“Trust me bro” style hand-rolled encryption.
Backdoored non-e2e encryption
What encryption? There is no E2EE by default. It’s all plaintext.
The encryption is not Trust me bro. It is public and tested multiple times. For example an analysis back in 2021:
It found somes issues in the implementation of MTProto 2.0 from the official apps, with only one of them being actually usable as an attack vector, and they were all fixed before the disclosure of the analysis. They found no issues with the encryption algorithm other than some choices that may make the implementation of it harder
The encryption that only works in one-on-one chats? The encryption that’s multiple menus deep in said one-on-one chats? The encryption that no one uses because of the issues above?
The encryption that is not even available outside of mobile?
That’s actually a perk. Means the decryption key is not uploaded to telegram servers.
And, yes. The encryption all of the normies learnt to use for buying illegal goods while the prices were posted in wide open group chats. At least that’s how it was working in latin america with drugs.
That’s actually a perk. Means the decryption key is not uploaded to telegram servers.
You could make encryption work between multiple ends without the server having to share the keys if each device has its own key - like in Matrix, XMPP, etc. And given that Telegram can’t do that, the restriction in question is still very arbitrary - in a one-to-one conversation, they just don’t allow you to make your end the desktop and not the phone.
Also yes, here selling drugs over Telegram is a very big thing too and given how hard it is to use Telegram anonymously and safely - it is indeed monumentally stupid.
I exclusively use it for public chats, like I did IRC.
Neither had any encryption and I have no issue with it.
This is kind of good news it means there is still a major alt to WhatsApp. Still my second to last app but it does have a lot of linux groups on there
Isn’t WhatsApp 100% backdoored for the US and Telegram for Russia? I thought Signal was the only reliable app?
Yes but that doesn’t mean they’re not important in ensuring there isn’t a messaging monopoly.
Obviously in an ideal world we’d have multiple interconnected secure apps with some cross-platform interoperability, but until then I’ll settle for one government/corporation not having all of everyone’s private conversations.
If Telegram is backdoored, not for Russia. While the founder and owner is Russian, him and the company left Russia in 2014 when they didn’t want to comply with their regime (I think. Don’t remember the details). The company is based in Dubai since 2017.
The people with the most to lose think it is: https://www.reuters.com/technology/cybersecurity/ukraine-bans-official-use-telegram-app-over-fears-russian-spying-2024-09-20/
Well, to be fair, better safe than sorry.
Why is Telegram the only messenger that is not banned in Russia? Signal, Matrix, SimpleX, WhatsApp, Viber, everything, are all banned, but not Telegram
Where did you get the info? Signal and Viber are indeed blocked but usable via VPNs that a lot of people have anyway. Whatsapp was never even attempted to be blocked and remains absolutely dominant together with Telegram. Matrix is a protocol rather than a platform so can’t really be blocked, but even matrix.org was never blocked either. Simplex was blocked a while ago, but again, it is a protocol, so they could only block the central servers and apparently port 5223 too. But both were quietly unblocked a short time after, no idea why.
Telegram is 100% backdoored
Whatsapp only the backups (although I think they stopped?) and Metadata (with whom you chat, when you chat, but not the exact words you chat) are backdoored.
Signal is the only major app tht’s not backdoores
Telegram is 100% backdoored
What makes you so sure?
- it doesn’t have end-to-end encryption
- Russia wants the data
It does. You need to enable it per chat but that’s far from difficult.
Everyone wants messenger data. Doesn’t make it “100% backdoored”.
Only for one-on-one chat. From what I’ve seen, most of the chats are group chats or rooms or whatever they’re called. No encryption at all, all your messages for any interested party with enough money to analyse.
Frankly, there doesn’t need to be a backdoor, the architecture and security of the app are horrible.
There’s simply no reason to not have e2e. Except if you want the data.
Yes, e2e is currently only for one-on-one chats available, that’s true.
The rest is on their servers. But they’re not making a secret out of that. They are pretty transparent about it as far as I can tell.
Yupp, that’s not a “backdoor” in that sense. Is there one for the encrypted chats?
I can think of a bunch of harmless reasons, why it can be advantageous to use unencrypted chats.
The app is free. What do they sell?
Along with the premium version, they have a crypto currency (TON) that can be used to buy things on the platform from other users, and I think you can also buy things with real money and they keep a small commission. Also there are some small ads in very large channels (not groups, channels only) and ways to gift “stars” to other people, like Patreon or sth
Thanks. That makes sense to me.
There is some premium version iirc. Bigger files can be sent, custom emojis, that sort of things
Ah. They are profitable through premium accounts? Impressive.
Premium upgrade version.
Telegram always seemed a bit sus to me. I have hard time trusting that they don’t sell all that non-encrypted data somewhere.
It’s the backend for web3 scams.
All of memecoin shittery happens on telegram.