Be cautious when using Telegram for important matters.
I recently examined a situation where confidential messages from high-ranking Moldovan officials were leaked through Telegram. Unlike WhatsApp and Signal, which offer end-to-end encryption by default, protecting your messages even in case of a SIM swap, Telegram does not offer the same level of security. A SIM swap or a breach in their system can lead to message leaks.
Despite advertising themselves as a "secure messaging" platform, Telegram lacks default end-to-end encryption, making it less secure than its competitors.
You may or may not trust these sources, however, even just the fact that at one point Durov was extremely afraid of being found by FSB, Telegram being the only network not blocked in Russia, and general embrace of Telegram by Russian propagandists, speaks for itself.
While this can be true, I'd be careful before making any inferences here.
For example, there's good research [1] on how FSB uses the fact that Telegram metadata is in the open to run counter-insurgency on occupied territories. This is likely among FSB's highest priorities - but there's no evidence that they have used some level of insider access or control (or at least that they are willing to burn it even on Ukraine).
Second, Telegram not being blocked is hardly an argument. Neither are Signal, WhatsApp or YouTube for example. Are all of these also controlled by the FSB? And the general embrace of z-propagandists is likely due the fact that Telegram is extremely popular all over post-Soviet space. As far as I know, pro-Ukrainian people use Telegram just as much, and just as much as a news source.
None of this is to say that Telegram is a good choice for a reasonably secure messenger or is trustworthy at all (and [1] lists some very convincing reasons for why it is not so). But "may be run by the feds" is a strong claim, and so far it is not supported by evidence.
>Telegram being the only network not blocked in Russia
This is not true. WhatsApp is still working. They banned facebook and instagram but not whatsapp. Viber, Signal, Threema, Wire still works, too. The only blocked currently, i think, is Line.
The recent events regarding the twitter files for example or the knowledge gained from snowden clearly show you that intelligence agencies worldwide are everywhere to be found where social activities are taking place
I’d be totally shocked if they were not. From their point of view setting up honeypots and tapping social media is an absolute no brainer, as is leveraging it for “active measures.”
All major intelligence agencies are probably neck deep in these activities.
Recently, in practice you need to use a second factor (Telegram originally only used one factor, your phone number, which was verified by sending a message or calling it.)
Someone added two clients while I was asleep around new year.
I kicked them out and threw in a password and they tried again (unsuccessfully :) next night.
Meanwhile, way bigger leaks has happened from WhatsApp over the years.
If security is important to you, use something that is made for security, like Signal or Matrix, not "good enough call it secure" like Telegram or "how much data can we get away with stealing" like any Meta product.
WhatsApp is proprietary software. Its implementation of OpenWhisper is quite likely to have been tampered with to allow gathering personal user data. If it were safe, it'd be Free Software.
? You may still find the dump of messages online. Is this enough of a proof for you?
Something that wouldn't happen if those officials were using WhatsApp or another app that has E2E encryption by default.
I'm honestly tired of everyone spreading all this misinformation about telegram and all these assumptions that lead everyone nowhere.
1. SIM Swap is a physical device security issue, not something that telegram or any other app for that matter, is responsible for. Telegram already provides cloud password, comments like these wouldn't ever mention it.
2. Telegram using cloud encryption instead of E2EE by default does not make it less secure. In fact, it only makes it secure in a different way. Proponents of WhatsApp, kindly direct me towards an independent audit or research paper that confirms WhatsApp is using E2EE 100% of the time instead of 95% or even 5% of the time. The classic "but WhatsApp has E2EE" argument is as good as me saying that I'm the CEO of Google writing from an alt account.
Telegram's encryption, both E2E and Cloud, have been audited by independent researchers. It doesn't take much to find out what's true and what's not.
3. Moxie's claims are extremely biased and misleading to the point that it almost seems like a propaganda against Telegram. I wouldn't want to hear someone who thinks Signal is too good to be on F-Droid and that any encryption aside from his own is the same as plain text.
I really don't care if people use Signal but as a Telegram user I'm exhausted by this hatefest that appears every time Telegram announces a new release. Moxie is a terrible source because he very recently was the CEO of Signal, a competitor, and uses words like "plaintext" as a misleading perjorative for any encryption not E2EE.
If you want and need E2EE please God use some other messenger but why don't we stick to the topic of the feature announcement and save the hate, folks?
If you're a user of Signal, I support your choice to use Signal. Please support our choice to use Telegram.
I believe most people here use WhatsApp and they've gotten comfortable enough with the idea of trusting Facebook (even when nobody ever should if they respect themselves as a user).
This is proven by the fact that posts about WhatsApp, a closed source app from Facebook where you can never even confirm any of their security claims, gets a lot of praise compared to an open source app with a strong privacy and no-data-selling track record. Even here in the comments you can see people claiming about WhatsApp's E2EE when in reality they cannot prove it.
Telegram on the other hand has been audited multiple times by independent researchers and yet somehow, that's not enough. Apparently, symmetric encryption is considered plain-text these days and some closed source unverified implementation of E2EE as private and secure.
Just to add context, I think/suppose this happened because of some hijacking of a cookie with logged in web telegram. I've seen multiple complaints of people that got hacked because they used some sort of telegram web login. Problems related to e2e enc are valid though
Telegram is not less secure, this is misinformation. Telegram is less secure by default; it has a worse UX for secure messaging, as a deliberate choice to improve default UX for new users.
IMO if your app is less secure than your competition by default, the app is less secure, period.
Telegram is said to have been given authorities access to user data [1], despite the fact that they advertise the opposite. I guess that’s what happens when your app is not encrypted E2E by default.
Also, they have used their own encryption algorithm in the past (I don’t know now) instead of the well known and proven algorithms out there. Something highly criticized by experts, back then [2]
I tried using secure chats but the UI is nearly unusable. E.g. secure chats are established between two specific devices and can't migrate, so it would make sense to let a currently "active" client (the one the user is currently interacting with) respond to an incoming chat request. Problem is, secure chats were being unpredictably picked up by random devices logged in to my account, so most of the time I couldn't even see any messages.
The first thing you realise when you start playing with LLMs and want to build a product around it is that you might not need a UI anymore but a text interface might be at the same time easier to build and much more intuitive. In this case the messengers have a big opportunity to become the next big platform. Telegram seems to be the one with the best apis. This shift might even make it possible to create a new messenger app with some LLM app as killer feature. In a way ChatGPT could have been that messenger app.
This was my immediate thought when they released chatgpt plugins. They had this little demo where it generated a recipe, pulled the calories from wolfram alpha and then generated a one click to order link for doordash.
It's no stretch of the imagination that this will replace many, if not most app ui's. For the time being there's still some programs that are much better off with a dedicated interface, but the future where the starting point for most day-to-day computer interactions is a unified natural language text input is very near.
It's striking to me how close this matches the depiction in the movie "Her".
Messenger apps like telegram do have an opportunity here, but I think the most likely way for this to play out is that apple and google will eventually make their assistants the front and center way of interacting with your phone and their won't be much that messenger apps can do about it, even if they are substantially faster at implementing this.
Will natural language be a predominate form of interface in the near future? Absolutely yes. But will it replace majority of interface? I am doubtful.
The reason for my doubt is that if you look around yourself; you will see a variety of amazing human computer and human machine interfaces, because no single interface has been universally suitable and more importantly the most or even reasonably efficient for all use cases. There is little reason to believe human language is an exception.
Switches, buttons, knobs, joysticks, motion sensors, and an array of other interfaces will persist until brain-computer interface is ubiquitous.
This is sort of a "what's a computer" question. I find that for a number of specialized digital interfaces, I don't want natural language. I don't want to stand there and talk to my microwave, I just want to punch in the number. I'd say about half the time I sit down at my TV I don't know what I want to watch, I want to scroll through some options. It feels like the more specialized the purpose, the less likely I am to want to talk to it.
> It feels like the more specialized the purpose, the less likely I am to want to talk to it.
This is the essence of it; and it follows not just for "shouldn't be a computer" appliances but also software. People in tech tend of to forget about the array of hyper-specialist software that exists in the wild, from little point of sales to industrial machines.
I have little interest in talking to a coffee machine or automated transport ticket machine. Flat White. Day ticket. That would do, thanks.
Uh, I might have a language barrier here. Doesn't predominate imply a majority?
But besides this I do see your point. Mechanical interaction with buttons, switches, dials and the like offer a great interface and they haven't been universally replaced by touch screens for a reason.
I was thinking more of the ubiquity of specialised phone apps. I checked my phone just now and I have apps for public transport (i.e. train tickets and routes), taxis/ubers, multiple apps for ordering food, fitness/workout tracking, todo apps, calendars, smart home control, weather, general search, news and lots more.
I'd say that most uses of most of those apps would be more convenient through a single chat like interface.
> Messenger apps like telegram do have an opportunity here, but I think the most likely way for this to play out is that apple and google will eventually make their assistants the front and center way of interacting with your phone
Made by Google the company who threw away an existing social network (Reader) to build a social network (Google+) that they threw away as soon as many enough had figured it out and started loving it.
(I'm still looking for a replacement for Google+.)
Haha, I just pictured iPhone users if one day all the colorful icons disappeared and they were presented with a white on black text prompt instead) Not gonna happen.
Pity that _using_ telegram is a frustrating, spam filled messaging experience. Nothing nets me as much annoying automated spam as simply having an account there. More frustratingly, disabling messages from unknown contacts doesn’t appear to be a feature.
I wonder why your account is attacked by spam so often. Conversely, I've never had any account get so little spam as my Telegram account. My email gets literally dozens of spam mails per day. Telegram, I'd say less than once per month.
Exactly yesterday I thought that I got a spam message, it turns out that the sender is a SpaceX fan and a real interesting human, not the crypto-pushing bot that I had suspected at first when I read the greeting "hi".
If you setup username, you are going to get a lot of spam messages. I guess.
Username in telegram is a public identifier that allow anyone to grant the permission to message you.
The other ways to grant this permission are
1. Add contact with phone number (can be disabled in privacy setting)
2. Have a message/forward message somewhere you can see, and the original sender is you. (Identity forward of forwarded message can be disabled in privacy setting)
3. Be in the same group with the target (chat admin can disable member listing)
Notice, this is a one time setup. A account only need to grant this once, and then he can message you at anytime.
My five year old Telegram account has received exactly zero spam messages in my entire time there. Being a country that actually punishes companies for selling your phone number and personal information without your consent makes everything more pleasant.
I mostly get them from people finding me from my group chats, really. I don't think Telegram shows my number to people (or has it), so I don't tend to get spam that way.
I’m not the other person, but there’s no privacy setting for normal messages, in the iOS version at least. So it’s impossible to block messages from randoms.
Yes, because most people actually want to be reached by people who are yet not in the contacts.
The only way to do so is to have a username or phone number of recipient. Usernames are searchable if they are "Public Usernames". Phone number could be hidden from anyone.
I don't see how someone can contact somebody on the messenger yet without an ability to.. actually send a message. Sure, there could be an option to block everyone not in the contact list and use some other medium to relay the contact request[0] but most of the time this is useless for messenger.
But of course I have my POV skewed, because I prefer to use services defensively from the start so I had almost no unsolicited messages on Telegram, WhatsApp and Instagram.
[0] Hey, if you interested in $TOPIC contact me on Telegram, @username! But first send a couple of avian carriers with your phone number and username so I could add you to contacts first!
WhatsApp bots are overly simplistic. I'm not talking about specific implementations where bots only accept simple strings or just integer numbers (your typical city bot), I know that's not WhatsApp's fault.
It's just that WhatsApp bot capabilities have these 1.0 vibes. Bots that just chat and aren't rich anyhow like Telegram ones. WhatsApp bots don't come close, and WhatsApp users live in such Plato's Cave with it.
I just wish The West could come up with something like this, and at the same time not coming from your typical FAANG. That'd make me jump ship. Such a great product management.
Also, Zuckerberg is so deep in the privacy troubles with the Congress, that he cannot open WhatsApp Bot API freely like Telegram can. That hinders the development of bots in WhatsApp a lot.
Only big companies have direct WhatsApp API access and are able to re-sell it through tech partnerships (e.g.: You cannot call WhatsApp's API directly, you have to pay a company like Freshworks for its Freshchat product and then you can use WhatsApp's API indirectly through Freshchat API, walling the garden this much is just non-sense).
--
Full disclosure: I love Telegram far more than WhatsApp. I resent WhatsApp because I'm not able to quit it because of network effects. I also recently berated my phone carrier for offering WhatsApp for free, but not other messenger apps (which also violates my net neutrality rights).
Disclaimer: I know Telegram gets a lot of hate because of its Russian origins. Same hate TikTok gets for seemingly being CCP-controlled.
I had to start WhatsApp a year ago due to network effect. Though I despise the idea of communication network that forbids you from creating alternative clients.
At least I managed to vent the steam off by setting an image that asks to write to me via Telegram instead as my avatar. You can find it here: https://gist.github.com/Self-Perfection/f470d5120f938221769d.... The image is in SVG format, so you can customize it to your liking.
Telegram offers a powerful platform but the default client is so weird. I'd very much prefer interacting with a website instead.
For example, every bit of the UI is so aggressively animated, emoji, stickers, full-screen effects, it's a pain to look at. Meanwhile the iPad client still can't properly handle the hardware keyboard or even switching to another app and back (the input field gets stuck floating mid-screen).
Incredibly well positioned vs WhatsApp, iMessage, etc in the new world of LLM-enabled agents / chat bots… I’d put money on others launching similar things. Hard to see the current web UI remain the long-term format on mobile, maybe web too if the Telegram / other messaging apps well support this.
I've created many bots over the years with really sophisticated interfaces in Telegram.
For some reason it works for eastern people but barely for westerners. Every product made had more success with an additional web app. I always assumed it's because bots look all the same, it's hard to find scam indicators.
> I’d put money on others launching similar things.
WeChat has had this for years (and other messengers in South Wast Asia).
I have no idea why in-chat apps were never successfully implemented in the "West". There were minimal attempts by bot Apple and Facebook to add apps to their chats, but at best it's "let's add stickers"
WeChat is garbage. The only reason it gained prominence is because (better) alternatives are banned or blocked, causing spillover network effect to Chinese outside of China.
When I had to use it on my first visit to China, I couldn't possibly believe this is an app that people are actually using day to day. Slow, sluggish, graphical artifacts, NPEs.
Then I learned that the "Western" version is totally different, so I believe the real WeChat is a usable product and in par with whatsapp and telegram
because Asia leap-frogged over old internet protocols in favor of platforms, whereas a lot of Western systems are tied into email, websites and the crawlable/open web. Same reason SMS is still popular in the US compared to ip-based chatting everywhere else.
Walled gardens and controlled ecosystems are horrible and concentrate power in the gatekeepers.
I hope the experience is kludgy and user unfriendly to the point that startups not contained in the straightjackets of other systems continue to win out.
I am surprised this is even allowed by Google and Apple. Tiktok also has something similar called Jump. I thought there is no chance to get an App approved that is basically an alternative web app store. I feel like this could be even more dangerous to Googles business model, than current AI. Imagine someone builds a search engine that has apps integrated like google flight or a calculator. But basically for every query a different app.
I have been using Telegram as my game server administrator.
It gives me realtime updates about important activities from my players, As well as I can change settings directly from my mobile. Or start a new event.
I use telegram for monitoring many services.... one botfather command, you get an api key and one curl command to send a message. Service restarted, server rebooted, low ram, low disk space, temperature too high, etc., everything comes to telegram.
"Back in the time" I would've used email for that, but if you don't run your own server, getting a free email address that doesn't either need a phone number verification, doesn't get banned for random reasons or doesn't stop working suddenly, because it decided it needed 2 factor authenticaion is practically impossible.
(btw, if anyone knows a service, that gives you a free email address (well, more than one) with smtp access, no phone number or any other verification and doesn't ban accounts after a few automated messages, please tell.. I don't care about getting marked as spam, I can whitelist it on my side)
> "Back in the time" I would've used email for that
One thing I like about chat is the different mindset and granularity. I can have a bot post a message to a channel for normal messages and then tag me, thus giving me a notification, for urgent matters. Email is more like digital mail, I don't want to have to check it often (I disable email notifications).
Ahh, I thought you meant you operated a server for another game (I've hosted many over the years so that's what I first think of). What is the game you are making?
ANXRacers. It combines stuff from Elite Dangerous into Trackmania. I reduced one dimension, to keep the scope feasible in my skillset/effort available.
Telegram's bot API is really nice and easy-to-use, to the point where you could easily use it via curl or even a web browser.
The same can't be said about the third-party client protocol, which is a perfect example of NIH syndrome. Where the bot API is bog standard JSON over HTTPS, the client API has its own encryption protocol, its own connection protocol, its own serialization standard and its own schema language. Everything is reasonably well documented, but some of the documentation (particularly for the schema/serialization part) is somewhat hard to understand if you're not a mathematician and/or well-versed in statically-typed functional languages like Haskell and the associated theory. Some parts, voice and video calls in particular aren't documented at all. Where every other part of the API has a precisely defined schema, this one just expects a binary blob of unspecified contents. There's a tgcalls library (written in C++) that implements this protocol, but its Github repository doesn't contain the needed build scripts nor any information on what other libraries it relies on (and it definitely relies on at least WebRTC and probably some others.)
For me, Midjourney was the killer app which showed that chat apps can be good interfaces for products. It takes away many UI development costs and problems and allows you to focus on the product/backend.
On the contrary, personally I'd be on any competing platform were it as-good-as just to escape the Discord integration. Maybe if they didn't spend so long on that absurd homepage they could have built an API or something.
Clearly no as Midjourney is working on a web UI that'll be out this year. Personally, I'm turned off by Discord's UX and one of the main reasons I don't use midjourney.
We should rebrand bots, maybe to something like text apps or conversation apps or something like this bots have a bad rep and don’t really represent what these LLM driven apps are.
Maybe I'm just blinded by experience but I don't have an issue distinguishing bad and good bots in common usage. I play Old School Runescape which is plagued with bots, but there's never confusion because linguistic markers naturally signal what is meant. The opposite has also been true in my experience. Maybe I'm just too wary of another stint on the euphemism treadmill.
Bots are super useful on Telegram. It’s probably the only thing that I miss on other platforms. I have a pretty successful one that interacts with libgen and I couldn’t live without it! The chat layout also becomes a super useful feature in a lot of cases, especially when you want to keep track of history data like past searches.
Would love to see this platform opened up. I've been recommended by users, but telegram always demands an app install for account creation. App install + mobile number as a login/username is a deal breaker for me. Horrible experience trying to explain why this isn't a sane security model to users.
And by default chats are not e2e encrypted. And even if you want e2e, it's not syncing between devices. Also groups are not e2e. Signal is cooler for encryption, heck, even fb messenger or Whatsapp. Featurewise yes, telegram is miles ahead
Even if the app is not e2e encrypted, that is much better in my eyes than the targeted advertising in WhatsApp. Go to the toilet more often than usual, suddenly diarrhea-related ads. Drop a friend off at a smoke shop, suddenly marijuana-related ads. I don't want to imagine if they have the drug dealers' and prostitutes' locations mapped, and what would happen if you stop there for some reason.
WhatsApp backs up your encryption key to Google Drive by default, meaning it's far from end-to-end encryption.
It's more like end-to-Google-to-end. If you choose to decline this default, your conversation partners probably haven't.
Signal had a catastrophic bug that would send random images in your camera roll to random contacts. If you want your private photos sent to your family members, use Signal I guess.
> WhatsApp backs up your encryption key to Google Drive by default,
Does it? I have criticized WhatsApp a lot, but this was new to me.
(I don't follow WhatsApp development any more but back in the day they used to do things like sending data actually unencrypted - not just not e2e-encrypted - over port 443, and storing unencrypted backups on Google Drive, but encryption keys was/is new to me if it is correct.)
>WhatsApp backs up your encryption key to Google Drive by default, meaning it's far from end-to-end encryption.
This is a lie[1]. If you don't enable backups yourself, you loose your messages.
You can enable E2E encryption for your backups.
WhatsApp is vastly superior to Telegram in terms of E2E encryption.
Telegram can read users messages on their servers and they are not even trying to tell their users to enable E2E.
The Google Drive option is the default on the numerous nag screens, therefore it is default behavior.
Regardless, chances are your contacts have enabled the Google backdoor if you haven't.
>WhatsApp is vastly superior to Telegram in terms of E2E encryption
That's why CVE-2020-1910 enabled attackers to steal your entire message history with a single image message. Has Telegram had similar catastrophic E2E exploits? Nope.
>Telegram can read users messages on their servers
Google has your WhatsApp "E2E" private key by default -- meaning it is NOT end-to-end encrypted. Telegram's E2E Secret Chats have no such backdoor.
> WhatsApp is vastly superior to Telegram in terms of E2E encryption.
I must reiterate that this is a baseless claim because no one can see WhatsApp's source code and going by the track record of Facebook as a company, I'd rather choose to reject this statement than accept it as a possibility.
The argument regarding "source code" is misleading and not entirely relevant. It's worth noting that Telegram's backend is also closed source, yet its supporters often overlook this fact.
Decompiling and inspecting mobile apps is relatively simple, so if there were any issues with the WhatsApp client, they would likely have been uncovered already.
As for Telegram, its messages are stored in plain text on their servers, and it doesn't offer default end-to-end encryption. This means that if Russian secret services were to gain access to Telegram's backend, they could easily read all the messages.
Therefore, when using Telegram, it's important to be aware that its administrators have the ability to read all of your messages.
> It's worth noting that Telegram's backend is also closed source, yet its supporters often overlook this fact.
Backend is never verifiable. It's a moot point. Signal's backend is open source yet they always release the sources late. Their servers were running entirely different code for a year and they even injected some cryptocurrency related features which weren't reflected in the source code.
Backend is always unverifiable, open source or not.
> Decompiling and inspecting mobile apps is relatively simple
Not so much when WhatsApp obfuscates binaries on purpose.
On top of that, the T&C clearly forbid you from doing it.
> As for Telegram, its messages are stored in plain text on their servers
Absolutely false. Telegram's cloud encryption algorithm has already been audited by independent researchers.
Calling symmetric encryption as "plain text", is disingenuous.
> This means that if Russian secret services were to gain access to Telegram's backend, they could easily read all the messages.
I guess Russia's telegram ban doesn't matter then? Nor Durov's fight with the Russian government. He actually moved to another country to stop the Russian government from having access to the servers.
It's totally fine to understand your security context and the security your messaging medium provides but it's not good to misrepresent facts and use terms that mislead people.
My point is precisely this: With robust end-to-end encryption in place, there's no need to rely on the trustworthiness of the backend. Unfortunately, Telegram lacks this feature, making it untrustworthy.
Even with Telegram's encryption, messages can be compromised through a straightforward SIM swap. This means that their encryption is essentially irrelevant since messages can be read without needing an encryption key from the client.
I recommend checking out Moxie Marlinspike's Twitter thread on this topic for further insight. You can find the link I previously shared in another thread.
> With robust end-to-end encryption in place, there's no need to rely on the trustworthiness of the backend
Actually there is. The backend transferring information is the sole point of failure. While the message content might be secure, nothing other than that ever is. In fact, an E2EE app could send unencrypted messages in the payload or the private keys and you still wouldn't be able to do anything about it.
This is why I question WhatsApp's effectiveness in the first place.
> Even with Telegram's encryption, messages can be compromised through a straightforward SIM swap
2FA - Cloud Passwords have existed for a long time. Most people fail to mention it when mentioning SIM swap, which is a physical device security issue, a responsibility of the user.
> I recommend checking out Moxie Marlinspike's Twitter thread on this topic for further insight.
I'm sorry but I consider that misinformation at worst and propaganda at best.
He thinks that any encryption that's not his, is 'plain-text'. On top of that, he's very much the reason why Signal was never released on F-Droid. He's got some weird biases against other tech that he can go to any lengths to defend it.
Not only are his Twitter threads loaded with bias but the language he chooses to use, I'd consider that plain misinformation. He does not have any authority to claim things he can't prove.
Because all the really security focused apps insist on per-device private keys, so everything has to be re-encrypted by everyone per the other users' device. This mitigates key leakage problems to some extent, but also makes the UX as awful as you describe.
I don't understand why nobody (to my knowledge) has yet gone the middle route of having a private key per user. Sure, it's a bit less secure, but it's surely better than users preferring to use un(e2e)encrypted options instead?!
I said it's cooler for encrypted stuff compared to telegram not for features/ux. I use both and I'm fully aware telegram ux and easy of inter device operation is superior(well, they have some minor ux problems because of Premium but still, these are minor)
Let me also add that this is a bigger problem than it needs to be.
Why?
Because countries insist on linking phone numbers to individuals.
Why do I think this is borderline ridiculous?
Because the phone system is still so open that any scammer can appear to call from any number, or even temporarily hijack reception of messages and calls.
Fragment? You mean Telegram's attempt to cash in on the cryptocoin scam, with their own walled-garden system and marketplace where it's currently hovering around $30 to buy a number, when it's genuinely cheaper to just get a Google Voice number or some prepaid burner phone number? Fragment, the service that is currently banned in the USA for being such an obvious scam?
I just looked and all of the "ending soon" auctions have prices of $150 and up. With several of them at $4,000 and more. I know nothing about Fragment but I can only assume there's some kind of money laundering or other illegal activity involved to justify those prices.
> With several of them at $4,000 and more ... to justify those prices.
Those are nice looking ones. Some people spent great amounts of money to buy a nice phone number or a car plate (at least in Russia or Armenia for example).
A car plate\registration number like M888MM 777 will cost you 10M rubles ~122k USD.
It's just a crypto token exchange. Moreover, phone numbers it sells aren't "real", these are NFTs of phone numbers, nothing more. You can't use them for calls or anything else, there's no network service, the only purpose is Telegram authentication with an associated token.
Elaborate cryptocoin scam (I guess you are anti-crypto), buying with Fragment is anonymous and easier than Google Voice. I agree on being banned on U.S.A, blame that to bad crypto regulations.
Matrix is an open protocol with real encryption. You can bridge telegram to it. It's all open source though, so don't expect an experience as polished as telegram.
The 30% rule only applies if you are paying to unlock software features. If you’re paying to purchase real world things it doesn’t apply. E.g. 30% rule doesn’t apply to amazon
It's not restricted to software features, though. Things like ebooks and (???) event tickets also have a 30% cut (Facebook had an angry dispute over this).
This is why the Kindle app doesn’t let you buy anything on iOS. Such an awkward flow because you can read a free sample of a book and as soon as you finish and are ready to continue it just appears that there’s no way to buy it.
lol I just saw a recent Bandcamp update for iOS where the changelog said it "updated payment workflow" or something and it got me real confused because the app has never let you buy anything
I recently examined a situation where confidential messages from high-ranking Moldovan officials were leaked through Telegram. Unlike WhatsApp and Signal, which offer end-to-end encryption by default, protecting your messages even in case of a SIM swap, Telegram does not offer the same level of security. A SIM swap or a breach in their system can lead to message leaks.
Despite advertising themselves as a "secure messaging" platform, Telegram lacks default end-to-end encryption, making it less secure than its competitors.
Read this excellent thread from Moxie https://twitter.com/moxie/status/1474067549574688768