5 Comments

Sorry but Whatsapp is pure theater. Any software that claims e2ee needs to publish the code. There is no serious security or privacy claim that can be defended with marketing alone. "It's secure! Trust me"

Signal is good for now, just worrisome to have a founder looking for a way to monetize it. He held back from publishing the code for the backend for many months while he integrated his shitcoin into it.

Go for matrix.org, spin your own instance(or pay 20 bucks for someone to do it for you to have a server for your family). Be the uncle Jim!

This is not only truly encrypted but the data is in your hands(can't say that about Signal). And for those pesky legacy contacts that stay in WhatsApp or even telegram, you can always bridge it until they are passed it.

Expand full comment

I understand why you'd be skeptical of WhatsApp, but broadly speaking I think it can be trusted. At least for this particular threat model.

You can probably trust WhatsApp if you're a dissident in Moscow. You probably shouldn't trust WhatsApp if you're Chairman Xi.

And while Matrix may be awesome, the vast majority of people who need to hear this about Telegram are not capable of spinning their own instance of it.

Expand full comment

I think you only lose credibility by telling them each year that they need to switch apps again. I've been there.

Matrix is not hard to use and you'll very likely not have to retract your recommendation for the foreseeable future. Consistency is much better for keeping your credibility and getting buy-in

Plus, it is the tech savvy that needs to become Uncle Jim and create the safe path for the non technical users to join. So you just have to admit it to yourself, bite the bullet and spend an hour or two researching how to do it.

Expand full comment

Thanks for the article! Interestingly enough, this journalist says that WhatsApp tracking was used to target UK fighters who volunteered to join Ukrainian forces in a missile strike: https://twitter.com/kimzetter/status/1505696676299771906?s=21

I think the story is referring to metadata, not messages. My limited understanding of digital security says it could have happened with Signal too, right?

But the most mysterious piece about Telegram, compared to others, is that no one knows it’s business model. They try to run an ICO - that failed. They attempted to advertise, also limited success and rollout. So it remains a mystery to me how they keep running this business.

This investigative piece highlights, but doesn’t answer most of my questions: https://www.wired.com/story/how-telegram-became-anti-facebook/

Expand full comment

Спасибо 💙💛

I tried to find a similar article in Russian and Ukrainian, some exist but are more technical and less critical of the founder and the potential danger. Maybe this is still worth a translate...

Haven't seen Matrix mentioned but did notice that Threema (Swiss app) was referenced as a secure alternative.

Again as with matrix the problem will be it's too niche, plus it's paid. But nonetheless interesting what is seen as the pinnacle of secure messaging.

Thanks for the timely reminder, will go share some more.

Expand full comment