Create accountLogin

Recent searches

No recent searches

Search options

Only available when logged in.
ioc.exchange is one of the many independent Mastodon servers you can use to participate in the fediverse.
INDICATORS OF COMPROMISE (IOC) InfoSec Community within the Fediverse. Newbies, experts, gurus - Everyone is Welcome! Instance is supposed to be fast and secure.

Administered by:

Server stats:

1.6K
active users

ioc.exchange: AboutStatusProfiles directoryPrivacy policy

Mastodon: AboutGet the appKeyboard shortcutsView source codev4.3.4

#e2ee

35 posts29 participants4 posts today
Public
Farooq | فاروق

I said it before on Mastodon. I'm reposting this again. Comparing #DeltaChat and #Matrix together, if you want hassle free and consistent messenger for private #E2EE chats, don't go for Matrix. DeltaChat is way better.

However, if you want something like a public forum, or a public chatroom, don't go for DeltaChat. Matrix is way better suited for that. And DeltaChat does not support public groups at all. In DeltaChat groups, there is no admin or moderator and everyone have got permission to remove or add the others.

I think I have to write a longer post on my personal blog about these two, comparing them together.

PS: Another Matrix encryption bug few minutes ago triggered repost of this.

#Element#IM#Messenger
Public
PrivacyDigest

#EuropeanCommission takes aim at end-to-end #encryption & proposes #Europol become an #EU #FBI

The European Commission announced on Tues its intention to join the ongoing debate about lawful access to data & end-to-end encryption while unveiling a new internal #security strategy

#ProtectEU , as the strategy has been named, describes the general areas that the bloc’s executive would like to address … although …does not offer any detailed policy proposals
#e2ee

therecord.media/european-commi

therecord.mediaEuropean Commission takes aim at end-to-end encryption and proposes Europol become an EU FBIThe Commission said it would create roadmaps regarding both the “lawful and effective access to data for law enforcement” and on encryption.
Replied in thread
Public
w00p

@bontchev
From the "on ProtectEU: a European Internal Security Strategy" document:

"[...] a framework for access to data which responds to the needs to enforce our laws and protect our values is essential. At the same time, ensuring digital systems remain secure from unauthorised access is equally vital to preserve cybersecurity and protect against emerging security threats. Such access frameworks must also respect fundamental rights, ensuring inter alia that privacy and personal data are adequately protected."

and

"the preparation of a Technology Roadmap on encryption, to identify and assess technological solutions that would enable law enforcement authorities to access encrypted data in a lawful manner, safeguarding cybersecurity and fundamental rights."

--> this roadmap should be published in the first half of 2025.

Crypto wars reloaded

#e2ee#privacy#cyber
Public
switching.software

We would like to endorse what @kuketzblog writes about the inclusion of an “AI assistant” into an instant messenger that is still widely used:

It is unfortunate that many journalists do not realise how dangerous the new AI in WhatsApp really is. Der Spiegel, for example, writes in a recent article: “Meta AI does not have access to users' private chats, however, thanks to end-to-end encryption.” As a matter of fact, the AI does have access as it is used in the context of private chats or group chats. Sadly, this misinformation lulls users into a false sense of security. 🤦

Source (in German): social.tchncs.de/@kuketzblog/1

MastodonMike Kuketz 🛡 (@kuketzblog@social.tchncs.de)Es ist bedauerlich, dass viele Journalisten nicht erkennen, wie gefährlich die neue KI in WhatsApp wirklich ist. Der Spiegel schreibt bspw. in einem aktuellen Beitrag: »Zugriff auf Privatchats von Usern hat Meta AI jedoch nicht, dank der Ende-zu-Ende-Verschlüsselung.« Dabei hat die KI durchaus Zugriff, wenn sie im Kontext privater Chats oder Gruppenchats verwendet wird. So verbreiten sich leider Falschinformationen, die Nutzer in falscher Sicherheit wiegen. 🤦
#whatsapp#ai#e2ee
Public
𝕂𝚞𝚋𝚒𝚔ℙ𝚒𝚡𝚎𝚕

»Gmail Gets End-To-End Encryption From Google As 21'st Birthday Present:
[…] Google Claims To Have Invented An Entirely New Type Of Encryption For Gmail Users […]«

This is not an April joke and yes Google offers OpenPGP for Gmail Accounts. This is not difficult to set up but too many people are too lazy in my opinion.

📧 forbes.com/sites/daveywinder/2

ForbesGmail Gets End-To-End Encryption From Google As 21st Birthday PresentAs Gmail turns 21, Google has announced it is bringing end-to-end encryption to the email party. Here's what you need to know.
#e2ee#openpgp#email
Public *
matiu bidule

Après avoir bénéficié à ses débuts d'une aura cool, Google est devenu le pire ennemi du web, créant des jardins fermés pour surveiller ses utilisateurs.
Nouvel exemple avec un soi-disant chiffrement end to end dont ils gardent un double des clés.
⤵️
korben.info/gmail-nouveau-chif
De quoi balkaniser et merdifié encore plus le web et faire perdre confiance aux utilisateurs.
(sinon pour du vrai E2EE qui juste marche il y a Delta Chat delta.chat/fr/ )

#Google
#Enshitification
#E2EE
#DeltaChat

Le site de KorbenGmail révolutionne le chiffrement des emails - Ah bon ? | Le site de KorbenVous connaissez cette nouvelle blague au sujet des ingénieurs de chez Google ? Et bien ils ont inventé un nouveau type de chiffrement ...
Continued thread
Public *
Open Rights Group

Encryption is essential for cybersecurity 🔐

The lack of protections for it in the UK Cyber Security Bill, coupled with the UK's encryption-breaching order against Apple, shows a lack of seriousness about the threats we face.

Sign and share our petition to send a message ⬇️

you.38degrees.org.uk/petitions

38 DegreesKeep our Apple data encryptedIt is reported that the Home Office has ordered Apple to build a backdoor into its encrypted services so that they can get hold of content that any Apple user has upload to the cloud. Encryption keeps our private information safe and secure. It’s essential for being safe online when sending messages, shopping, doing online banking – and for storing things safely in the cloud. With the Cabinet Office estimating the cost of Cyber Crime at £21BN a year to our economy, we can’t afford to make our...
#e2ee#encryption#cybersecurity
Continued thread
Public
Open Rights Group

“The UK cannot claim to be strengthening the country’s cyber defences while at the same time issuing notices to companies like Apple and demanding that they reduce the security of the services they offer."

🗣️ @JamesBaker – ORG Programme Manager.

computerweekly.com/news/366619

ComputerWeekly.com · Top cryptography experts join calls for UK to drop plans to snoop on Apple’s encrypted dataBy Bill Goodwin
#encryption#cybersecurity#cybersecuritybill
Public
Privacy Guides

Privacy Guides is formally taking a stand against dangerous and frightening technologies.

Security-focused developers and misguided "advocates" have long attempted to convince those involved in privacy and security that E2EE is an advanced security measure designed to protect your sensitive data, and Privacy Guides has stood by for far too long not setting the record straight.

privacyguides.org/articles/202

www.privacyguides.org · The Dangers of End-to-End Encryption
More from Privacy Guides
#EndToEndEncryption#E2EE#Security
ExploreLive feeds
About