Slashdot Mirror

← Back to Stories (view on slashdot.org)

Why You Should Stop Using Telegram Right Now (gizmodo.com)

Posted by msmash on from the curious-case-of-Telegram dept.

Earlier this week, The Intercept evaluated the best instant messaging clients from the privacy standpoint. The list included Facebook's WhatsApp, Google's Allo, and Signal -- three apps that employ end-to-end encryption. One popular name that was missing from the list was Telegram. A report on Gizmodo sheds further light on the matter, adding that Telegram is riddled with a wide range of security issues, and "doesn't live up to its proclamations as a safe and secure messaging application." Citing many security experts, the report states:One major problem Telegram has is that it doesn't encrypt chats by default, something the FBI has advocated for. "There are many Telegram users who think they are communicating in an encrypted way, when they're not because they don't realize that they have to turn on an additional setting," Christopher Soghoian, Principal Technologist and Senior Policy Analyst at the American Civil Liberties Union, told Gizmodo. "Telegram has delivered everything that the government wants. Would I prefer that they used a method of encryption that followed industry best practices like WhatsApp and Signal? Certainly. But, if it's not turned on by default, it doesn't matter."The other issue that security experts have taken a note of is that Telegram employs its own encryption, which according to them, "is widely considered to be a fatal flaw when developing encrypted messaging apps." The report adds:"They use the MTproto protocol which is effectively homegrown and I've seen no proper proofs of its security," Alan Woodward, professor at the University of Surrey told Gizmodo. Woodward criticized Telegram for their lack of transparency regarding their home cooked encryption protocol. "At present we don't know enough to know if it's secure or insecure. That's the trouble with security by obscurity. It's usual for cryptographers to reveal the algorithms completely, but here we are in the dark. Unless you have considerable experience, you shouldn't write your own crypto. No one really understands why they did that."The list goes on and on.

28 of 68 comments (clear)

  1. It should be obvious... by __aaclcg7560 · · Score: 5, Funny

    The railroads are still here. Shouldn't be surprising that telegrams are still around almost two centuries later.

    https://en.wikipedia.org/wiki/Telegraph

    1. Re: It should be obvious... by __aaclcg7560 · · Score: 2, Interesting

      Nice try OP, your comment was straight garbage.

      I never post as AC. I don't have problem standing behind my opinions. Unlike some people.

    2. Re: It should be obvious... by __aaclcg7560 · · Score: 1, Offtopic

      *except when I'm forced to because my comments are the best. ;)

      Yawn...

  2. Security by obscurity is fine by Anonymous Coward · · Score: 1

    Publicly criticizing them and their users, is not.

    1. Re:Security by obscurity is fine by NotInHere · · Score: 5, Informative

      Also, it does not at all apply here. Telegram not just publishes documentation how their protocol works, but it also releases the full source code: https://telegram.org/apps#sour...

      So even if the mtproto documentation would have a flaw or be not precise enough to fully specify the behaviour (and that often happens!), you could still look into the source code to find out what actually happens.

  3. Why I *do* use Telegram by NotInHere · · Score: 4, Interesting

    Its the only messenger that:

    1. can be used without gapps spyware
    2. is halfway popular
    3. has the source code released under a open source license
    4. has authors who tolerate third party clients connecting to their server. This is not the case for Whatsapp, and also not the case for signal

    Thanks to 1 and 3, telegram is available in the f-droid app store. This is why I use it, and I don't want to install software from third party stores like google play or sideload apps.

    Yes, the encryption is not perfect, but I prefer that over having to install google spyware that would be required for signal for example.

    1. Re: Why I *do* use Telegram by amiga3D · · Score: 3, Insightful

      It's not paranoia if they really are out to get you.

    2. Re: Why I *do* use Telegram by NotInHere · · Score: 1

      Well, if I were a dissident or something, then I wouldn't use telegram, but probably signal or something else.

      But I am more concerned about software freedom, and avoiding google proprietary apps on my phone. And for that, telegram is the only choice. There are other messengers which use proper encryption and value freedom as well, but they are even less popular than telegram.

      I do not say that telegram is perfect or that its encryption is safe (I can't tell for myself), but for me personally its better than signal or something else.

    3. Re: Why I *do* use Telegram by HornyBastard · · Score: 1

      Just because you're paranoid, it does not mean they are not out to get you

      --
      Death has been proven to be 99% fatal in lab rats.
    4. Re: Why I *do* use Telegram by johanw · · Score: 5, Informative

      You could always use Silence (https://github.com/SilenceIM/Silence): it is a fork of Signal that uses only sms/mms, so no gapps required or used. They forked after Signal dropped the encrypted sms option.

    5. Re:Why I *do* use Telegram by NotInHere · · Score: 1

      1) GCM client libs are open source. https://github.com/google/gcm You interact with GCM through a REST or XMPP API. You can trivially swap out GApps for one of the GCM-only alternatives, rebuild Signal, and point it to OWS's servers. (If you're building Signal from scratch and using it, rather than repackaging it and advertising it as something other than Signal, OWS is perfectly happy for you to point your client at their servers.)

      Maybe OWS would agree with that, but would google? Is use of the GCM service legal if you don't have a valid gapps license?

      Also, I don't really know where OWS draws the line, whether a howto posted somewhere on the internet how to download + build without gapps is okay, or whether pushing the modifications to a git repo somewhere is okay. At which degree does it become a separate "product"?

      Also, if you donwload via git and build it yourself with your own modifications, then its surely harder to update than if you just download the updated version from some fork, which may be updated in a faster fashion. Lagging behind is the major critique points of forks by moxie.

      Also, part of the reasons why OWS doesnt want an f-droid build of the app apply for "download from upstream git + do the modifications yourself" as well: you can always switch to older versions.

      2) If you're concerned about traffic analysis, *anyone* between you and your conversation partner can snarf that data. Signal (and others) protects your conversation contents, not your addressing information. Thwarting a dedicated traffic analysis adversary is *very* hard, and Signal (and every other such messenger) has *always* claimed to protect only conversation contents, rather than addressing information.

      I am not against sending addressing information to OWS, but I am against sending addressing information to google. It will end up in the government's hands any way, but OWS won't use the info for ad profiling and similar things. Google is fairly nice with the data of its users, but still i prefer to not hand it over in such a dependent way.

      3) If you don't trust Google enough to send securely-encrypted data through their data shipping service, you should absolutely *not* be using an OS that they author. After all, GOOGLE HAS ROOT on EVERY Android image that they sign and has authored an ENORMOUS quantity of the code running as root in any Android image.

      There is a difference between sending unique ids to a service which google owns, and using their operating system. I doubt that google has any reason to put backdoors or something into its source code.

    6. Re: Why I *do* use Telegram by Koen+Lefever · · Score: 1

      It's not paranoia if they really are out to get you.

      That's not Telegram but Telefon.

      --
      /. refugees on Usenet: news:comp.misc
    7. Re:Why I *do* use Telegram by maztuhblastah · · Score: 2

      You mean aside from Silence, which

      1) Is entirely open source.

      2) Is based on SMS, not IP (plus or minus, depending on whether you view SMS as being the more universally-available transport in your area)

      3) Does not have a central server.

      4) Supports easy, in-person key exchange.

      5) Requires no Google anything, and is the default messaging app for several Android spins that have no Google integration.

      --
      The real litigious bastards...
    8. Re: Why I *do* use Telegram by corychristison · · Score: 1

      I use Telegram for.convenience. Not because sharing gifs with my wife needs to be ultra secure, or anything.

      Having clients available everywhere is what got my attention also the fact it "Just Worksâ" for my needs.

    9. Re:Why I *do* use Telegram by NotInHere · · Score: 1

      Yes. Read the official GCM (now called FCM) docs.

      You seem to know the situation far better than me, so its probably easier for you to navigate around. Can you give a specific link or something?

      you can do a bit of digging to find the relevant GitHub Issues where Moxie has spoken about the issue.

      It would be best to have a list of stuff moxie right now considers as okay or not somewhere on github or sth, his opinions on matters do change. If he said something three years ago then that may be something completely different.

      Probably the advantage is on my side, due to me doing the customisations just for me, I probably succeed to stay under the radar, and won't get noticed by any of the OWS people. Still, I'd prefer to be on the "green" side rather than relying on a patchwork of hacks.

      Set a cron job to "git pull master" once an hour and send you a message when there are changes. You could even have the cron job merge the changes and build a new image for ya, too. You can use all *sorts* of automation to make keeping up with changes trivial when you don't have to worry about keeping other people's systems up-to-date.

      This might be the kind of thing that gentoo and lfs users do like to do, but I do not. I am more the debian style person where the distro provides me with a build that has been aligned with some criteria. The f-droid criteria are very minimal, they only require the app to be fully open source. But moxie seemingly rejects it because he thinks the criteria aligned build is another product, and because he doesn't like some aspects about f-droid.

      I mean its perfectly fine if there is no signal app in f-droid. If moxie doesn't want an app to connect to his network service for any reason, then that's his choice as the owner of the network service. Its against the thought of the open internet and many things that were developed there, but I also understand that maintaining and scaling the service costs money, and this whole "developing protocols" argument. I'd say as long as third party builds of signal are in a tiny minority, it won't matter much for the service to do hard breaks of the protocol, forcing the maintainers of the third party builds to update it, but seemingly moxie has another position on this.

      I mean before he interacted with cyanogen, which he had a contract or at least a deal with. But to third party open source projects he can be as mean as he wants, and suddenly migrate all the service infrastructure, without asking or waiting for those third parties. As he is in control of most of the network, nobody will really care.

      But I won't use signal. I've had an app with custom patches applied before, and from that experience I know that updating it isn't really joyful. Maybe its different for gentoo users. I'm not one of them.

      what's to say that Android(TM) images don't contain baked-in spyware that's not included in the AOSP repo?

      I am not using manufacturer provided ROMs, but third party ones where the sources are all available. I trust the third parties, just as I trust my linux distribution vendor. You need a trust anchor *somewhere*.

    10. Re:Why I *do* use Telegram by NotInHere · · Score: 1

      Well SMS has lots of bad properties, one being that lots of bad guys have access to at least metadata.

      Also, it costs money. If you tell your contacts "look this costs money", they surely won't like it.

      SMS is alot like the CA system in many ways: outdated, overpriced, old, insecure and broken.

    11. Re:Why I *do* use Telegram by MRZA · · Score: 1

      Why I don't use Telegram:
      It knows my phone number. All this crypto is useless then you are not anonymous.
      It's centralized. It's very bad idea to use centralized services because it's a weak point. Use only federated services.

    12. Re:Why I *do* use Telegram by NotInHere · · Score: 1

      Well yes anonymity is a problem about phone numbers, but they are really convenient to use for most users. Their whole address book can be re-used if you have the phone number.

      And about centralisation: centralized services are as well more convenient for the users. With federation you will need an @ some way or another (or you will get totally randomly generated usernames, which is shit too). The only escape here seems to be namecoin, but then your address info is public, which maybe is something not everybody will want. Also, namecoin is a giant energy waste, and more than 90% of the bitcoin hashing power is controlled by less than 15 chinese individuals, so it isnt really distributed either these days.

    13. Re:Why I *do* use Telegram by derrickoswald · · Score: 2

      Is it just me or does anyone else view the timing between these reports and Google I/O a month ago launching Allo a little suspicious?

      Alphabet marketing person: "Yeah, it would be good in the timeline if there was a review the month after I/O, to legitimize Allo as one of the major players in the messaging App space."
      Intercept editor: "The optics wouldn't be good if it was just a review of one App. We could do a comparison of the 'top ten' Apps."
      Alphabet: "Make it the 'top three'."
      Intercept: "We would have to have the review about security then, otherwise we couldn't legitimately include Allo."
      Gizmodo editor: "We could follow up with articles about the ones excluded, like FB Messenger and Telegram."

    14. Re:Why I *do* use Telegram by MRZA · · Score: 1

      I thinks it's a security problem if such apps have access to user's phonebook. On Android I always deny apps from accessing my phonebook. Why do they want to know my contacts? They shouldn't!

      In case of XMPP your username looks like yourname@someserver.tld. Looks like email. I see no problem here. Random IDs just give you more anonymity. You always have a choice.

  4. Asinine headline by goombah99 · · Score: 1

    DOn't we get enough one-weird-trick, and you-wont-believe-what-happened-next headlines elsewhere. Et tu, Slashdot?

    --
    Some drink at the fountain of knowledge. Others just gargle.
  5. Re: All right! by johanw · · Score: 1

    Yes, that's obvious an advertisement. However, I think "Allo" will become just as popular as Google+ or Hangouts - both have ignorable market shares in the messenger market. At lease Telegram has something of a user base. Signal is nice but their user base is too small yet. Fortunately WhatsApp uses their protocol now.

  6. Bullshit by Brethil · · Score: 1, Informative

    I'll just leave this here. https://telegram.org/faq#q-how...

  7. Better headline by dbIII · · Score: 5, Funny

    Why You Should STOP Using Telegram Right Now STOP

  8. No secure chat via computer, only phones by GrBear · · Score: 1

    I'm still curious why the option for "secure chat" in Telegram only exists for handsets, but not the desktop apps.

    1. Re:No secure chat via computer, only phones by jours · · Score: 1

      Best explanation seems to be that they were concerned about portability of the chats between desktop and handset (they wouldn't be.) There are 3rd party clients that implement it.

      --
      This sig intentionally left blank.
  9. Re:Crypto-snake-oil claims are overstated by RockDoctor · · Score: 1

    Given a choice between the advice of an AC and the advice of every encryption specialist I've heard of since Phil Zimmermann wrote his "snake oil" warnings in 1991 ... you know, I think I'll pass on the AC.

    --
    Birds are not dinosaur descendants;birds are dinosaurs, for all useful meanings of "birds", "are" and "dinosaurs"
  10. Yeah STOP OMG STOP PLEASE! by GeekWithAKnife · · Score: 1


    Remember, Telegram only promises high grade encryption for Secret Chats.

    This is something you get for free with Telegram and no big corporation can spy on you.

    Sorry, you should be very upset about the lack of spying in Secret chats. Stop using Telegram right now before you continue!

    You should immediately use WhatsApp which uses your data in ways that will make you shit yourself.

    Oh, and also; PLEASE PLEASE PLEASE stop using Telegram. A huge consortium of eaves dropping government bodies and gigantic greedy corporations know what's best for you.

    Thank you for your cooperation netizen.

    --
    A 'singular oddity' is an event that cannot be explained and only happens when you are alone.