Freedom of the Press Foundation
Show Navigation

DOJ sues Apple, spotlighting iMessage

Martin Shelton
Dr. Martin Shelton

Principal Researcher

Screenshot from iMessage. (Freedom of the Press Foundation, CC BY 4.0)

It’s the Digital Security Training team at Freedom of the Press Foundation (FPF), with security news that keeps you, your sources, and your devices safe. If someone has shared this newsletter with you, please subscribe here.

In the news

The U.S. Department of Justice filed an antitrust lawsuit against Apple, claiming the company engages in monopolistic practices over the smartphone market, preventing competitors by degrading the experience of communicating with non-Apple users in its products. iMessage features prominently in the suit, with the DOJ alleging consumers are disincentivized to leave its “walled garden” and so miss out on unique features built into the iMessage protocol, including end-to-end encryption between Apple users. Read more here.

What you can do

Because iMessage offers end-to-end encryption, preventing even Apple from snooping on its users' conversations by default, it works just fine when used with your fellow “blue bubble” Apple contacts. However, when speaking to Android users, iMessage falls back to standard SMS messages, which are far less secure. This is another reason we often encourage using Signal for end-to-end encrypted messaging, since it offers similar safety guarantees on both iPhones and Android phones. Read our guide to getting started with Signal or, if you already use it, read our guide to locking down Signal.

Updates from my team

We are always ready to assist journalists with digital security concerns. Reach out here, and stay safe and secure out there.

Best,
Martin

Donate to support press freedom

Your support is more important than ever.
Donate now

Read more about Digital Security Digest

Header image with a graphic of Signal's "speech bubble" logo, with a pattern of silhouettes of phones in the background.

Crossfire over messaging security

Johns Hopkins cryptography professor Matthew Green explains that “the cryptography behind Signal (also used in WhatsApp and several other messengers) is open source and has been intensively reviewed by cryptographers. When it comes to cryptography, this is pretty much the gold standard.” By comparison, Telegram does not provide end-to-end encryption protection by default and only offers it as an option in one-on-one “Secret Chat” mode.

57fe4d8e-3f52-ea6d-d840-5e8dd6dca412

Google Docs locks out writer

While it’s powerful and convenient, Google Docs might not be right for all documents, including those that you consider sensitive, private, or that you can’t risk losing. Read more about newsroom privacy and security considerations when using Google Workspace.

Google details app violations

According to its security blog, Google prevented 2.28 million — yes, million — Android apps from being published on its Play Store in 2023. The company says it also removed 333,000 accounts for attempting to deliver malware through the Play Store, as well as for “repeated severe policy violations.” These numbers have grown substantially since 2022, when the company disclosed it prevented 1.43 million apps from being published on the Play Store.

More posts