact the founder of JusTalk and other executives, the publication has not received a response. And the company has made no attempt to address the leak.

JusTalk is popular in Asia and has a growing international audience with 20 million users worldwide.