Oddbean

No - its not an "professional security analyses" of Threema! Everything mentioned there was already out of date when it was published. Because it refers to an old protocol that Threema no longer uses. These are no discoveries, no scandal. Everything the author wrote was already known before and available to the public. If you want to know what kind of nonsense it contains, you should read this very detailed article about it: https://blog.dbrgn.ch/2023/1/14/threema/ Or Threema's public denial: https://threema.ch/en/blog/posts/news-alleged-weaknesses-statement Background: Threema started a bug bounty program 6 months earlier. Anyone who reports serious security bugs to Threema can receive up to CHF 10,000 as a reward. And a student at ETH Zurich thought that it would be easy money if I simply collected all of Threema's public shortcomings and “sold” it to them. Of course, he got nothing! Up to this day, Threema is still the most secure messenger! Check it for yourself: Visit https://www.securemessagingapps.com Rate: 🟩=3 🟨=1 🟥=0 Results (and where the money comes from) 1. Threema = 83 = most secure Messenger (User pays one-time + BTC possible) 2. SimpleX Chat *= 79 3. Signal (OTF / Brian Acton / Ex-WhatsApp) = 77 4. Session (Loki Coin & suspicious Chinese) = 77 5. Wire (Janus Fries / Ex-Skype) = 68 6. Wickr (Amazon) = 61 7. Element / Matrix (Amdocs / Morris Kahn) = 56 8. Apple iMessage (Hardware sales) = 37 9. WhatsApp (Meta) = 32 10. Google Messages (Ads) = 28 11. Telegram (Putin) = 27 12. Facebook Messenger (Meta) = 26 13. Microsoft Skype =10 * SimpleX Chat got 380.000 $ from VillageGlobal.vc = Jez Bezos, Mark Zuckerberg, Bill Gates, ect. Plus Jack Dorsey and other Venture Capital Companys! OFT = OpenTechnologyFund = US-Goverment If you want to buy Threema, you can buy a license (Android only) from me and pay with Bitcoin Lightning! Just contact me via nostr!

1. It is a professional security analysis even if you don't like what it says. 2. Most of the issues they exposed still exist. 3. Your little self-serving, arbitrary point system used tok rank messengers is stupid and irrelevant. Threema is garbage, and the idea that it's at the top of this list of yours is laughable, and plainly absurd.

1 = NO its not = its all outdated! 2 = Which issues should that be? 3 = The ranking works very well, because everybody understands it. Threema is unbeaten - up to this day - for nearly 12 years now!

Lol no it doesn't work well because it's completely arbitrary, and you can't accurately determine the quality of multifaceted private messaging apps with a single metric. This is marketing bullshit, not a legitimate system for evaluating the quality and strength of the different platforms. It's designed so that shills who have a financial interest in peddling a particular platform have a metric to point to to justify the sale. It's an instrument of security theater, and salesmanship.

SimpleX wins at 88 points if you stop punishing it for dodgingpossible privacy/security issues such as: Do you get notified if a contact's fingerprint changes? Is personal information (mobile number, contact list, etc.) hashed? Are messages encrypted when backed up to the cloud? All of which are N/A therefore are given a white background and not green. This site wasn't setup for an arbitrary points system. Also Directory service could be modified to enable a MITM attack? There is no directory service for discovering contacts, SimpleX hosts a public group directory and it could MITK those, but that's a separate service not included in the app.. in my opinion it should get another 3 points. I disagree that Google Messages doesn't use a directory service as phone numbers are the directory service, and the carriers could definitely MITM as they control the phone numbers.