978-9934-564-73-4
MANIPULATION ECOSYSTEM OF SOCIAL MESSAGING PLATFORMS Published by the NATO Strategic Communications Centre of Excellence ISBN: 978-9934-564-73-4 Authors: Rueban Manokara, Marina Paramonova Research: Singularex Project manager: Rueban Manokara Copy-editing: Jazlyn Sierra Melnychuk Design: Kārlis Ulmanis
Riga, April 2020 NATO STRATCOM COE 11b Kalciema Iela Riga LV1048, Latvia www.stratcomcoe.org Facebook/stratcomcoe Twitter: @stratcomcoe
This publication does not represent the opinions or policies of NATO or NATO StratCom COE. © All rights reserved by the NATO StratCom COE. Reports may not be copied, reproduced, distributed or publicly displayed without reference to the NATO StratCom COE. The views expressed here do not represent the views of NATO. TABLE OF CONTENTS
Introduction ����������������������������������������������� 5 Why WhatsApp and Telegram? ������������������������� 6 Security risks of social messaging ������������������������������������������������� 8 Impersonations and phishing ��������������������������� 8 Social messaging-enabled cyber attacks ��������� 8 Conduits for information influence activities ��� 9 Undermining data privacy ������������������������������ 10 The global and open marketplace ������������������������������������������� 12 Types of service providers ���������������������������� 14 Actors providing services ������������������������������ 14 Features used to circumvent protective mechanisms �������������������������������������������������� 16 Effectiveness of mass messaging services ������������������������������� 20 Blocking virtual numbers at registration ������ 20 Monitoring content of messages ������������������ 23 Quality of service providers . ������������������������ 24 Conclusion ��������������������������������������������� 25 Endnotes ������������������������������������������������� 27
���������������������������������������������������������������������������� 3 ECOSYSTEM OF SOCIAL MESSAGING MANIPULATION
Undermining data privacy
Impersonations and phishing Identification Monitoring of the content geographical of messages location of messaging
Conduits for Social information influence messaging-enabled activities cyber attacks SECURITY RISKS Created by manipulation of messaging platforms Blocking Collecting virtual multiple numbers at Creating data points registration anti-blocking Mimicking human from a user mechanisms behaviour with dummy accounts PROT RES Message ECTION MEASU delivery delay Spreading inauthentic BY PLATFORMS behaviour among Customisation various accounts of messages HOW ACTORS TRY TO GO AROUND PROTECTION MEASURES
Sellers of API Social Media Marketing agencies software Online providers platforms Freelancers ACTORS WHO PRO IDE THESE SERVICES
TYPES OF SERVICES
MASS ACCESS TO CONTACT TAILORED ENGAGEMENT MESSAGING DATABASES SERVICES
ACTORS WHO PRO IDE INTRODUCTION ABOUT THE STUDY Social messaging platforms started as an Landscape scan of the alternative to the Short Messaging Service manipulation tools and services (SMS), pitching themselves as faster and available for WhatsApp and cheaper, with additional features such as Telegram, finding as diverse a group the ability to send documents and media of services on the open web. securely. These features granted users a level of encryption that meant no third Assessing the tools and services: party, including the messaging services evaluating the cost, methods and themselves, was able to read the messages scale of manipulation, quality of sent. Today, social messaging platforms manipulation tools and services, account for a combined 4.1 billion users and the ability of WhatsApp and and social messaging has become the Telegram to identify and counter most frequent activity a person carries manipulation on their platforms. out online.1 Similarly to major social media platforms that are being artificially inflated and manipulated for financial and political gain, social messaging platforms are equally vulnerable to the threat of AIMS OF THE STUDY exploitation.
Mapping the online market for This study maps the online market manipulation tools and services for manipulation tools and services available for WhatsApp and Telegram. available for two popular messaging applications: WhatsApp and Telegram. Assessing the effectiveness of In doing so, we assess the effectiveness these tools and services against the of these tools and services against the protective mechanisms put up by protective mechanisms put up by the the messaging applications. messaging applications. This publication Provide national institutions and aims to provide national institutions communications practitioners with and communications practitioners with an overview of the scale and effect an overview of the scale and effect of of manipulation on these platforms. manipulation on these popular social messaging platforms.
���������������������������������������������������������������������������� 5 In collaboration with Singularex, a Ukrainian different features as they aim to carve out social media analytics company, we their space in the market. For example, conducted the study in two parts. The Facebook messenger makes it convenient first part consisted of a landscape scan to contact friends and family by syncing of the manipulation tools and services seamlessly with one’s Facebook account. available for WhatsApp and Telegram. We On the other hand, Signal, an increasingly searched the web and spoke to sellers and popular application for a high level of freelancers over a period of two months to encryption and security2, has pitched itself understand what a customer, or a potential to more security-conscious individuals. malign actor, can purchase online. Given that previous research on social media had WhatsApp is regarded as the leading shown no significant difference between mobile messaging application across social media manipulation services 112 countries.3 It last reported 1.5 billion available on the dark web and the open web, active users per month and has the lion’s we decided to focus our efforts on finding share of market penetration in European as diverse a group of services on the open countries such as the Netherlands at 85%, web as we could. followed by Spain at 83.1%.4 When compared to WhatsApp, Telegram is relatively modest, The second part involved assessing the with 365 million downloads as of August tools and services identified. This included 2019. Nevertheless, Telegram has growing evaluating the cost, methods and scale ambitions with a target of 1 billion users of manipulation available, the quality of by 2022.5 WhatsApp and Telegram are not manipulation tools and services, and only interesting because of their position in the ability of WhatsApp and Telegram to the market, but also because of the inherent identify and counter manipulation on their security risks associated with them, such platforms. as the case of fuelling violence in India6, and the use of the platforms to spread Why WhatsApp and Telegram? propaganda and support the command and control structures of terrorist organisations The social messaging platforms such as DAESH.7 environment is diverse and highly fragmented, with clear regional favourites. Both platforms have been in the market for For example, WhatsApp is the dominant a relatively long time and have developed player in Brazil and India. In China, primarily extensive features that improve usability, due to government restrictions and linguistic but also create additional avenues for adaptations, WeChat is the most widely manipulation. In Table 1 and 2 below, we used messaging platform. In addition, trace the critical stages of development for different applications tend to specialise in both platforms.
6 ����������������������������������������������������������������������������� 200 2012 201 201 WhatsApp 2.0 announces WhatsApp launches Introduces WhatsApp new ‘encryption’ software WhatsApp Web Business
The founding WhatsApp WhatsApp of WhatsApp introduces ‘Read launches document
Feb 1 May May 10
Feb 2 an Mar 2
Initial Seed WhatsApp is now The Acquisition WhatsApp introduced funding available on Android of WhatsApp on Mac and Windows
WhatsApp 2.0 relased WhatsApp Introudiction of ‘end on the app store for introudces Voice to end encryption’ iPhone’s WhatsApp available for Blackberry A new version of WhatsApp is available that supports the 2010 201 2015 2018
Table 1. Development of WhatsApp8
201 2015 201 2017 2017
Bot API and a platform for users to create and publish their own bots. Bots can handle Supergroups - maximum Video messages were The maximum size for payments, moderate groups, fetch emails number of users for group introduced in chats and groups was doubled to and much more. chats grew to 1,000 people channels 200,000 members
August September March une May