undefined

points

[-]

This happened to my girlfriend and me twice on Messenger. On two consecutive nights, we heard a male voice with an American accent speaking as if he were talking to someone else, almost like they were conducting some kind of operation. It seemed as though he suddenly realized that we could hear him, after which the voice abruptly disappeared. The following night, it happened again, but this time the voice sounded like that of an African American woman. The situation was similar to the previous night. From that night, we have not used it to communicate and used Signal instead.

by prox3 hours ago|

parent|

[-]

You mean like a voicecall on Messenger? That is creepy.

by root_axis2 hours ago|

parent|

prev|

[-]

What do you imagine was going on here?

by john_strinlai4 hours ago|

prev|

[-]

one thing to consider is how just the optics of major players using e2e was an overall benefit.

people who otherwise would have gone their entire lives without ever hearing about encryption were exposed to the term and the marketing convinced them that encryption and privacy was a valuable thing, even if they didnt fully understand the mechanisms or why e2e might not necessarily be very effective in specific circumstances.

later, when presented between option a and option b, where one has encryption and the other doesnt, they are more likely to choose the one with it ("well, if instagram and facebook use it and say it is good...")

by GoblinSlayer2 hours ago|

parent|

[-]

And Big Brother realized this optics was a mistake.

by gzread4 hours ago|

parent|

prev|

[-]

If someone's given the choice between say Instagram and IRC, and chooses Instagram because they heard it has E2EE, that's a loss.

by john_strinlai4 hours ago|

parent|

[-]

perfect is the enemy of good, etc etc.

between signal and plain text, it is easier to convince friends to use signal if they see positive marketing about encryption on other popular apps they use. it is easier to convince them to encrypt their backups before uploading them to their google drive. hell, its just a good conversation starter to introduce encryption/online privacy to people that never really think about it. that type of thing.

those same friends are not going to use irc regardless. not really a loss if it was never even on the table.

by 4 hours ago|

parent|

prev|

[-]

deleted

by mnahkies2 hours ago|

prev|

[-]

I don't disagree, but I think there is a distinction between "everything is e2ee, but specific conversations may be MiTM without detection" and "nothing is e2ee and can be retrospectively inspected at will" that goes a little beyond security theatre - makes it more analogous to old fashioned wiretaps in my mind.

Obviously it involves trust that it isn't actually "we say it's e2ee but actually we also MiTM every conversation"

by dgrin911 hours ago|

prev|

[-]

One of the scary things is that not even this really works. Ignoring supply chain attacks, most people treat any client as effectively black box. When was the last time you read through the code of a messaging app? How do you know its safe? Maybe _you_ read through it, but 99% of people don't.

by Synaesthesia3 hours ago|

prev|

[-]

It's all about trust at the end of the day. And given that it was exposed that Apple, Microsoft, Meta, Google etc all collaborated with the US government to provide surveillance (PRISM) by Edward Snowden, how we can trust them ever again?

by fragmede9 minutes ago|

parent|

[-]

Did they collaborate? Google freaked out when Snowden revealed what the NSA was doing.

by chis4 hours ago|

prev|

[-]

E2E encryption lets Meta turn down government subpoenas because they can say they truly don't have access to the unencrypted data.

I can't say I really mind this change by Meta that much overall though. Anyone who's serious about privacy probably knew better than to pick "Instagram chat" as their secure channel. And on the other hand having the chats available helps protect minors.