- cross-posted to:
- technology@lemmy.world
- cross-posted to:
- technology@lemmy.world
You must log in or register to comment.
More people need to understand this, Telegram was never trustworthy to begin with.
They spent years lying about their encryption algorithms too acting like they’re more secure than Signal when they never were
Signal cares so much about your privacy that they need your phone number.
Supposedly to combat spam (which makes sense) and some BS about bringing your social network.
But let’s think about this logically. What can they do with your phone number when they don’t know who you are?
Let’s say they receive a subpoena from a government law enforcement entity. That would have to include your phone number and even then what can they give that entity? The date you registered the number and the last time your account was active?
At best my guess is that you and others who bring this up are worried about the information that you can buy from data brokers that would include a phone number and allow someone with the phone number to link it to a person.
But at that point law enforcement already knows the number, already has likely used to same services to link that number to a human, and since most people haven’t de-googled or use an iPhone they likely know what apps are installed. Including signal.
What is the threat profile that should be worried about this?
Please note that I don’t think they should need to require a phone number and if you don’t want that you can use a different service.
But I’d like someone to elaborate on their reasons for objecting to this.
Every since the CEO of Telegram was basically lured to Paris, arrested, then read the riot act for Telegram’s non-cooperation with French authorities, the company has been responding to warrants and downplaying its “E2EE” features. Expect them to have a fully accessible backdoor for LE.
By the way, don’t forget about that Bitlocker backdoor that “mysteriously” doesn’t affect Windows 10.
The EU and US digital surveillance states have been tightening their grip on encryption and online anonymity for years now. “Age verification” is just the latest push.
I can only assume there’s a different backdoor for 10 that just hasn’t been published. Even if there isn’t, Windows defaults to backing the key up to the attached Microsoft account. You think they’d ever tell intelligence agencies to come back with a warrant for that?
Just use Veracrypt folks.
Why not mention that “Secret Chats” aren’t that safe either?
Signal (assuming you live in a country that hasn’t blacklisted them for refusing to install backdoors).
Matrix, Session, SimpleX chat, Tox chat, Jami… and so on.
Session EoL this July.
Clash of Clans
it is not hosted in the US or a country affiliated with the US, which makes it infinitely more secure from the point of view of sovereign risk
The Telegram servers are in Miami, Amsterdam, and Singapore, so some data is still stored in the U.S.
In any case, it wouldn’t be any better to have data stored in a country like China or Russia.
Oh, you mean the guys who were obviously such criminals they were run out of Russia and Europe and had to settle on being headquarted in Dubai?
Oh the guys who instead of doing something thoughtful like Mullvad and having RAM only servers with no logs, they just hide all their datacenters behind shell companies to avoid complying with legal subpoenas? That’s not completely shady at all, nope.
I mean, it’s not like Matrix or SimpleX chat or others that actually are secure (-ish, even Matrix leaks metadata!) and thoughtfully designed and open source that you can self host or don’t need servers or are incorporated in Europe (like Telegram tried to incorporate initially before settling on Dubai).
Oh and don’t forget France had very good reasons to arrest Pavel Durov, co-creator of Telegram. He went on Tucker Carlson to defend himself, which says it all, really.
