The arrest of Telegram CEO in Paris has become something of a techno-political soap opera. Pavel Durov, its founder, is a Russian billionaire who made his money by creating VK, the so-called Russian Facebook.
Durov had a complicated relationship with the Kremlin and Putin, but his own interests are not entirely clear either. For years, he has been leading the growth of Telegram (an app that remains unprofitable) from Dubai. This week, he was arrested in France on various charges related to the use of the app for criminal purposes.
Amid the arrest of its CEO, doubts are rising about the security of the popular messaging platform. Telegram claims to be a bastion of privacy, using encryption to protect user data.
However, Not all chats on Telegram are end-to-end encrypted by default. What does this mean for the security of your conversations? Is Telegram as safe as its CEO claims? We’re going to find out, even though we already told you we wouldn’t.
Encryption on Telegram: Promises and Realities
Encryption is one of the most mentioned security features when it comes to messaging apps. However, Not all encryption types are the sameand how they are implemented can have a significant impact on data security.
Telegram, since its inception, has promoted its commitment to privacyusing encryption to protect its users’ messages and data, but that’s not entirely the case.
Types of encryption
To better understand the Telegram security debate, it is important to know the types of encryption used in digital communications:
- Encryption in transit: Protects data as it moves from one device to another, but does not guarantee that data is safe on the servers where it is stored.
- Encryption at rest: Protects data stored on a server. Data encrypted at rest is unreadable without a decryption key.
- End-to-end encryption (E2EE): This is the gold standard in message security, ensuring that only the sender and recipient can read the messages. Even the service provider does not have access to the content.
Telegram does not end-to-end encrypt most of its chats
Telegram offers different levels of encryption depending on the type of chat:
-
Cloud Chats (default): These are not end-to-end encrypted. While they are encrypted in transit and at rest, messages can be accessed on Telegram servers, since the decryption key is stored there. This allows Telegram to sync messages across multiple devices efficiently and quickly, but it also means that messages could, in theory, become accessible due to security breaches or government pressure.
-
secret discussions: This is where Telegram employs E2EE. The messages in these chats are completely secure and accessible only on the sender’s and recipient’s devices. They are not stored in the cloud, which means they cannot be synced or read by third parties, including Telegram.
Telegram’s data security isn’t as clear as its CEO says, but it has an advantage over WhatsApp
Although Pavel Durov insisted that the platform is secure and stressed the importance he places on privacy, the reality is more complex. The lack of E2EE by default in all chats means that there is an inherent risk of message storage and possible interception.
Additionally, Telegram servers, although spread across the globe and with split encryption keys to protect data, could still be vulnerable to improper access.
Of course, beyond encryption, there are other factors that affect privacy and security: one of them is whether or not to make the phone number public. On Telegram, you can talk to other users or participate in groups without having to reveal your phone numbersomething that is not viable on WhatsApp.
Is WhatsApp or Signal more secure than Telegram?
To assess the security of Telegram, it is useful to compare it with other popular messaging apps:
- Encryption: WhatsApp uses E2EE by default for all messages and calls. This means that neither WhatsApp nor its parent company, Meta, can access the content of messages.
- Use of data: While WhatsApp guarantees the privacy of messages, it collects other user data that can be used to improve services or for targeted advertising purposes.
- Security: WhatsApp’s E2EE implementation has been generally well received, although integration with Meta and concerns about metadata privacy have drawn criticism.
signal
- Encryption: Signal is known for its strong focus on privacy, using E2EE by default in all communications. Additionally, it uses an open-source protocol that allows for external security audits.
- User data: Signal collects a minimal amount of user data. It does not store message metadata, and its operation depends on donations and privacy funds.
- Security: Signal is widely regarded as one of the most secure and private messaging platforms available, being the preferred option for those seeking absolute privacy.
Content moderation in Telegram and the context of the arrest of its CEO
Another area where Telegram has been criticized is its emphasis on content moderation.
Unlike other platforms that cooperate with each other,As authorities remove illegal content, Telegram has taken a hands-off stance in private chats.even if they contain illegal material. This policy, along with the lack of E2EE by default, has made Telegram an attractive channel for illegal and extremist activities.
So: Is Telegram safe?
The answer to the question of whether Telegram is secure is not a simple yes or no, but it is certainly not the most secure.
Although the platform offers strong encryption options through your secret chats, the absence of E2EE by default on all messages raises legitimate concerns.
The decentralization of its servers and Refusing to cooperate with authorities’ data requests adds layers of complexity to your securityboth positive and negative.
Compared to WhatsApp and Signal, Telegram offers less security in its chats by default. However, its unique architecture and features attract people looking for a more open and flexible alternative.
