For anything sensitive, I do not recommend using an email address or email itself for communication. Here are a few points as to why:
The “secure” email services that we generally rely on are never fully secure.
Here are two other examples:
– Tutanota, a secure email service, got hacked recently.
– CTemplar, which is a paid, encrypted by default email service, lost a considerable amount of user emails in July, 2021. As of July 11 2021, CTemplar did not provide any details regarding the cause of the incident. CTemplar has just acknowledged all user accounts were impacted, more or less, and some users had lost everything. Such an action does not inspire confidence.
Email, on the protocol level, is not secure by default.
Whoever controls the encryption keys controls everything. Most email services are unencrypted over the wire when email is sent. Also, even if you are using an encrypted email service, the people you are communicating with might not be.
Email is turning into a legacy form of messaging
This is due to its many failures at protecting user privacy, including blatant violations of it. Secure, blockchain-based messaging is the future.
Email = centralized.
Private by default blockchain-based messaging = decentralized.
This is the way forward.
If your communication is highly sensitive, consider using end-to-end encrypted messaging apps such as the Desktop version of Session and share with everyone you need to communicate with.
If you use Session on your mobile phone, it is imperative that you download direct from Getsession.org and use the APK to ensure you are not using a version which relies on Google Play Services.
Telegram is a good app, but should not be considered fully secure since not all messages are e2e encrypted.
When using Telegram, it is best to use the Desktop app, and avoid App Store versions. App Store versions are censored by Apple and Google. You can spot an App store Telegram as it has a white border to the icon, so if your Telegram app icon has a white border, it is compromised. The original Telegram is all blue. You can download the proper version of Telegram onto your mobile or desktop direct from their website.
It’s also important to keep in mind, if you’re using these services on an Apple, Google or Microsoft device, you’ll never be truly secure. Discover how to ensure your hardware and operating systems are secure.
Written by: 5u3ht3m0rp
This information was provided by 5u3ht3m0rp, an anonymous expert in cyber security who is dedicated to providing activists the tools they need to remain anonymous and untraceable.