undefined | Better HN

0 pointsheinrich599110h ago0 comments

This article incorrectly implies that Telegram is end-to-end encrypted, by putting it in the same line as WhatsApp and Signal.

Telegram doesn't even try to be end-to-end-encrypted by default. WhatsApp claims to be end-to-end-encrypted, but it's not open-source, Signal is end-to-end-encrypted.

0 comments

riedel5h ago

Open source would not help without the reproducible builds of Signal (I wonder who check them on each release?). And only builds like Molly include no binary blobs of Google [1], which could IMHO at least be used to extract some metadata. Leaving the OS still as a risk, even for Molly or Matrix clients. Even with transparency around linked devices, I would believe that few people would notice silently linked devices. Simplest thing is I guess social engineering which happened in a coordinated attack on Signal messagers of German politicians recently (I guess there should be an official signal app version not supporting linked devices for such people) [2].

[1] https://news.ycombinator.com/item?id=46081855 [2] https://www.politico.eu/article/hackers-attack-phone-of-germ...

adrianN4h ago

Politicians should probably not use Signal but something that is controlled by the government and for example doesn’t allow „accidentally“ deleting incriminating messages.

hellcow9h ago

> WhatsApp claims to be end-to-end-encrypted, but it's not open-source

And explicitly does not encrypt metadata.

Meanwhile NSA top brass publicly stated, "We kill people based on metadata."

2ndorderthought9h ago

I imagine in 2027 people will be getting killed over vibes.

Does make you wonder what kind of people they kill or how many. I can't think of a lot of crimes whose metadata warrants being killed for personally.

xethos8h ago

> I can't think of a lot of crimes whose metadata warrants being killed for personally

You're (literally) missing links then. If A is a high-value target that we look at closely (because they're a high-value target), what if B frequently contacts A? If C, D, and E always recieve messages from B immediately following A messaging B?

What about times? Is B messaging F at a consistant time, and never outside of that? Is A only messaging G, at a set time, with G's phone immediately being put into (ineffective) airplane mode immediately before and after?

Facebook built their business on the social graph, but the CIA's been at this for decades

1 more reply

tardedmeme7h ago

Isn't this already happening? It's why the war department uses ChatGPT and Claude to target drone strikes. It's why Anthropic had to make a public scene to pretend that wasn't happening.

Projectiboga8h ago

In the dystopian novel Nineteen Eighty-Four, thoughtcrime, also known as crimethink in the official language of Newspeak, is the offense of thinking in ways not approved by the ruling Ingsoc party. It describes the intellectual actions of a person who entertains and holds politically unacceptable thoughts; thus the government of The Party controls the speech, actions, and thoughts of the citizens of Oceania.

https://en.wikipedia.org/wiki/Thoughtcrime

1 more reply

Razengan5h ago

> Meanwhile NSA top brass publicly stated, "We kill people based on metadata.

Can someone post a link to that?

LarsKrimi5h ago

Maybe just search for it and pick a source you trust. Take the search term "kill people based on metadata" and no noise comes up, just tons of articles about General Hayden's interview and related

wolvoleo8h ago

Yes and the secret chats in telegram are super clumsy. Both parties need to be online at the same time for the key exchange, it only works on one device at each side. Nobody I know uses them.

I sent some people a password reset through them but half of them couldn't get their head around it.

So yeah while it has secret chats, they aren't very useful at all.

em-bee8h ago

telegram may not be end-to-end encrypted by default but it does support end-to-end encryption. the generous reading is that this encryption, if used, should be broken.

so as i read it the article doesn't suggest that all of telegram is end-to-end encrypted only that it has support for it.

j / k navigate · click thread line to collapse

0 comments

riedel5h ago

[1] https://news.ycombinator.com/item?id=46081855 [2] https://www.politico.eu/article/hackers-attack-phone-of-germ...

adrianN4h ago

Politicians should probably not use Signal but something that is controlled by the government and for example doesn’t allow „accidentally“ deleting incriminating messages.

hellcow9h ago

> WhatsApp claims to be end-to-end-encrypted, but it's not open-source

And explicitly does not encrypt metadata.

Meanwhile NSA top brass publicly stated, "We kill people based on metadata."

2ndorderthought9h ago

I imagine in 2027 people will be getting killed over vibes.

Does make you wonder what kind of people they kill or how many. I can't think of a lot of crimes whose metadata warrants being killed for personally.

xethos8h ago

> I can't think of a lot of crimes whose metadata warrants being killed for personally

Facebook built their business on the social graph, but the CIA's been at this for decades

1 more reply

tardedmeme7h ago

Isn't this already happening? It's why the war department uses ChatGPT and Claude to target drone strikes. It's why Anthropic had to make a public scene to pretend that wasn't happening.

Projectiboga8h ago

https://en.wikipedia.org/wiki/Thoughtcrime

1 more reply

Razengan5h ago

> Meanwhile NSA top brass publicly stated, "We kill people based on metadata.

Can someone post a link to that?

LarsKrimi5h ago

Maybe just search for it and pick a source you trust. Take the search term "kill people based on metadata" and no noise comes up, just tons of articles about General Hayden's interview and related

wolvoleo8h ago

Yes and the secret chats in telegram are super clumsy. Both parties need to be online at the same time for the key exchange, it only works on one device at each side. Nobody I know uses them.

I sent some people a password reset through them but half of them couldn't get their head around it.

So yeah while it has secret chats, they aren't very useful at all.

em-bee8h ago

telegram may not be end-to-end encrypted by default but it does support end-to-end encryption. the generous reading is that this encryption, if used, should be broken.

so as i read it the article doesn't suggest that all of telegram is end-to-end encrypted only that it has support for it.

j / k navigate · click thread line to collapse