169
Russia orders state-backed Max messenger app to be pre-installed on new phones
(www.theguardian.com)
this post was submitted on 21 Aug 2025
169 points (98.8% liked)
Privacy
41168 readers
1077 users here now
A place to discuss privacy and freedom in the digital world.
Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.
In this community everyone is welcome to post links and discuss topics related to privacy.
Some Rules
- Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
- Don't promote proprietary software
- Try to keep things on topic
- If you have a question, please try searching for previous discussions, maybe it has already been answered
- Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
- Be nice :)
Related communities
much thanks to @gary_host_laptop for the logo design :)
founded 5 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
WhatsApp uses the Signal protocol for end-to-end encryption, so Meta only collects the metadata. Still enough to convict, but better than anything from Putin.
Not when Meta works with NSO group to backdoor the app. Then they can read all your messages.
Has there been any evidence of that? Intercepting the traffic or disassembling the app would show some signs if true.
Yeah dude, tons. Look at Citizen Lab's work. They did an very detailed exposé with Amnesty International too
A vulnerability allowing to exploit an app is not the same thing as a backdoor. Moreover, being able to gain full access to someone's device does not prove that an app's end-to-end encryption is faulty. The same kind of exploit most likely could be used to read messages from Signal and definitely other apps.
That's my point. The e2ee is worthless marketing because they work with cybermercinary groups to ensure they have exploits to gain access to the device.
NSLs require backdoors. Meta is a US corporation. But, sure, you can pretend that these exploits aren't intentional. That's their plausible deniability.
Likewise, you can pretend to be sure it's a backdoor without any proof and then also believe there's more that's not been exposed. Signal is also US-based, by the way. What software do you trust not to have vulnerabilities that could be abused by the likes of NSO Group and why?
SimpleX is probably best. Wire is much more practical for day to day, but the metadata in Wire might literally get you killed.
Going by your logic though, what would stop a Five Eyes country like the UK from pressuring the developer of SimpleX into creating a backdoor? Besides, as discussed, even if it were bulletproof, it's improbable that the victim would have no other apps on their device, one of which could be exploited by the likes of NSO Group. The creators of Android and iOS are also obviously US-based, so your point would have to apply to them as well. From there, if someone remotely gains full access to the device, it won't matter if you use Signal, Telegram, WhatsApp, SimpleX, or that new Russian thing. However, having e2ee is still better than nothing in that it protects from other attack vectors, like the ISP analyzing the traffic and reporting to the government.
Gonna have to explain that last part there chief. What's wire?
Wire.com
Not sure why this got downvoted. Was there any real proofs that WhatsApp msgs can get decrypted and read by the central server?
Besides the AI shit that is optional. Not advocating for WhatsApp but we need to keep the conspiracy theory out of the equation.