privacy and security Archives

AppWizard

April 2, 2025

Mullvad VPN Enables Multihop In Android App

Mullvad has introduced a multihop feature in its Android application that allows users to route their internet traffic through two distinct servers, enhancing online security and privacy. This feature creates a "tunnel within a tunnel," where data is transmitted through both an entry server and an exit server. By selecting servers in different jurisdictions, users can complicate the tracing of their data. The multihop service provides a higher level of privacy and security, as adversaries would need to execute timing attacks across multiple locations if one server is compromised. Mullvad operates under robust legal protections in Sweden and follows a strict no-logs policy, ensuring user activity is not recorded or retained.

AppWizard

March 29, 2025

Signal controversy: Why the secure messaging app is all over the news

Signal is an end-to-end encrypted messaging application that distinguishes itself from competitors like Messenger and WhatsApp through its open-source technology and the use of the Signal protocol for encryption. It encrypts messages before they leave the sender's device, ensuring that only the intended recipient can read them. However, its security is tied to the user's device, and vulnerabilities such as weak passwords and unprotected devices can compromise message integrity. Despite its strong encryption, Signal may not meet the stringent security protocols required for sensitive government communications, particularly due to its message deletion feature and the lack of support for record-keeping. The app is considered secure for everyday users, but may not be suitable for high-stakes governmental communication. The rise in cyber threats underscores the need for secure communication channels, leading organizations to consider encrypted messaging solutions like Signal, while also evaluating alternatives within the encrypted messaging landscape.

AppWizard

March 26, 2025

Trump administration used Signal app to discuss Houthi attack plans

A journalist accessed classified U.S. military details regarding plans to engage with Houthi forces due to a security lapse in the Signal messaging application. The breach occurred when a user mistakenly shared confidential military documents through the app, emphasizing the risks of human error in secure communications. Signal is an encrypted messaging platform known for its user privacy and security, utilizing end-to-end encryption.

AppWizard

March 26, 2025

What Is Signal, the App Involved in a War Plans Security Breach?

Signal has recently garnered attention due to reports that senior officials from the Trump administration used the platform for sensitive war planning discussions, inadvertently including a journalist in the messaging group. This incident has raised questions about the appropriateness of using Signal for classified discussions, particularly since federal employees are usually prohibited from installing such applications on government-issued devices. Signal, launched in 2014, is an encrypted messaging application that facilitates secure communication through end-to-end encryption, ensuring messages remain private and unreadable until they reach the intended recipient. It also offers a feature for messages to disappear after a set period. Signal is operated by the Signal Foundation, an independent nonprofit organization funded by donations and grants, which allows it to prioritize privacy and security without commercial influences.

AppWizard

March 26, 2025

What is Signal? 5 things to know about the app used in Trump administration war plans leak

Sensitive military strategies regarding Iranian-backed militants in Yemen were inadvertently disclosed to journalist Jeffrey Goldberg when he was included in a group chat on Signal with Trump administration officials, including Mike Waltz, Pete Hegseth, JD Vance, Marco Rubio, and Tulsi Gabbard. The White House National Security Council confirmed the authenticity of the chat. Hegseth stated that “Nobody was texting war plans.” President Trump expressed discontent with The Atlantic regarding the incident. The situation has prompted calls for accountability from Democratic lawmakers. Moxie Marlinspike, co-founder of Signal's parent company, highlighted the app's unexpected role in military coordination. Signal is a free, open-source messaging application with end-to-end encryption that accommodates up to 40 participants and supports various media formats. Originally developed by Whisper Systems, it emerged from two separate applications: RedPhone and TextSecure. Signal is popular among activists, politicians, and journalists for secure communication, but its use for government communications may violate the Presidential Records Act and the Federal Records Act, which require that official communications be preserved. Messages in the military strategy chat were set to disappear after a week, raising questions about record-keeping compliance.

AppWizard

March 25, 2025

Signal head defends messaging app’s security after Houthi attack text…

Meredith Whittaker, president of Signal, stated that the app is the “gold standard in private comms” in a post on X, emphasizing its security advantages over WhatsApp. Signal is open-source and nonprofit, focusing on end-to-end encryption and privacy. US downloads of Signal increased by 16% in the first quarter of 2025 compared to the previous quarter, and by 25% year-over-year. Whittaker highlighted that WhatsApp collects metadata, which can reveal communication patterns, while Signal collects very little user data. A WhatsApp spokesperson defended the platform's use of metadata for spam prevention and service integrity, stating they do not track personal messages for advertising.

AppWizard

March 25, 2025

Signal is ‘as safe as messaging apps get’, but not for national security

End-to-end encrypted messaging app Signal is recognized for its security features but is advised against for use by government officials discussing national security. A breach occurred when members of former President Donald Trump's national security team mistakenly included a journalist in a group chat sharing sensitive military information. Cybersecurity experts express concerns about the potential legal implications of using apps like Signal for classified communications, as it could violate the Espionage Act. High-ranking officials were involved in this incident, which exposed sensitive details, including air-strike targets and the identity of a CIA officer. Typically, government officials use Secure Compartmentalized Information Facilities (SCIFs) for classified information, and there are specific government-approved systems for transmitting such information that do not include Signal.

AppWizard

March 25, 2025

Atlantic journalist says top Trump officials inadvertently included him in Signal group chat discussing war plans. The messaging app, explained.

Jeffrey Goldberg, editor-in-chief of the Atlantic magazine, revealed that he was added to a Signal messaging app group chat containing senior Trump administration officials discussing U.S. airstrike plans against Houthi rebels in Yemen prior to the execution of the strikes on March 15. The group included figures such as national security adviser Michael Waltz, Defense Secretary Pete Hegseth, and Vice President JD Vance. Goldberg expressed skepticism about the legitimacy of using Signal for such discussions, noting that government policy prohibits employees from discussing classified information on messaging apps unless it's forwarded to an official account. The incident has prompted congressional Democrats to call for an investigation, labeling it an "outrageous national security breach."

Winsage

March 23, 2025

Microsoft Paywalls Its AI Features in Notepad and Paint

Microsoft has announced that access to certain features in Notepad and Paint will now require a paid subscription to a Microsoft 365 account. Users will need this subscription to access new AI enhancements, including an image generator in Paint and AI-driven text rewriting in Notepad. Windows users without a subscription will still have access to core functionalities, but subscription-required features will be grayed out. Ram Bala, an associate professor of business analytics, notes that this aligns with a broader "freemium" strategy due to the high operational costs of deploying AI features. Bala highlights a trend in the tech industry toward usage-based pricing models for AI services. Microsoft has made significant investments in AI, incorporating features across its applications, but some initiatives, like the Copilot feature, have faced delays and privacy concerns.

Tech Optimizer

March 19, 2025

TotalAV vs Surfshark VPN: Features Comparison Guide

eSecurity Planet maintains editorial independence and may earn revenue through affiliate links. TotalAV is an antivirus solution with basic VPN functionality, while Surfshark specializes in VPN services. TotalAV: - Overall Rating: 2.8/5 - Pricing: 3.7/5 - Features: 2.7/5 - Usability: 3.7/5 - Security: 2/5 - Customer Support: 2.1/5 - Offers essential antivirus protection and basic VPN features, but lacks the capabilities of a dedicated VPN service. Surfshark: - Overall Rating: 4.5/5 - Pricing: 4.8/5 - Features: 4.3/5 - Usability: 5/5 - Security: 4.5/5 - Customer Support: 3.7/5 - Provides advanced features like multihop connections and IP address rotation, with positive customer feedback despite some support challenges. Pricing Comparison: - TotalAV: Premium plan for the first year; renews at a higher rate. - Surfshark: Starter plan at .49/month billed annually. Feature Comparison: - TotalAV includes a kill switch and split tunneling; lacks rotating IP addresses and multi-hop VPN. - Surfshark includes all features of TotalAV plus advanced capabilities. Usability: - TotalAV supports Windows, Mac, iOS, Android; lacks extensive user documentation. - Surfshark supports multiple operating systems and offers training resources. Security: - TotalAV's encryption and audit policies are unclear. - Surfshark uses AES-256 encryption and has undergone multiple independent audits. Customer Support: - TotalAV offers email support; lacks live chat and community forums. - Surfshark provides 24/7 live chat and email support, along with an official Reddit community. Alternatives: - NordVPN starts at .99/month and includes essential and advanced features. - ExpressVPN offers comprehensive features at .32/month. Evaluation Methodology: The comparison was based on pricing, features, usability, security, and customer support.