Here's what telegram's founder say about Whatsapp's privacy
Here's what telegram's founder say about Whatsapp's privacy
The world seems to be shocked by the news that WhatsApp turned any phone into spyware. Everything on your phone – including photos, emails and texts – could be accessed by attackers just because you had WhatsApp installed [1]. This news didn’t surprise me, though. Last year WhatsApp had to ad...
This is an article written by telegram's founder and CEO Pavel Durov in 2019 on "Why whatsapp will never be secure". Your thoughts?
You're viewing a single thread.
WhatsApp's e2e encryption is based on the Signal protocol and active by default. Telegram's is opt-in. So much for Telegram's superior privacy...
No. Whatsapp's metadata is not encrypted and can be used by its parent company, also backups are not secure. While telegram's is opt in (yeah that sucks and here's there excuse for that https://tsf.telegram.org/manuals/e2ee-simple), they are as secure as signal's (if not more).
Definitely not. Telegram's MTProto encryption protocol is garbage
The Signal protocol is far superior. Stop spreading misinformation.
That paper is eight years old and yet there has been no major hack of the Telegram protocol.
That may be true, but it proves that MTProto isn't "as secure as signal's (if not more)" as OP said
I am not talking about mtproto lmao. I was talking about their opt-in e2ee feature. Edit: Also the research you shared is based on mtproto 1.0 which telegram abandoned almost a decade ago and there have been No such defects found in mtproto 2 yet.
MTProto is what Telegram uses for "Secret Chats", their opt-in end-to-end encryption. Normal messages aren't encrypted at all. They're stored in plain text on Telegram servers. The fact that E2EE is opt-in already makes this app ridiculous. On top of that, it isn't even secure or private lol
the fact that E2EE is opt-in already makes this app ridiculous
in matter of privacy, yes. But it have cool features so.
They’re stored in plain text on Telegram servers
No, non secret chats use mptroto but with different schema, thats not plain servers. And no data breach have been reported in telegram yet if it was "that" easy to breach them. From my last comment: "Also the research you shared is based on mtproto 1.0 which telegram abandoned almost a decade ago and there have been No such defects found in mtproto 2 yet."
But it have [sic!] cool features so.
So what? If minimum requirements are not given, it can be as cool as possible. Only not so smart people think that's a good deal.
they are as secure as signal’s (if not more
Incorrect. They are trivially breakable as it is unauthenticated DH which is as good as no encryption at all.
good as no encryption at all.
0 data breaches till date.
I'm not saying that WhatsApp is the good guy here, Meta sucks but compared to Telegram I rather trust them if I have to.
And the unencrypted backups are only problematic when you use the automatic Google Drive upload.WHY?
Telegram is a shell company and only offers mediocre, opt-in encryption. The thing I like most about them is their support for 3rd party clients.
I have to use their service for some contacts same as with WhatsApp but I would prefer more secure and privacy friendly alternatives.You obviously haven't seen the charts of the metadata that WhatsApp collects. And we know how anti-consuner, adversarial and anti-privacy Facebook is overall with their tracking pixels, ghost profiles, etc.
Telegram at least doesn't have the FB dataset. FB knows about me, though I've never once in my life been on their website or used anything related to them. Not once. The first I heard of FB I saw immediately the privacy problem with them, and made sure to never have anything to do with them. But they know about me from other peoe posting pics and such, which they then correlate with sites I've been on that have tracking pixels. WhatsApp ads a metric shitton of metadata to that pile, with date, time, location, duration of conversations, businesses you're near at the time, their operating hours, etc, etc. They have a massive, constantly growing dataset, which they can easily correlate elements.
WhatsApp may be encrypted, but I trust Zuck so little that I wouldn't doubt they capture keystrokes in app before the message is sent. They have the capability as was shown in a recent research article (though no evidence of it happening).
Id rather not use Telegram, but it's far lesser of the two evils. I'm trying to get folks to other apps. Signal doesn't sell, SimpleX isn't quite ready, I think Wire has the same stored encryption key issue, though I may be mistaken (I'm not fully clear how it's managed).