Discuss the safety and privacy behind instant message applications like Wickr, Telegram etc.

So with the increase of vendors using the instant message application Wickr, I thought we could finally have something interesting to discuss on this sub reddit. I have done a fair bit of research about Wickr and I personally think it isn't too different from Snapchat. Taking into account the documents released by Edward Snowden, I think many of you already know the obvious that Facebook, Twitter, Apple and WhatsApp has allowed NSA and FBI to wire into their servers, user information and messages.

(Nico Sell) is the CEO and founder of Wickr, had some involvement with the hacking conference DefCon. Other than that there isn't too much to talk about. By looking at her interviews and watch her discuss why Wickr is the 'NSA-proof' instant message application, I think we all can agree that she's good at talking, making empty claims and promises. (Yes, unfortunately we live in a world where the average individual would be sold on this.)

I'll say this first, Wickr Inc is based in San Francisco, USA. (https://www.wickr.com/about) and Nico Sell the founder is a US citizen. Wickr has sold shares and raised some $40m USD in funding. This means, the shareholders have a say on implementations, updates and what information to share.

Them having source code available open-source doesn't matter. I am not going to link all the articles and sources where one can easily find out, when you own a company, with significant userbase, that facilitates a platform that could potentially allow illicit actions to be discussed and shared. You have two, or three choices, obviously it depends on the individual, either you run and re-organize the infrastructure of the company. Comply with the government and law enforcements requests to give access. There has even been cases where politicial and the governmental elite take actions, which could mean framing those who doesn't comply for things in order to have them arrested.

It's obviously up to each and everyone which application they wish to trust their privacy with, but I would strongly suggest vendors who handle significant volumes through Wickr to use Telegram instead.

Telegram was founded in Russia by Pavel Durov and his brother Nikolai. They haven't raised any funding which means they hold the wheel in this case. I'll link two articles about Telegram which I found interesting and these individuals doesn't just make empty claims and promises, they have a history some of the history is explained in the articles.

https://thebaffler.com/salvos/the-crypto-keepers-levine https://www.bloomberg.com/news/articles/2017-12-12/cryptic-russian-crusader-says-his-5-billion-app-can-t-be-bought


Comments


[21 Points] _PrinterPam_:

Considering you're the kid who claimed to have the Aero admins' dox and threatened to release them unless your supposed $7000 balance was returned...you're full of shit and no one should give any consideration, whatsoever, to any suggestion you give.

That having been said, there's no reason to advocate any third-party solution, up to and including the one you're pumping, over simple asymmetric encryption (i.e., PGP). Period.


[3 Points] HardC0r3:

all of them a crap.


[3 Points] princess-peach-uk:

You raise some good points about Telegram but I trust Wickr more. Also in reality none of them are without flaws besides Jabber but barely any customers know how to set it up. Encrypt sensitive info and use common sense and you will be fine.

Overall if your offline OPSEC is good you will have less to worry up. That is usually what gets people caught


[2 Points] infr4r3d:

Expect nothing if the company receives a subpoena or receives a hard threat of one.

Encrypt your own shit and worry not.


[2 Points] Checkyostats123:

Most of these don't matter anyway considering most government agencies can now monitor a phone prior to encryption, meaning they can record keyboard strokes while they are typed. Do they hurt for normal / semi sketchy communication? Probably not. Are they going to help you with trafficking narcotics over international borders...probably not.


[2 Points] Tyrell-WIllick:

We barely grasp the concept of security in our computers and yet we have people trying to involve their mobile phones. Just don't use your phone for shits. You're breaking rule #1; don't mix you're online identity with your real identity.


[2 Points] diOpAnonMu:

Search Telegram app arrests and see how many people have gone to prison by using their shitty software. Telegram is easy to use insecurely and hard to use securely. And their protocol sucks.

You've also made no solid arguments against Wickr. How the fuck are shareholders going to argue that a company founded on resisting surveillance should stop resisting surveillance? They have a duty to act in the shareholders' interests by living up to their claims.


[1 Points] Nightthemeboss244:

@thegrugq read what this guy has to say in the matter. He actually has a clue about infosec. I'm not saying your information is bad but if you want to hear it from a professional read his Twitter or medium.com page, the links on his Twitter.


[1 Points] DeadWifeHappyLife:

I don't know which government I'd rather have fuck me in the ass. Russia or US, tough choice.