this post was submitted on 21 Oct 2025
298 points (96.6% liked)

Technology

76962 readers
3230 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related news or articles.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago
MODERATORS
L3s@lemmy.world
enu@lemmy.world
technopagan@lemmy.world
L4s@lemmy.world
L3s@hackingne.ws
L4s@hackingne.ws
298
X is now offering me end-to-end encrypted chat — you probably shouldn't trust it yet | TechCrunch (techcrunch.com)
submitted 1 month ago by ardi60@reddthat.com to c/technology@lemmy.world
98 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[–] SnoringEarthworm@sh.itjust.works 125 points 1 month ago* (last edited 1 month ago) (5 children)

TL;dr of the article :

  1. They keep your private key on their servers.
  2. Their implementation allows for AITM attacks.
  3. It's closed source.
  4. There's no perfect forward secrecy.

This secret stays between you, me, and Elon.

I hope politicians use the hell out of it, so we can see what they really think when it gets (inevitably) hacked in a few weeks.

[–] Naich@lemmings.world 23 points 1 month ago (11 children)

What is the "A" in "AITM"?

[–] BananaOnionJuice@lemmy.dbzer0.com 27 points 1 month ago (1 children)
[–] kuberoot@discuss.tchncs.de 4 points 1 month ago

Are you sure that site is trustworthy? It kinda reads like an LLM being told to explain the difference between two names for the same thing and basically rephrasing the same thing. I'd imagine it might just be a different name to get rid of a male-coded word.

[–] kami@lemmy.dbzer0.com 19 points 1 month ago

Adversary

[–] EncryptKeeper@lemmy.world 14 points 1 month ago (1 children)

It’s just MITM but with extra steps

[–] Someonelol@lemmy.dbzer0.com 13 points 1 month ago

Ah yes, Malcolm in the Middle is behind this all along.

[–] gressen@lemmy.zip 7 points 1 month ago

Anyone

[–] Triumph@fedia.io 7 points 1 month ago

Aliens

[–] ThePantser@sh.itjust.works 2 points 1 month ago

Administrator

[–] pirat@lemmy.world 2 points 1 month ago

Agencies

[–] renegadespork@lemmy.jelliefrontier.net 21 points 1 month ago

They keep your private key on their servers.

Then it's literally not even E2EE, lol

[–] answersplease77@lemmy.world 1 points 1 month ago

is it different with signal, telegram, whatsapp?

[–] Goodlucksil@lemmy.dbzer0.com 0 points 1 month ago (1 children)

They are stupid, but not that stupid.

[–] hansolo@lemmy.today 13 points 1 month ago (1 children)

Never attribute to malice what can be attributed to incompetence.

[–] tabular@lemmy.world 12 points 1 month ago* (last edited 1 month ago) (1 children)

I used to give the benefit of the doubt but when there are bad incentives in play and shit keeps happening.. then perhaps that is naïve sometimes, unfortunately.

[–] hansolo@lemmy.today 4 points 1 month ago (1 children)

Do you mean bad incentives?

And sure, I don't disagree, but these people are also not actually that smart. I would worry more about this getting hacked in a week way before Elon gets a chance to use it against anyone.

[–] tabular@lemmy.world 3 points 1 month ago

Thanks, I do.

[–] CosmoNova@lemmy.world 0 points 1 month ago

If you chat on Xitter you‘re chatting with mecha Hitler.