Author recommends a meta owned company for text messaging.
Lol.
The loophole in WhatsApp’s end-to-end encryption is simple: The recipient of any WhatsApp message can flag it. Once flagged, the message is copied on the recipient’s device and sent as a separate message to Facebook for review.
That practically applies to every form of digital communication. Sender/recipient has it on their end unencrypted and passes/leaks it on elsewhere
Once a review ticket arrives in WhatsApp’s system, it is fed automatically into a “reactive” queue for human contract workers to assess. AI algorithms also feed the ticket into “proactive” queues that process unencrypted metadata—including names and profile images of the user’s groups, phone number, device fingerprinting, related Facebook and Instagram accounts, and more.
Does this also happen?
The mobile standard setter, GSMA, and Google have said encryption will be coming to RCS, but there’s no firm date yet.
GSMA, please don’t come up with yet another poorly designed encryption standard.
The IETF is already working on Messaging Layer Security (MLS), please work with IETF and adopt MLS. IETF have more experience and do a good job at designing secure protocols. And multiple organisations and services are already working on adapting MLS (Mozilla, Google, Matrix, Wire, …)
Well, I’m stuck on a Verizon plan, so my SMS don’t send anyways.
US 2010: “We’ve created and incentivised this gigantic drag net of information based on insecure protocols, private partnership deals, FISA court orders, and outright black budget illegality”
US 2024: “Pweeze use encrypted communication (that we have vendor relations with or that we have backdoors in or that we built as a honey pot) because China can see what’s happening in the drag net and they can leverage that information to compromise our idiot elites.”
I’m 100% not one of those “I have nothing to hide” people, but I don’t text about “things I want to hide” already FFS. In this case if the chinese gov or us gov really want to know about my plan to go get a costco hotdog with my friend later, fine, I don’t like it but also “whatever.” It’s not like I’m texting about federal crimes or government secrets, that’s what Matrix is for.
The only thing I don’t like is being forced to use texts for 2fa on shit websites that won’t except a yubikey (or flipper0-u2f, in my case) which seems to be most sites using 2fa ime.
And then there is the kinds of people who cry about Signal dropping support for SMS.
AFAIK more people in the US use iPhones than Androids, but that is taken care of since iMessage is encrypted (correct me on this, I haven’t sent an iMessage to anyone since I got my SM-A536B).
Removed by mod
The same FBI that keeps telling Congress end to end encryption needs to have legally mandated back doors in it?
“our backdoors, not theirs”
(of course, they always fail to acknowledge the simple fact that “ours” becomes “everybody’s”)
holy shit! the FBI is communist?! cool, cool.
They want access, they just don’t want china to have access. Of course, when you add a backdoor it’s best to assume everyone will use it sooner or later.
so, have you guys heard of matrix?
yeah, it’s cia
are you trying to say that matrix is run by the CIA?
The federated, foss software stacked network matrix. Right.
You’ve been asked elsewhere in the thread, but I’m gonna ask again here anyway.
Source?
https://www.securityweek.com/law-enforcement-read-criminals-messages-after-hacking-matrix-service/
https://thecyberwire.com/newsletters/daily-briefing/13/228
I think this is what they are referring to.
I saw a Lemmy thread about it, but the main takeaway is that it was a completely different program than what we know and love. It just happened to be named the same IIRC.
For posterity, I see that another place this person has been asked for a source is https://lemmy.world/comment/13801385
