ioc.exchange is one of the many independent Mastodon servers you can use to participate in the fediverse.
INDICATORS OF COMPROMISE (IOC) InfoSec Community within the Fediverse. Newbies, experts, gurus - Everyone is Welcome! Instance is supposed to be fast and secure.

Administered by:

Server stats:

1.6K
active users

#e2ee

35 posts29 participants4 posts today

I said it before on Mastodon. I'm reposting this again. Comparing #DeltaChat and #Matrix together, if you want hassle free and consistent messenger for private #E2EE chats, don't go for Matrix. DeltaChat is way better.

However, if you want something like a public forum, or a public chatroom, don't go for DeltaChat. Matrix is way better suited for that. And DeltaChat does not support public groups at all. In DeltaChat groups, there is no admin or moderator and everyone have got permission to remove or add the others.

I think I have to write a longer post on my personal blog about these two, comparing them together.

PS: Another Matrix encryption bug few minutes ago triggered repost of this.

#EuropeanCommission takes aim at end-to-end #encryption & proposes #Europol become an #EU #FBI

The European Commission announced on Tues its intention to join the ongoing debate about lawful access to data & end-to-end encryption while unveiling a new internal #security strategy

#ProtectEU , as the strategy has been named, describes the general areas that the bloc’s executive would like to address … although …does not offer any detailed policy proposals
#e2ee

therecord.media/european-commi

therecord.mediaEuropean Commission takes aim at end-to-end encryption and proposes Europol become an EU FBIThe Commission said it would create roadmaps regarding both the “lawful and effective access to data for law enforcement” and on encryption.
Replied in thread

@bontchev
From the "on ProtectEU: a European Internal Security Strategy" document:

"[...] a framework for access to data which responds to the needs to enforce our laws and protect our values is essential. At the same time, ensuring digital systems remain secure from unauthorised access is equally vital to preserve cybersecurity and protect against emerging security threats. Such access frameworks must also respect fundamental rights, ensuring inter alia that privacy and personal data are adequately protected."

and

"the preparation of a Technology Roadmap on encryption, to identify and assess technological solutions that would enable law enforcement authorities to access encrypted data in a lawful manner, safeguarding cybersecurity and fundamental rights."

--> this roadmap should be published in the first half of 2025.

Crypto wars reloaded

#e2ee#privacy#cyber

We would like to endorse what @kuketzblog writes about the inclusion of an “AI assistant” into an instant messenger that is still widely used:

It is unfortunate that many journalists do not realise how dangerous the new AI in WhatsApp really is. Der Spiegel, for example, writes in a recent article: “Meta AI does not have access to users' private chats, however, thanks to end-to-end encryption.” As a matter of fact, the AI does have access as it is used in the context of private chats or group chats. Sadly, this misinformation lulls users into a false sense of security. 🤦

Source (in German): social.tchncs.de/@kuketzblog/1

MastodonMike Kuketz 🛡 (@kuketzblog@social.tchncs.de)Es ist bedauerlich, dass viele Journalisten nicht erkennen, wie gefährlich die neue KI in WhatsApp wirklich ist. Der Spiegel schreibt bspw. in einem aktuellen Beitrag: »Zugriff auf Privatchats von Usern hat Meta AI jedoch nicht, dank der Ende-zu-Ende-Verschlüsselung.« Dabei hat die KI durchaus Zugriff, wenn sie im Kontext privater Chats oder Gruppenchats verwendet wird. So verbreiten sich leider Falschinformationen, die Nutzer in falscher Sicherheit wiegen. 🤦
#whatsapp#ai#e2ee

»Gmail Gets End-To-End Encryption From Google As 21'st Birthday Present:
[…] Google Claims To Have Invented An Entirely New Type Of Encryption For Gmail Users […]«

This is not an April joke and yes Google offers OpenPGP for Gmail Accounts. This is not difficult to set up but too many people are too lazy in my opinion.

📧 forbes.com/sites/daveywinder/2

ForbesGmail Gets End-To-End Encryption From Google As 21st Birthday PresentAs Gmail turns 21, Google has announced it is bringing end-to-end encryption to the email party. Here's what you need to know.
#e2ee#openpgp#email

Après avoir bénéficié à ses débuts d'une aura cool, Google est devenu le pire ennemi du web, créant des jardins fermés pour surveiller ses utilisateurs.
Nouvel exemple avec un soi-disant chiffrement end to end dont ils gardent un double des clés.
⤵️
korben.info/gmail-nouveau-chif
De quoi balkaniser et merdifié encore plus le web et faire perdre confiance aux utilisateurs.
(sinon pour du vrai E2EE qui juste marche il y a Delta Chat delta.chat/fr/ )

#Google
#Enshitification
#E2EE
#DeltaChat

Le site de KorbenGmail révolutionne le chiffrement des emails - Ah bon ? | Le site de KorbenVous connaissez cette nouvelle blague au sujet des ingénieurs de chez Google ? Et bien ils ont inventé un nouveau type de chiffrement ...
Continued thread

Privacy Guides is formally taking a stand against dangerous and frightening technologies.

Security-focused developers and misguided "advocates" have long attempted to convince those involved in privacy and security that E2EE is an advanced security measure designed to protect your sensitive data, and Privacy Guides has stood by for far too long not setting the record straight.

privacyguides.org/articles/202

www.privacyguides.org · The Dangers of End-to-End Encryption
More from Privacy Guides