The hackers, dubbed by researchers at cybersecurity company ESET as GREF, also released a version on Samsung’s Galaxy Store. The main aim of the fake Signal, which was called Signal Plus Messenger and functioned the same as the legitimate version, is to spy on communications of the real app, according to ESET researcher Lukas Stefanko.
The standard version of Signal allows users to link the mobile app to their desktop or Apple iPad. The malicious Signal Plus Messenger abused that feature by automatically connecting the compromised device to the attacker’s Signal in the background, so all messages were passed onto their account"
#Cybersecurity#Encryption#Messaging: "With end-to-end encrypted technology, no one but you and the intended recipients can know what you wrote or said — not hackers, the app companies or the police.
Except, not everything is end-to-end encrypted in end-to-end encrypted apps.
That could mean what you type in chats are saved on company computers that corporations such as Apple or your phone provider could read. Details such as the timestamps of every text to your boyfriend might not be under lock and key, either.
That’s not necessarily bad. Each end-to-end encryption choice has trade-offs. More privacy and security could also make it harder for you to use an app, or can shield activity of terrorists and child predators.
The mess I’m describing — end-to-end encryption but with certain exceptions — may be a healthy balance of your privacy and our safety.
The problem is it’s confusing to know what is encrypted and secret in communications apps, what is not and why it might matter to you.
To illuminate the nuances, I broke down five questions about end-to-end encryption for five communications apps."
#UK#OSB#Encryption#Cybersecurity#messaging : "The main criticism of the legislation to date has been on freedom of expression grounds. Critics have said it will have a chilling effect, encouraging tech giants to ban users who might get the platforms into trouble with the regulators. Now the companies are warning that the bill has a national security implication too.
Ukraine often uses messaging services to communicate securely with its allies, including the UK. The British armed forces and their allies also use services such as Signal alongside military communications systems. Do ministers really want to weaken western security? Have they thought this through?
If Signal and WhatsApp cannot be used on British-registered phones, anyone who needs access will presumably have to ship in a second, secure device from the US."
Do you delete your devices often, like everyday? Dehydrated devices allow to keep receiving encrypted messages in a decentralised network with virtual devices.
Telegram kooperiert mit Behörden im Irak: Sperrung nach einer Woche aufgehoben
Eine Woche war Telegram im Irak gesperrt, weil dort personenbezogene Daten verbreitet wurden. Weil die Plattform nun kooperiert, ist sie wieder zugänglich.
Can someone please explain why the #Democrats have decided not to invest any money in regular, coordinated #messaging campaigns as we approach the 2024 #election season? What, exactly, are they doing with all the money we donate? The #Republicans engage relentless, coordinated messaging where their #politicians and various #media organizations are all pushing the same messages. And they do it every day. We're making things more difficult for ourselves by ignoring this.
Eilen täällä puhuttiin Matrix-protokollasta ja sen seurauksena päädyin tutkimaan sitä itsekin. Tajusin, että sen avulla voisi yhdistää useat eri viestisovellukset. Tämä oli mahdollisuus jota ei voinut sivuuttaa!
Niinpä virittelin pystyyn oman Matrix-serverin. Ensimmäinen riemu tuli siitä kun onnistuin liittymään toisen serverin huoneeseen - olin siis tehnyt jotain oikein!
Kun murjoin päätäni tarpeeksi pitkään seinään, sain myös WhatsApp -viestit kulkemaan oman serverini läpi. Huomenna pitää koittaa tehdä sama Signalille ja Messengerille.
Jos tämä toimii ongelmitta niin taas lähtee puhelimesta muutama ylimääräinen sovellus pois 😍
@dansup This is cool, and I can't wait to test it, but unless it can magically federate with WhatsApp/iMessage/etc. or you manage to convince my aunts and uncles to switch, it's just another app in a crowded space that missed the network effect by about 10 years.
I think that at this point the only viable solution to #opensource#messaging is to lobby the EU so that it forces the big players to #federate.
What's the relative message volume on #social media vs #messaging apps. Meaning Facebook / Instagram / Twitter / Mastodon etc vs iMessage / Telegram / Matrix etc.
How has that changed over time?
I am not sure I have ever seen numbers on this. Anybody know?
Our #XMPP server is a very #effective platform not only for sending messages to other users, offering much more than just basic #messaging capabilities. It stands as a highly effective solution for transmitting #instant messages, #notifications and information from diagnostic
equipment in near real-time. It is useful for various use cases, such as #real-time customer service, voice communication, IoT, online gaming, and any scenario demanding instantaneous information exchange among users.
The Messaging Layer Security (MLS) protocol is a new encryption standard defined by the IETF (RFC9420), to provide a way for users of a messaging service to communicate securely without servers being able to eavesdrop on their conversations.
Matrix has been working on this with Cisco, Google, Mozilla, AWS, Wire and so on.
Matrix is working on making MLS decentralized too.
Because of Signal’s small team, limited funding, and the challenges of implementing features under end-to-end encryption, the app bafflingly lacks a number of important features. It doesn’t have encrypted backups for iOS; messages can only be transferred between phones. If you lose your iPhone, you lose all your Signal chat history.
Signal also doesn’t do a good job serving some of its core users. Activists and organizers deal with huge amounts of messages that involve many people and threads, but Signal’s interface lacks ways to organize all this information. These power users’ group chats become so unwieldy that they migrate to Slack, losing the end-to-end encryption that brought them to Signal in the first place. It’s common to try and make multiple group chats between the same people to manage all their threads. When users are hacking “desire paths” into your interface to create a new feature, or leaving because of the lack of the feature, that’s a strong hint that something is missing."
Twitter: Elon schießt den Vogel ab – und verstärkt Kampf gegen Spam
Twitter-Chef Musk will den blauen Vogel beerdigen und den Dienst umbenennen – und deutet ein "X" an. Außerdem werden Direktnachrichten teilweise beschränkt.
#Cybersecurity#Privacy#Encryption#Messaging#Backdoors: "Right now, we need more end-to-end encryption. There’s little evidence that weakening encryption will make much of a dent on the fentanyl trafficking on our streets. But after the US Supreme Court’s Dobbs decision, end-to-end encryption is now a critical means of thwarting attempts to prosecute women who seek abortions in states where politicians lay claim to their major life choices. Last year, Meta turned over private messages from a Facebook user to Nebraska police that led to felony charges against a mother who aided her daughter in ending a pregnancy by abortion pills. If those messages had been protected by end-to-end encryption—as WhatsApp and Signal messages are—authorities would not have been able to read them. If “deliberate blindness” is banned, watch out for widespread snooping to find out who might be seeking abortions."
Google throws its weight behind yet another messaging standard: This time though it is the IETF’s MLS standard
Yes I know, the words Google, Messaging and Standards, all diverge in different directions and visions, and which often overlap. I have no clue what Google’s own current latest messaging app is even called.
Google has announced its support though for the RFC 9420 specifications of the Internet E ...continues