this post was submitted on 21 Oct 2025
297 points (96.6% liked)

Technology

76456 readers
3405 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related news or articles.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago
MODERATORS
L3s@lemmy.world
enu@lemmy.world
technopagan@lemmy.world
L4s@lemmy.world
L3s@hackingne.ws
L4s@hackingne.ws
297
X is now offering me end-to-end encrypted chat — you probably shouldn't trust it yet | TechCrunch (techcrunch.com)
submitted 1 week ago by ardi60@reddthat.com to c/technology@lemmy.world
88 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[–] SnoringEarthworm@sh.itjust.works 125 points 1 week ago* (last edited 1 week ago) (5 children)

TL;dr of the article :

  1. They keep your private key on their servers.
  2. Their implementation allows for AITM attacks.
  3. It's closed source.
  4. There's no perfect forward secrecy.

This secret stays between you, me, and Elon.

I hope politicians use the hell out of it, so we can see what they really think when it gets (inevitably) hacked in a few weeks.

[–] Naich@lemmings.world 23 points 1 week ago (11 children)

What is the "A" in "AITM"?

[–] pirat@lemmy.world 2 points 6 days ago

Agencies

[–] BananaOnionJuice@lemmy.dbzer0.com 27 points 1 week ago (1 children)
[–] kuberoot@discuss.tchncs.de 4 points 1 week ago

Are you sure that site is trustworthy? It kinda reads like an LLM being told to explain the difference between two names for the same thing and basically rephrasing the same thing. I'd imagine it might just be a different name to get rid of a male-coded word.

[–] kami@lemmy.dbzer0.com 19 points 1 week ago

Adversary

[–] EncryptKeeper@lemmy.world 14 points 1 week ago (1 children)

It’s just MITM but with extra steps

[–] Someonelol@lemmy.dbzer0.com 13 points 1 week ago

Ah yes, Malcolm in the Middle is behind this all along.

[–] Triumph@fedia.io 7 points 1 week ago

Aliens

[–] gressen@lemmy.zip 7 points 1 week ago

Anyone

[–] ThePantser@sh.itjust.works 2 points 1 week ago

Administrator

[–] renegadespork@lemmy.jelliefrontier.net 21 points 1 week ago

They keep your private key on their servers.

Then it's literally not even E2EE, lol

[–] answersplease77@lemmy.world 1 points 1 week ago

is it different with signal, telegram, whatsapp?

[–] Goodlucksil@lemmy.dbzer0.com 0 points 1 week ago (1 children)

They are stupid, but not that stupid.

[–] hansolo@lemmy.today 11 points 1 week ago (1 children)

Never attribute to malice what can be attributed to incompetence.

[–] tabular@lemmy.world 12 points 1 week ago* (last edited 1 week ago) (1 children)

I used to give the benefit of the doubt but when there are bad incentives in play and shit keeps happening.. then perhaps that is naïve sometimes, unfortunately.

[–] hansolo@lemmy.today 4 points 1 week ago (1 children)

Do you mean bad incentives?

And sure, I don't disagree, but these people are also not actually that smart. I would worry more about this getting hacked in a week way before Elon gets a chance to use it against anyone.

[–] tabular@lemmy.world 3 points 1 week ago

Thanks, I do.

[–] CosmoNova@lemmy.world 0 points 1 week ago

If you chat on Xitter you‘re chatting with mecha Hitler.