Page 1 2
Go | New | Find | Notify | Tools | Reply | |
Nullus Anxietas |
Didn't find this posted here, yet, so... Full article: FBI warns texts between Android and iPhone users pose cyber risk Note this is a telcom provider issue, not an issue with either iOS or Android, per se. (Objections, vis-a-vis Apple's RCS foot-dragging, noted.) My recommendation, as always, is to always use Signal Private Messenger. Everything's always E2EE (end-to-end encrypted), regardless of end-point platforms. "America is at that awkward stage. It's too late to work within the system,,,, but too early to shoot the bastards." -- Claire Wolfe "If we let things terrify us, life will not be worth living." -- Seneca the Younger, Roman Stoic philosopher | ||
|
Baroque Bloke |
Whoa! Welcome back ensigmatic! Serious about crackers | |||
|
| Nullus Anxietas |
Thanks, Pipe Smoker  "America is at that awkward stage. It's too late to work within the system,,,, but too early to shoot the bastards." -- Claire Wolfe "If we let things terrify us, life will not be worth living." -- Seneca the Younger, Roman Stoic philosopher | |||
|
Optimistic Cynic |
I think calling the interception of personal communications a "cyber risk" is a bit of a stretch. It is not like the miscreant gains control of a user's device, passwords, encryption keys, etc. So they can read your texts, listen in on your calls...isn't that what our Govt. has been doing for decades? Oh, maybe the bad guys are listening in to Govt. calls? That can hardly be allowed. | |||
|
| Member |
They may be clever enough to intercept my texts... are they clever enough to decipher the spelling errors? === I would like to apologize to anyone I have *not* offended. Please be patient. I will get to you shortly. | |||
|
| Member |
My texts are valueless to anyone but myself and my wife. I doubt China cares that I'm on the way home or my wife is on aisle 18. | |||
|
Member |
Or what she is bringing for supper... Collecting dust. | |||
|
Coin Sniper |
Yes, because the FBI has been so trustworthy of late... Pronoun: His Royal Highness and benevolent Majesty of all he surveys 343 - Never Forget Its better to be Pavlov's dog than Schrodinger's cat There are three types of mistakes; Those you learn from, those you suffer from, and those you don't survive. | |||
|
| Member |
One article I read (I didn't save it so no link, sorry) stated that there were significantly more interception attempts in the area around Washington. "I, however, place economy among the first and most important republican virtues, and public debt as the greatest of the dangers to be feared." Thomas Jefferson | |||
|
| Nullus Anxietas |
You might be surprised. Bear with me for a moment, if you will. I'm sure you're aware of the "Loose lips sink ships" trope from WWII. That warning was meant to apply not to just sailors, but their friends, families, people who worked in shipyards, their friends and families, etc. Pretty much just about everybody. Why? Because with enough disparate information from enough sources a sharp analyst with a good memory could piece them together and create a whole. In this day-and-age, with the advent of AI (which isn't really intelligence, per se, but that's another discussion), it's trivial to do the same--inputting essentially everything one can and letting the AI make associations. The point being: While your domestic habits, taken in isolation, may be mind-numbingly mundane, when pieced-together with millions-upon-millions of other bits of mundane, and maybe not so mundane information, could be useful to somebody, somewhere, at some time. (Yes: I'm above-average paranoid and have a vivid imagination.) The other part of this equation is this: If you can frustrate eavesdropping, you should do so just on General Principles. Every bit of effort bad actors have to spend on discovering anything, no matter how useless, takes that much more away from their efforts to discover something useful. Put more simply: If the only people to encrypt their communications are people who need to encrypt their communications, the bad guys know upon whom to concentrate their efforts. Further: For years elements within various governments, including our own, have been attempting to pass laws to force providers of encrypted information tools to build back doors into them so those governments could access the decrypted information at will. Just as leftists suddenly discovering the advantages of gun ownership aids the RKBA, everybody developing a fondness for reliable information encryption makes it just that much more difficult for those actors to make their case, because there'll be that many more people opposed to their efforts. Lastly: Circling back to WWII: Make no mistake: In many ways we are at war. There is that, too. "America is at that awkward stage. It's too late to work within the system,,,, but too early to shoot the bastards." -- Claire Wolfe "If we let things terrify us, life will not be worth living." -- Seneca the Younger, Roman Stoic philosopher | |||
|
goodheart |
Ensigmatic, welcome back, and I have a question for you. Apple's iOS now supports RCS (Rich Communication Services), as the article linked explains. Apple users should check to see if RCS is turned on; I see RCS listed when I get a message from an Android user (my daughter and her husband, unfortunately!). Doesn't this make the original post obsolete? Or are there potential issues with cellular providers? Thanks How to enable RCS for secure cross-platform messaging _________________________ “Remember, remember the fifth of November!" | |||
|
His Royal Hiney |
I suppose the risk is not just to any one individual node (person) in the network but the risk is the whole network is being surveilled, not just by our own government, but by other countries such as China. "It did not really matter what we expected from life, but rather what life expected from us. We needed to stop asking about the meaning of life, and instead to think of ourselves as those who were being questioned by life – daily and hourly. Our answer must consist not in talk and meditation, but in right action and in right conduct. Life ultimately means taking the responsibility to find the right answer to its problems and to fulfill the tasks which it constantly sets for each individual." Viktor Frankl, Man's Search for Meaning, 1946. | |||
|
quarter MOA visionary |
Whoa! is right, welcome back. | |||
|
| Not as lean, not as mean, Still a Marine  |
Samsung just pushed us to Google messages, which supports encryption with a wider range of devices (Iphone included) Not all messages are though, it depends on the particular devices being used. It does let you know if the message is secure, but yo udo have to look. I shall respect you until you open your mouth, from that point on, you must earn it yourself. | |||
|
| Nullus Anxietas |
Thanks! Maybe. Maybe not. As the article notes: With some you may get RCS, with others you won't. When I exchange text messages with one of my best friends on Android it says "Text Message • SMS" ¯\_(ツ)_/¯ Thanks! Signal (Private Messenger) on Android originally allowed one to specify using Signal's app for all texting: SPM as well as SMS/MMS. They removed that capability a year or two ago because they felt different-colored texts, based on whether the messaging was secure or not, wasn't secure enough. This is the same problem Apple has had with iMessage all along. Too many people didn't understand why there was a green vs. blue. Thought it was a way for Apple/Apple users to distinguish themselves from "lowly Android users." When, in reality, it was to inform Apple users when their messaging was secure or not. Or so Apple claimed. Even with the advent of RCS and the possibility of secure E2EE messaging between iThings and other platforms, Apple plans to retain the blue/green thing for Apple/non-Apple messaging. So maybe the critics have had a point all along, after all  "America is at that awkward stage. It's too late to work within the system,,,, but too early to shoot the bastards." -- Claire Wolfe "If we let things terrify us, life will not be worth living." -- Seneca the Younger, Roman Stoic philosopher | |||
|
| Thank you Very little  |
So, would that mean if someone breaks into your home, rifles through your stuff, reads all your bills, letters, will, whatever you have, goes through your wifes personal drawers, but doesn't steal anything, well, that's ok since its nothing of real importance.... The real issue is that they broke into peoples personal devices, it doesn't matter if you have national secrets or just text about the grandkids and what you need from the grocery... | |||
|
| Left-Handed, NOT Left-Winged! |
All this is telling us is that SMS text is not secure. Never has been. Apple's iMessage is encrypted and pretty secure, and available on all iPhone-to-iPhone messages. And it works internationally even if you swap SIM cards because it's tied to your Apple ID. Also works on Macs and iPads. iPhone to Android has been SMS for a long time, and I get frustrated with people that only use SMS and no other apps that are more secure. RCS should improve things. | |||
|
| Member |
We don’t have to get to broad conspiracy levels. The biggest reason why this is important has nothing to do with Android-iPhone communications. It’s MFA tokens. “Send a code to this number” after login. -- I always prefer reality when I can figure out what it is. JALLEN 10/18/18 https://sigforum.com/eve/forum...610094844#7610094844 | |||
|
| Member |
Though Call Detail Records (CDR) are excellent for building pictures of activity. As evidenced from the divorce subpoenas I used to send them in for. -- I always prefer reality when I can figure out what it is. JALLEN 10/18/18 https://sigforum.com/eve/forum...610094844#7610094844 | |||
|
| Member |
the exposure is Apple to Android communication right? MFA tokens aren't sent between devices so I'm not sure how that would be impacted other than most are still just SMS and those have always been in the clear. I reject your reality and substitute my own. --Adam Savage, MythBusters | |||
|
| Powered by Social Strata | Page 1 2 |
 | Please Wait. Your request is being processed... |
|
© SIGforum 2024