this post was submitted on 15 Aug 2025
7 points (62.1% liked)

Privacy

3546 readers
90 users here now

Welcome! This is a community for all those who are interested in protecting their privacy.

Rules

PS: Don't be a smartass and try to game the system, we'll know if you're breaking the rules when we see it!

  1. Be civil and no prejudice
  2. Don't promote big-tech software
  3. No apathy and defeatism for privacy (i.e. "They already have my data, why bother?")
  4. No reposting of news that was already posted
  5. No crypto, blockchain, NFTs
  6. No Xitter links (if absolutely necessary, use xcancel)

Related communities:

Some of these are only vaguely related, but great communities.

founded 9 months ago
MODERATORS
fxomt@lemmy.dbzer0.com
otter@lemmy.ca
shaytan@lemmy.dbzer0.com
fxomt@piefed.social
7
future of the signal messenger (lemmy.dbzer0.com)
submitted 2 days ago by cookie019@lemmy.dbzer0.com to c/privacy@lemmy.dbzer0.com
24 comments fedilink hide all child comments
 

I would like to express concern about the future of the Signal messenger. Although Signal currently has a significantly smaller audience than WhatsApp, there are existential risks associated with the messenger covering a larger number of users. Is it rational to say that the goal of this messenger is to be used by the largest number of users, so let's assume for a moment that Signal was able to achieve its mission and most WhatsApp users switched to Signal - I know this is right now unrealistic, but even 30% of users would be an enormous, huge number. Thus, what is the future of the messenger when it starts organizing communications for 1 billion users worldwide?

Would it be rational to assume that counterintelligence forces and special police will send their agents to the organization as undercover workers to sabotage the work and embed backdoors during companies in the context of company growth and staff expansion in this scenario? The question is rhetorical.

I would like to hear the response of the company's president to this existential threat, and to thank for their work.

you are viewing a single comment's thread
view the rest of the comments
[–] cookie019@lemmy.dbzer0.com 2 points 2 days ago (2 children)

Hi, what about gnu linux xz utils backoor scenario? Also is there any regular auditing of signal by third party auditing company?

About simplex its not allowed in my threat model, I will rather use pure xmpp protocol with omem as an alternative.

[–] Electricd@lemmybefree.net 3 points 1 day ago

Why not simplex?

[–] Telorand@reddthat.com 5 points 2 days ago (1 children)

Hi, what about gnu linux xz utils backoor scenario?

This was caught by the community thanks to it being FOSS, and it was somewhat distinct from the scenario we're talking about here, since the repository was wholly taken over by a bad actor who tricked the original (burnt out) maintainer to hand over the repo.

Could a bad actor get their claws in and take over the repo? Possibly, but given the fact that it's maintained by a foundation with lots of devs and not just one thankless hobbyist, that likelihood is probably small.

Also is there any regular auditing of signal by third party auditing company?

Regular? I don't know. They have been audited, iirc, and they have received numerous legal requests to turn over data to courts, to which they've been able to reply "what data?" Bear in mind that they would almost certainly not do this if it meant jeopardizing their entire business. No business is going to go to jail for us, after all.

You do what you feel is appropriate for your threat model, but as far as general threats to privacy or Signal's existence go, I'm not currently concerned about their future.

[–] cookie019@lemmy.dbzer0.com 1 points 18 hours ago

Hi, I think you not really understood threat that I published -undercover agents -developers that will apply for the job at signal and receive it, and they will do their backdoor without Signal foundation knowing,its obvious. About audites that you mentioned - could you provide some link to it?