Thread

Not a fan of Tucker. The signal “hack” was definitely bs. He didn’t elaborate on it or how it happened then shilled telegram shortly after. He’s a fiat whore that can go fuck himself.

Much simpler explanations like client side scanning. End to end encryption only works if you're also secure at the ends.

Even getting normie friends on Simplex these days. People are waking up 🧡

Does this apply to grapheneOS as well, or they only can scan ordinary android / ios ?

Signal requires phone number lol, privacy that we've deserved...

Signal has a single point of failure; simplex does not.

💯

Requiring a phone number is not ideal

Didn't Signal cave to Putin?

Fear is not a factor for me nice try Joe

I was waiting for the guy to explain to Joe that signal is secure, phones are not.....

🔥

Don't forget Session

Session

Session | Send Messages, Not Metadata. | Private Messenger

Session is a private messenger that aims to remove any chance of metadata collection by routing all messages through an onion routing network.

I tried it, but I missed Telegram bots too much and went back 🧘‍♂️

STAY HUMBLE AND STACK SATS🫡

> SIGNAL IS MORE SECURE THAN MOST ALTERNATIVES. - Am i watching the same video as you ? They just said that they can get into your signal app if they know your phone number ? Seems like Simplex and Session are one of the few real options left

Signal is amazing. Specially if you combine it with other general privacy recommendations. Graphene OS + Anonymous Sim paid with lightning + pseudonym Most people don’t need more privacy than that. That’s a great combo. You can also use something like smspool and get disposable number just to receive the comfirmation. And use Signal’s username for everything.

🫡

Agree. Simplex (own server) is next step and it should keep improving. I have normies (mainly) that have Signal b/c I asked although more and more are joining. Getting people off WhatsCrap and Telegram (even amongst nostriches) is a lift but people are catching on. Step by step.

all my spook friends have been using Signal for years. so it's at least not completely pwned by US adversaries (to the USGs knowledge) that being said, if it's online, someone else will see it

WHY DON’T ANY OF THESE FUCKTARDS KNOW ABOUT PEGASUS????

Session and simple chat are the best

i degoogled my phone, as far as I could possibly go, with ABD. Now signal is complaining it cant find playstore. I uninstalled signal. Simplex is fine. There is one big problem with open source and central servers, you can never tell if there are asynchronous offline , non open source processes that are harvesting server data and analysing it. If you cant run your own server, then maybe find an app where you can.

What about Keet? Compromising phone means that also p2p is not secure?

Threema is much safer.

Threema

Messenger Comparison

The Nostr is public. We use it. We know it’s public. If you don’t know it’s public…

decentralize. run a matrix synapse server at home. encrypted messaging stored securely on your own server not Amazon's

Spot on. They get access my compromising the OS. Signal might be encrypted but at the end it relays on the OS to display the message to you

Why Signal is not a secure messenger! Signal runs its entire traffic via the clouds of Google, Amazon, Microsoft & Cloudflare. They don't tell their users this, but speak of “3rd parties” in a trivializing way. These 4 IT giants have enough of your IP address and the Americans know who is writing to whom = valuable metadata! There are no “free” messengers! Why do they use these 4 cloud providers and not just one of them, or another cloud service? Because they are the biggest, with the widest distribution. And they have the most data! Google's Android runs on around 85% of all smartphones. This sends encrypted data “home” every day. So you can assume that Google can always link 85% of all smartphone IPs to the respective user! Amazon is the online shopping market leader (in the West) and can provide the name and address for IPs. Microsoft is the world market leader in operating systems and can provide further user data, for example the IP of your wifi. And Cloudflare is “stuck” invisibly in front of many well-known websites and knows the surfing behavior for the IP! More espionage or user data collection is almost impossible! Financing If you want to know who is behind it, you have to look at where the money comes from. Signal gets money from the Open Technology Fund = US government.

OTF

Signal (Open Whisper Systems)

Developed by Open Whisper Systems (OWS), Signal is an easy to use mobile application that provides encrypted text messaging and voice and video cal...

If they put money into it, then they want something in return = namely data! Open Technology Fund = “Affiliations U.S. Government”

Open Technology Fund - Wikipedia

In addition, WhatsApp billionaire Brian Acton has invested millions of dollars in the Signal Foundation. That alone should give you pause for thought! He had a lot of functions built into SignalApp that were stolen/adopted 1:1 from WhatsApp. Both messengers also use the same protocol. So you can assume that if the Signal app has enough users, he will sell the whole thing back to Facebook/Meta. The data in the cloud services will then be the real treasure for which Zuckerberg will again make billions. Cloud Act And everything that the cloud services have on you can be obtained and viewed by US services via the Cloud Act! “The law obliges American internet companies and IT service providers to guarantee US authorities access to stored data even if it is not stored in the USA.”

CLOUD Act - Wikipedia

MetaData, MetaData, MetaData.... The Americans are only ever interested in MetaData! So: Who writes when with whom, how often, etc. A quick reminder: “Metadata tells you absolutely everything about a person's life. If you have enough metadata, you don't really need the content.” NSA General Counsel Stewart Baker See: “We kill people based on metadata”

The New York Review of Books

'We Kill People Based on Metadata' | David Cole

A bill to rein in NSA spying on Americans’ metadata has wide bipartisan support in Congress. It is an important first step, but it addresses only...

How “great” the encryption is only plays a subordinate role. Cloud spies almost always only need your IP and that of the recipient and they know who is writing to whom = valuable metadata. Compulsory telephone numbers Even today, Signal still demands that you give out your mobile phone number and this will always remain the case (I've been saying this for 6 years). This reveals your complete identity, because in the EU all mobile numbers must be registered by name. And if not, government services can query device and location data via “silent SMS” without the user being aware of it. All of this together (cloud storage, compulsory mobile phone numbers and CloudAct.) gives a very detailed user picture, which works into the arms of the US services. If you want to know how to do it right, take a look at Threema, the messenger that can be used 100% anonymously: Threema does not use any third-party (cloud) services, but runs everything via its own server. Messages are only stored until they have been successfully delivered. Then they are deleted. And most importantly: Threema does not store any metadata or IP's! Quasi confirmed in court here (translate for yourself)

Neue Zürcher Zeitung

Threema wehrt sich erfolgreich gegen staatliche Überwachung

Die Überwachungsbehörde des Bundes wollte Zugriff auf die Metadaten der Messenger-App Threema erhalten und dafür einen Teil der Verschlüsselung...

If you want to communicate securely and anonymously without leaving any traces on the operator's infrastructure, there's no way around Threema. There are no “free” messengers. You always have to pay - either with your privacy or, as with Threema, with a few euros in return for not storing anything about you. The latter is clearly the better option.

Disappearing Messages are false security! Even if a message has disappeared from the chat, it remains in the notification log of the cell phone operating system, for example, and can be read by third parties using simple means. This gives you a false sense of security.