• pgetsos
      link
      fedilink
      72 days ago

      The encryption is not Trust me bro. It is public and tested multiple times. For example an analysis back in 2021:

      https://mtpsym.github.io/

      It found somes issues in the implementation of MTProto 2.0 from the official apps, with only one of them being actually usable as an attack vector, and they were all fixed before the disclosure of the analysis. They found no issues with the encryption algorithm other than some choices that may make the implementation of it harder

      • Rikudou_SageA
        link
        English
        102 days ago

        The encryption that only works in one-on-one chats? The encryption that’s multiple menus deep in said one-on-one chats? The encryption that no one uses because of the issues above?

          • adr1an
            link
            fedilink
            English
            04 hours ago

            That’s actually a perk. Means the decryption key is not uploaded to telegram servers.

            And, yes. The encryption all of the normies learnt to use for buying illegal goods while the prices were posted in wide open group chats. At least that’s how it was working in latin america with drugs.

            • @EngineerGaming@feddit.nl
              link
              fedilink
              English
              1
              edit-2
              2 hours ago

              That’s actually a perk. Means the decryption key is not uploaded to telegram servers.

              You could make encryption work between multiple ends without the server having to share the keys if each device has its own key - like in Matrix, XMPP, etc. And given that Telegram can’t do that, the restriction in question is still very arbitrary - in a one-to-one conversation, they just don’t allow you to make your end the desktop and not the phone.

              Also yes, here selling drugs over Telegram is a very big thing too and given how hard it is to use Telegram anonymously and safely - it is indeed monumentally stupid.

    • @lepinkainen@lemmy.world
      link
      fedilink
      English
      02 days ago

      I exclusively use it for public chats, like I did IRC.

      Neither had any encryption and I have no issue with it.

  • @blackfire@lemmy.world
    link
    fedilink
    English
    172 days ago

    This is kind of good news it means there is still a major alt to WhatsApp. Still my second to last app but it does have a lot of linux groups on there

      • @Khanzarate@lemmy.world
        link
        fedilink
        English
        92 days ago

        Yes but that doesn’t mean they’re not important in ensuring there isn’t a messaging monopoly.

        Obviously in an ideal world we’d have multiple interconnected secure apps with some cross-platform interoperability, but until then I’ll settle for one government/corporation not having all of everyone’s private conversations.

      • @accideath@lemmy.world
        link
        fedilink
        English
        72 days ago

        If Telegram is backdoored, not for Russia. While the founder and owner is Russian, him and the company left Russia in 2014 when they didn’t want to comply with their regime (I think. Don’t remember the details). The company is based in Dubai since 2017.

          • Rikudou_SageA
            link
            English
            -22 days ago
            • it doesn’t have end-to-end encryption
            • Russia wants the data
            • @Zacryon@feddit.org
              link
              fedilink
              English
              12 days ago

              It does. You need to enable it per chat but that’s far from difficult.

              Everyone wants messenger data. Doesn’t make it “100% backdoored”.

              • Rikudou_SageA
                link
                English
                11 day ago

                Only for one-on-one chat. From what I’ve seen, most of the chats are group chats or rooms or whatever they’re called. No encryption at all, all your messages for any interested party with enough money to analyse.

                Frankly, there doesn’t need to be a backdoor, the architecture and security of the app are horrible.

                There’s simply no reason to not have e2e. Except if you want the data.

                • @Zacryon@feddit.org
                  link
                  fedilink
                  English
                  11 day ago

                  Yes, e2e is currently only for one-on-one chats available, that’s true.

                  The rest is on their servers. But they’re not making a secret out of that. They are pretty transparent about it as far as I can tell.

                  Yupp, that’s not a “backdoor” in that sense. Is there one for the encrypted chats?

                  I can think of a bunch of harmless reasons, why it can be advantageous to use unencrypted chats.

    • pgetsos
      link
      fedilink
      172 days ago

      Along with the premium version, they have a crypto currency (TON) that can be used to buy things on the platform from other users, and I think you can also buy things with real money and they keep a small commission. Also there are some small ads in very large channels (not groups, channels only) and ways to gift “stars” to other people, like Patreon or sth

    • @Jiggs@lemm.ee
      link
      fedilink
      English
      15
      edit-2
      2 days ago

      There is some premium version iirc. Bigger files can be sent, custom emojis, that sort of things

    • @ouch@lemmy.world
      link
      fedilink
      English
      82 days ago

      Telegram always seemed a bit sus to me. I have hard time trusting that they don’t sell all that non-encrypted data somewhere.

    • GHiLA
      link
      fedilink
      English
      52 days ago

      It’s the backend for web3 scams.

      All of memecoin shittery happens on telegram.