Messaging apps are spying on you — Here’s how to stay safe in 2025
Social messaging apps tend to make major news headlines a few times per year for either their use in planning some sort of crime or, more routinely, for users’ privacy concerns over how companies like Meta — which owns WhatsApp, Instagram and Messenger — handle user data.
In a somewhat separate event, the Trump administration became the focus of national discussion after members of US President Donald Trump’s cabinet were found to be using Signal to plan military actions in Yemen. While a hack, backdoor access or misuse of user data was not the source of criticism in this scenario, the event did raise national security concerns about Signal’s security and whether or not high-ranking government officials should be using messaging apps to discuss classified information.
Apple’s recent decision to stop offering end-to-end encrypted (E2EE) cloud storage in the UK instead of creating a backdoor that would allow the UK government access to user data also raised eyebrows, and it highlights the ability of tech companies to make unilateral decisions about users’ data and their privacy.
On Episode 58 of The Agenda podcast, hosts Ray Salmond and Jonathan DeYoung spoke to Sessions technical co-founder Kee Jefferys about how the decentralized, encrypted messaging app works to protect users’ privacy and data.
Decentralize, or else the writing is on the wall
By downloading and using messaging apps, users, whether they realize it or not, often give the app and its operator permission to track their location, view their contacts and other data on their phone, and also keep records of their conversations.
Even in instances where the app operator pledges not to do any of the above, if they process and keep user data on just one or two servers, the company itself is a risk of being compromised by hackers — and this presents a direct risk to users.
Related:The case against Pavel Durov and why it’s important for crypto
When asked whether Apple’s aforementioned decision to cease E2EE services rather than grant a government request backdoor access was an isolated event, Jeffreys said it likely was not. “I see countries moving more towards this ideology of pushing applications like backdoors for applications and arresting developers of open-source code,” he said.
“I mean, obviously, we saw this with Durov, the founder of Telegram, being arrested in France. Even though he himself didn’t do anything wrong, because Telegram was being used for malicious acts, the French government felt empowered to arrest the founder, even though all of the Telegram code is open source. So, that’s really concerning from my perspective.”
As mentioned earlier, malicious attacks also remain an ever-present threat to users and the companies that operate messaging apps. Jeffreys explained that Session messages are E2EE, the app does not require a mobile phone number to sign up, and the platform uses Onion routing to hide users’ IP addresses, and he said that blockchain is one of the most optimal solutions for decentralizing and hardcoding security to applications. Jeffreys said: “In Session, you don’t reveal your IP address to the nodes that you store your messages on, and then it’s decentralized as well. So it doesn’t have a single central server where all of the messages are stored. It actually has this decentralized network of around 2,200 nodes, which kind of splits and stores your messages temporarily on the network. So from that perspective, like it’s censorship-resistant, it hides a lot of metadata when you use the service, and it doesn’t require these real-world identifiers when you sign up for Session.” When asked for some suggestions that normal people can take if they want to increase their privacy, Jefferys said that there are some very “simple steps [people] can take to protect themselves, mostly against hackers and corporate intrusion.” “Making sure that your social media footprint, like the things that you put out there publicly, are as clean as possible. So, like going through your old social media posts and removing things which are publicly accessible not only to train AI tools, but also to start forming these pictures about you, about what your interests are, what products do you like. Those are things that are publicly accessible. I would just remove as much as possible and be careful about what you’re saying online and the digital footprint that you’re creating as well.” To hear more from Jeffreys’ conversation with The Agenda — including his future vision for blockchain-based messaging apps — listen to the full episode on Cointelegraph’s Podcasts page, Apple Podcasts or Spotify. And don’t forget to check out Cointelegraph’s full lineup of other shows! Magazine: Did Telegram’s Pavel Durov commit a crime? Crypto lawyers weigh in This article is for general information purposes and is not intended to be and should not be taken as legal or investment advice. The views, thoughts, and opinions expressed here are the author’s alone and do not necessarily reflect or represent the views and opinions of Cointelegraph.
Bitcoin (BTC) $ 102,596.00
Ethereum (ETH) $ 2,271.10
Tether (USDT) $ 1.00
XRP (XRP) $ 2.07
BNB (BNB) $ 632.07
Solana (SOL) $ 134.69
USDC (USDC) $ 0.999736
TRON (TRX) $ 0.272319
Dogecoin (DOGE) $ 0.156332
Lido Staked Ether (STETH) $ 2,270.52
Cardano (ADA) $ 0.546811
Wrapped Bitcoin (WBTC) $ 102,534.00
Hyperliquid (HYPE) $ 34.06
Wrapped stETH (WSTETH) $ 2,753.60
Bitcoin Cash (BCH) $ 462.87
Sui (SUI) $ 2.57
LEO Token (LEO) $ 8.98
Chainlink (LINK) $ 11.95
Stellar (XLM) $ 0.235796
USDS (USDS) $ 0.999752
Avalanche (AVAX) $ 16.85
Toncoin (TON) $ 2.84
WhiteBIT Coin (WBT) $ 48.52
Shiba Inu (SHIB) $ 0.000011
Binance Bridged USDT (BNB Smart Chain) (BSC-USD) $ 1.00
Litecoin (LTC) $ 81.36
WETH (WETH) $ 2,270.76
Wrapped eETH (WEETH) $ 2,430.15
Monero (XMR) $ 311.42
Hedera (HBAR) $ 0.135496
Ethena USDe (USDE) $ 1.00
Polkadot (DOT) $ 3.29
Bitget Token (BGB) $ 4.20
Coinbase Wrapped BTC (CBBTC) $ 102,627.00
Pepe (PEPE) $ 0.000009
Uniswap (UNI) $ 6.41
Pi Network (PI) $ 0.507131
Dai (DAI) $ 0.999764
Aave (AAVE) $ 230.67
Ethena Staked USDe (SUSDE) $ 1.18
OKB (OKB) $ 50.54
BlackRock USD Institutional Digital Liquidity Fund (BUIDL) $ 1.00
Bittensor (TAO) $ 311.55
Aptos (APT) $ 4.00
Cronos (CRO) $ 0.082805
sUSDS (SUSDS) $ 1.06
Internet Computer (ICP) $ 4.68
Jito Staked SOL (JITOSOL) $ 162.98
NEAR Protocol (NEAR) $ 1.94
Ethereum Classic (ETC) $ 15.39
Tokenize Xchange (TKX) $ 27.89
USD1 (USD1) $ 1.00
Ondo (ONDO) $ 0.683498
Mantle (MNT) $ 0.606906
Gate (GT) $ 16.37
Fasttoken (FTN) $ 4.44
Kaspa (KAS) $ 0.066900
Official Trump (TRUMP) $ 8.70
Cosmos Hub (ATOM) $ 3.76
Lombard Staked BTC (LBTC) $ 102,526.00
VeChain (VET) $ 0.019769
Artificial Superintelligence Alliance (FET) $ 0.595484
POL (ex-MATIC) (POL) $ 0.172281
Sky (SKY) $ 0.072319
Render (RENDER) $ 2.89
Ethena (ENA) $ 0.245741
First Digital USD (FDUSD) $ 0.997654
Filecoin (FIL) $ 2.17
USDtb (USDTB) $ 1.00
Jupiter Perpetuals Liquidity Provider Token (JLP) $ 4.21
Worldcoin (WLD) $ 0.849028
USDT0 (USDT0) $ 1.00
Algorand (ALGO) $ 0.159652
Binance-Peg WETH (WETH) $ 2,271.27
KuCoin (KCS) $ 10.82
Arbitrum (ARB) $ 0.269891
Quant (QNT) $ 91.84
Binance Staked SOL (BNSOL) $ 142.32
NEXO (NEXO) $ 1.16
Flare (FLR) $ 0.016701
Sei (SEI) $ 0.196940
Kaia (KAIA) $ 0.182916
Rocket Pool ETH (RETH) $ 2,585.06
Kelp DAO Restaked ETH (RSETH) $ 2,377.84
Jupiter (JUP) $ 0.353303
Polygon Bridged USDT (Polygon) (USDT) $ 1.00
Binance Bridged USDC (BNB Smart Chain) (USDC) $ 1.00
PayPal USD (PYUSD) $ 0.999778
Celestia (TIA) $ 1.42
Bonk (BONK) $ 0.000013
Injective (INJ) $ 9.87
SPX6900 (SPX) $ 1.01
XDC Network (XDC) $ 0.057286
Virtuals Protocol (VIRTUAL) $ 1.38
Optimism (OP) $ 0.500878
Stacks (STX) $ 0.573322
PAX Gold (PAXG) $ 3,424.43
Solv Protocol BTC (SOLVBTC) $ 102,415.00
Fartcoin (FARTCOIN) $ 0.873396
Wrapped BNB (WBNB) $ 632.37
