Jerry on Mastodon3d ago

tl:dr Don't even think of using the #TeleGuard app. Never ever. Use #Signal, #Matrix, or #XMPP/#Jabber

https://www.404media.co/a-secure-chat-apps-encryption-is-so-bad-it-is-meaningless/?ref=daily-stories-newsletter

A Secure Chat App’s Encryption Is So Bad It Is ‘Meaningless’

TeleGuard is an app downloaded more a million times that markets itself as a secure way to chat. The app uploads users’ private keys to the company’s server, and makes decryption of messages trivial.

404 Media
Show threadDebacle3d ago

@Jerry 👍 for #Jabber, the #fediverse of #chat since 1999 😉

Btw. TeleGuard is in my #instantMessaging chart: https://mov.im/blog/debacle/76bf90a4-5f59-4962-92db-6cd859f42ec9

Blog • IMs come, IMs go.

#im #timeline #sms #irc #icq #aim #msn #jabber #xmpp and so on

Show threadDebby ‬⁂📎🐧3d ago
@debacle @Jerry I like XMPP — it's tried and tested, so it works fine and there are lots of nice clients for it, from terminal to desktop; everything just works.
I get that sometimes Matrix is more convenient for video calls and similar things, but I'm curious why every year someone wants to reinvent the wheel.
Is there any practical purpose to all these different messengers — something that actually makes a difference beyond aesthetic preference?
Show threadJerry on Mastodon3d ago

@debby @debacle
Exactly what I ask myself. Why are there so many new messaging apps that do not surpass those that have been vetted?

My reaction is to stay away from them. It makes me suspicious. It's more like they are trying to pry people away from existing secure messaging apps for some reason.

Show threadDebby ‬⁂📎🐧3d ago
@Jerry @debacle On a related note, Signal is problematic: at least the use of Signal groups is considered risky for EU officials, according to Politico—especially because it uses a phone number as an identifier, making it more vulnerable to targeted phishing attacks, which are relatively common. https://www.politico.eu/article/top-eu-officials-signal-group-chat-hacking-fears/
Top EU officials’ Signal group chat shut down over hacking fears

A series of phishing attempts and other cybersecurity operations targeting the EU’s internal communications have drawn a response.

POLITICO
Show threadJerry on Mastodon3d ago

@debby @debacle
Oh, interesting.

Also interesting that they couldn't think of any other messaging app that is more secure.

Show threadDebby ‬⁂📎🐧
@Jerry @debacle Shows how few decision‑makers grasp the technical subtleties; that vacuum lets lobbying drive ill‑fitting policies. We technologists also need to explain things more clearly so better options like XMPP or Matrix aren't ignored.
Apr 2 at 9:27pmWeb