this post was submitted on 12 Jan 2024
72 points (76.1% liked)

Privacy

31934 readers
712 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

Chat rooms

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS
 

This is an article written by telegram's founder and CEO Pavel Durov in 2019 on "Why whatsapp will never be secure". Your thoughts?

you are viewing a single comment's thread
view the rest of the comments
[โ€“] Gooey0210@sh.itjust.works 4 points 10 months ago* (last edited 10 months ago) (1 children)

Guys, please stop using telegram if you care for your security and privacy

Telegram is not fully open source, sometimes they release the source, but the hashes of the builds don't even match (so it's a different source code) ๐Ÿšฉ

Zero transparency about data handling, even when they get caught they don't tell details ๐Ÿšฉ (Telegram in the recent years has got really shady reputation)

Very often ways they implement security is weird: non open source app, non open source server, leaking APIs, use of phone numbers, at some point they started asking for an email, non encrypted chats by default, never encrypted group chats.. it can continue forever ๐Ÿšฉ

Non-standard encryption is a real red flag, non-open-source ๐Ÿšฉ

I know some people that work/worked for the police, and they can read all the messages easy peasy, i was trying to tell to the people many years ago, but everyone was so amused by the stickers. Now you can just read stories of the journalists and activists, and how they got imprisoned with the use telegram ๐Ÿ‘๏ธโ€๐Ÿ—จ๏ธ๐Ÿ’€

PLEASE, STOP USING TELEGRAM IF YOU CARE FOR YOUR PRIVACY OR SECURITY

[โ€“] clot27@lemm.ee 0 points 10 months ago* (last edited 10 months ago) (1 children)

Except if you open source server, there's no way to verify it is using same code anyways and their client is already open source so waste point.

sometimes they release the source, but the hashes of the builds don't even match.

When did this happen? Source?

Signal asks phone numbers, emails are universally known. If you don't want to give them your real phone number, buy one from fragment.com (their web3 service where they sell phone number for crypto). Emails are already public and they ask them only for recovery process and its opt on so there's no problem with that.

All chats are encrypted by default from private to group using mtproto, where there have been no breaches found yet so stop spreading misinformation.

Again telling personal experience which maybe lie, can you share source of your claims? Which journalist got arrested due to telegram?

[โ€“] Gooey0210@sh.itjust.works -1 points 10 months ago

You can go and check yourself mr. Senior Officer of FSB, i don't want to fight for your war