Lawsuit Slams Security of Confide Messaging App

Confide users accept note: a new lawsuit alleges that the encrypted messaging app reportedly favored by members of Donald Trump's administration isn't as secure every bit information technology claims to be.

Confide is advertised as an "encrypted, imperceptible and screenshot-protected messenger" that lets you lot "speak freely, without the risk of what you say being forwarded on or permanently stored, just similar when you're talking in person." But, every bit was reported by Recode, a lawsuit filed yesterday in the Southern District of New York claims that the Windows version of Confide doesn't offer screenshot protection.

"Confide represents, in no uncertain terms, that its App blocks screenshots. But that isn't true," co-ordinate to the complaint. "Any Confide user accessing the platform through the Windows app can take screenshots of any and all received messages."

Confide in a argument to PCMag denied those claims.

"The accusations set along in the complaint are unfounded and without merit," Confide said. "We look forward to responding to this frivolous complaint and seeing this instance swiftly thrown out of court."

On its website Confide says that "where [screenshot] prevention is non technically feasible, our patent-awaiting reading feel ensures that only a sliver of the message is unveiled at a time and that the sender's proper noun is not visible." The suit says that's not the example. When taking a screenshot using the Windows app, the image tin include "the entire content of the message as well as the identity of the sending party," the suit contends.

Confide further promises to notify the sender if a screenshot has been attempted, and to "boot the recipient out of the bulletin."

"In reality, Confide does not notify anyone when a screenshot was taken when the recipient uses the macOS or Windows app," the complaint notes. "Worse, the offending party taking the screenshot is never removed from the message, ensuring that the sender continues sending confidential or otherwise sensitive information."

The suit comes subsequently researchers at security firm IOActive recently discovered multiple disquisitional vulnerabilities in the Confide app. Those flaws could take allowed an attacker to impersonate a Confide user, sneakily sleuth people's contact details, change the contents of a message or attachment in transit, or "become an intermediary in a chat and decrypt messages." IOActive reported the flaws to Confide and the company has patched all the holes.

About Angela Moscaritolo

Angela Moscaritolo is PCMag's expert on fitness and smart home products. Teaching yoga for virtually ten years has helped her in evaluating a range of connected health products including fitness trackers, center rate monitors, rowers, smart scales, stationary bikes, strength grooming machines, treadmills, and more than. Angela besides tests smart dwelling house devices from her ranch in Florida, including air purifiers, kitchen appliances, and robot vacuums, just to name a few.

Source: https://sea.pcmag.com/software/15223/lawsuit-slams-security-of-confide-messaging-app

Posted by: augustinefirig1984.blogspot.com

Share this post