LONDON — Following a significant hacking incident that potentially compromised the communication of many Americans, U.S. cybersecurity officials are urging individuals to prioritize encryption in their communications. This incident, linked to hackers based in China, has raised alarms about the safety of personal data.
To address these concerns, federal cybersecurity experts provided a detailed set of recommendations aimed at U.S. telecom companies, including large firms like Verizon and AT&T. A key suggestion that every smartphone user can implement is to ensure that their communications are encrypted to the highest level possible.
End-to-end encryption, often referred to as E2EE, scrambles messages so that only the sender and the intended recipient can read them. If the message is intercepted, it appears as gibberish, unreadable without the encryption key.
Law enforcement has historically hesitated to embrace such encryption methods, as they prevent tech companies from accessing the content of messages at the request of authorities.
Here are some simple ways for consumers to utilize end-to-end encryption effectively:
### Text Messaging
Experts highlighted that hackers aimed at the metadata of countless users, which includes sensitive information like call times and message recipients. They were able to access the content of some texts from a limited number of targets.
For those using iPhones, messages sent between two iPhone users are encrypted automatically. Look for the blue text bubbles, which signify encrypted iMessages. Similarly, Android users can send encrypted messages through Google Messages, indicated by a lock icon next to the timestamp.
However, there is a drawback. When an iPhone user texts an Android user, the messages may not benefit from the same level of encryption.
Apple has pointed out that the newer Rich Communication Services (RCS) used in mixed messaging is not end-to-end encrypted, making those messages potentially vulnerable to interception.
### Encrypted Messaging Apps
Experts recommend using encrypted messaging applications to avoid privacy breaches. Signal is highly regarded for its commitment to privacy, employing end-to-end encryption for all communications. The developers of Signal have promised to never sell user data and have made their code open to public inspection for added transparency.
Rival applications like WhatsApp incorporate Signal’s encryption technology, offering similar security standards. Facebook Messenger also provides end-to-end encryption but like WhatsApp, it is owned by Meta Platforms.
### Considerations for Telegram
Telegram is frequently used for chats and group messaging, yet it doesn’t automatically enable end-to-end encryption for all conversations. Users must turn on this feature manually, and it only applies to private chats, not group chats. Cybersecurity experts caution against relying on Telegram for sensitive discussions due to its less secure default settings.
### Making Phone Calls
Instead of traditional phone calls, users can make secure voice calls via apps like Signal and WhatsApp, which offer encryption similar to their messaging services. iPhone users can use FaceTime for calls, incorporating end-to-end encryption, while Android users might opt for services like Google Fi.
However, all participants in these communication methods must have the respective application installed to ensure security, and users can configure privacy settings to enhance their protection during calls.
In today’s digital landscape, taking these steps to secure communications can make a significant difference in how personal information is protected against unauthorized access.