Many discussions have focused on the privacy issue, but wanted to understand security of Signal vs. Whatsapp. Know nothing about these things so please bear with me. If an analysis from security SME is available, that would be best, as there seems to be many media articles from ‘non-experts’.
1. Is the open source more or less secure? I guess Open source allows others to inspect the code and fix any issues, but wouldn’t that also give the hackers ideas? Hackers presumably enjoy such challenges and they can see the fixes to the code.
2. Should I be concerned about vulnerabilities introduced and their effect on other work commonly done on the phones, e.g., financial transactions? I do not like FB/WA, but I am sure they have a bigger army of programmers and can pick some of the best talent.
3. Signal appears to be rather small. As the volume increases, would they have the needed resources (human, computers/servers, etc.) to really stay secure?