Friendica Social Network

Lorenzo Ancora

2 weeks ago • •

Lorenzo Ancora
2 weeks ago • •

Nekogram, fork of the Open Source messaging app Telegram used by journalists and privacy activists, had just been discovered to include spyware. The malicious code sent all user's private phone numbers to the developer, a Chinese man nicknamed NekoWorkshop (alias tehcneko). The devteam publicly admitted the presence of the spyware code, then started reacting violently against the userbase.

#telegram #nekogram #opensource #fail #chat #hacking #privacy #security #malware #spyware #nekoworkshop

Official declaration of the Nekogram developer (posted: April 2nd on t.me/NekoUpdates - channel ID: 1339737452 - discussion ID: 1349472891).

Nekogram developer arguing immediately after the spyware scandal.

Nekogram developer insulting another user immediately after the spyware scandal.

#fail #opensource #security #Hacking #privacy #telegram #malware #chat #spyware #nekogram #nekoworkshop

in reply to Lorenzo Ancora

OCTADE

in reply to Lorenzo Ancora • 2 weeks ago • •

Shall we list the felonies the app developers committed?

in reply to OCTADE

Lorenzo Ancora

in reply to OCTADE • 2 weeks ago • •

@octade it depends on the jurisdictions involved and the type, volume, and destination of stolen data. At least, violations of: GDPR (EU - fines up to 10 millions EUR), CFAA/FWA/SCA (USA - jail and fines), maybe PIPL (China - jail + violence + fines).

The team likely sold the numbers to user-tracking services and will lose most of the actual userbase. Thanks to the anonymity guaranteed by the platforms involved, prosecution will be unlikely.😐

@OCTADE

⇧