this post was submitted on 04 Dec 2024

386 points (99.2% liked)

Technology

59770 readers

4140 users here now

This is a most excellent place for technology news and articles.

Our Rules

Follow the lemmy.world rules.
Only tech related content.
Be excellent to each another!
Mod approved content bots can post up to 10 articles per day.
Threads asking for personal tech support may be deleted.
Politics threads may be removed.
No memes allowed as posts, OK to post as comments.
Only approved bots from the list below, to ask if your bot can be added please contact us.
Check for duplicates before posting, duplicates may be removed

Approved Bots

founded 2 years ago

MODERATORS

386

U.S. officials urge Americans to use encrypted apps amid unprecedented cyberattack (www.nbcnews.com)

submitted 15 hours ago by WhatsHerBucket to c/technology

112 comments fedilink hide all child comments

top 50 comments

sorted by: hot top controversial new old

[–] SocialMediaRefugee 1 points 10 minutes ago

I use a one time pad with all of my contacts. I ask them to eat or burn each page when they are used up.

[–] [email protected] 19 points 2 hours ago* (last edited 2 hours ago) (1 children)

until the republicans ban them so they can find queer kids and pregnant people getting healthcare and people reading books

[+] surph_ninja -17 points 1 hour ago* (last edited 1 hour ago) (3 children)

All that happens under Dems, too. Stop giving them a pass.

Y’all keep hitting that downvote button. I’d like to know how many of you are ok with fascism when it’s a Dem at the helm.

[–] [email protected] 7 points 42 minutes ago (1 children)

Yup. The Apple-FBI encryption dispute started under Obama, as did the Snowden leak.

Neither party is particularly pro-encryption, because governments in general see encryption by the public a hurdle for their operations (i.e. you don't need encryption if you have nothing to hide).

Encryption isn't a partisan issue, and my understanding is that both major parties suck about equally on this issue.

[–] surph_ninja 3 points 30 minutes ago (1 children)

It’s a wonder they’re not also trying to outlaw printing presses at this point. They openly believe that we are not entitled to private conversations.

[–] Bytemeister 2 points 18 minutes ago* (last edited 17 minutes ago)

Printing press is okay. One-time-code books are tantamount to treason!

[–] [email protected] 7 points 1 hour ago (1 children)

The Snowden leaks came out when Obama was president. Obama was the one who said, "The only people who don't want to disclose the truth are people with something to hide". The republicans and democrats are the same fucking people.

[–] MJKee9 0 points 11 minutes ago (1 children)

Only if you look at it in the most general, limited, pov. Are they the same people on corporate greed? Not all, but mostly yes. Are they the same people on encryption? Yes. Are they the same on human rights? Absolutely fucking not. If the only thing important for you is encryption, voting isn't going to change the government's policy decisions. However, if things other than encryption and corporate greed are important, then voting for a Republican is voting against your interests. History is filled with people who can't see past their own fucking biases and look out for the greater interest..... So you have a lot of historical company.

[–] [email protected] 0 points 6 minutes ago

Dude we're talking about encryption here. Stay on fuckin topic.

[–] rottingleaf 2 points 1 hour ago

As if most of the legal provisions for widespread surveillance were not done under Clinton administration.

[–] [email protected] 19 points 2 hours ago

On January 20th: The cyberattack is coming from inside the house!

Dumbfuck and his cronies now have access to PRISM and ECHELON. Again.

[–] PagingDoctorLove 4 points 1 hour ago (4 children)

Question for more tech savvy people: should I be worried about wiping old data, and if so for which apps? Just messaging apps, or also email and social media? Or can I just use the encrypted apps moving forward?

[–] [email protected] 1 points 6 minutes ago

That depends on the privacy protections where you live and the policies of each service:

most places in the US - they already have your data and aren't obligated to delete it
outside the EU - probably the same as the US
the EU or select states (e.g. CA) - you have some protections and a legal obligation to honor delete requests

For the first two, I wouldn't bother. I personally poisoned my data with Reddit before leaving, because I've heard of then reversing deletions. For the third, deleting may make sense.

But in general, I'd keep your other accounts open until you fully transition to the new one.

Below is information when considering a replacement service.

Anything where data is stored on a server you don't directly control can be leaked or subpoenad from the org that owns that server. Any unencrypted communication can be intercepted, and any regular encryption (HTTPS) can be logged by that server (e.g. under court order without notifying the customer).

Even "secure" services can be ordered to keep logs. Here's an example from Proton mai, and here's one involving Tutanota.

So it depends on your threat model, or in other words, who you're trying to keep away from your data. Just think about how screwed you might be if:

a hacker dumps the servers data
a police agency secretly orders recording of data and metadata
someone steals your device
the police confiscate your device

The answers to the above should help you decide which to type of service you'd feel comfortable with, and what tradeoffs you're willing to make.

[–] kava 1 points 41 minutes ago (1 children)

the safest perspective to have is this -

every single thing you send online is going to be there forever. "the cloud" is someone's server and constitutes online. even end to end encryption isn't necessarily going to save you.

for example iCloud backup is encrypted. but Apple in the past has kept a copy of your encryption key on your iCloud. why? because consumers who choose to encrypt and lose their passwords are gonna freak out when all their data is effectively gone forever.

so when FBI comes a'knocking to Apple with a subpoena.. once they get access to that encryption key it doesn't matter if you have the strongest encryption in the world

my advice

never ever ever write something online that you do not want everybody in the world seeing.

to put on my tin foil hat, i believe government probably has access to methods that break modern encryptions. in theory with quantum computers it shouldn't be difficult

[–] [email protected] 2 points 21 minutes ago

I'd imagine operating a quantum computer for blanket surveillance is cost-prohibitive, but yea, if you've given them reason to look at you just assume they have the means to break your encryption.

[–] [email protected] 1 points 52 minutes ago

just wanted to add that deleting an app will not result in deletion of your data stored in the cloud (e.g. your emails)

[–] [email protected] 1 points 1 hour ago

Wiping old stuff won't hurt, but they might not actually delete it.

[–] phoneymouse 140 points 9 hours ago (7 children)

The US Govt 5 years ago: e2e encryption is for terrorists. The govt should have backdoors.

The US Govt now: Oh fuck, our back door got breached, everyone quick use e2e encryption asap!

[–] [email protected] 1 points 4 minutes ago

More like 23 years ago when the Patriot Act was signed, and every time it has been re-authorized/renamed since. Every President since Bush Jr. is complicit, and I'm getting most of them in the previous 70-ish years (or more) wish they could've had that bill as well.

[–] theherk 21 points 7 hours ago (4 children)

Different parts of the government. Both existed then and now. There has for a long time been a substantial portion of the government, especially defense and intelligence, that rely on encrypted comms and storage.

load more comments (4 replies)

load more comments (5 replies)

load more comments