- Teen’s photo of Nazi-themed school-dance invite goes viral 3 Years Ago
- Ben Shapiro comes out as pro-baby Hitler in March for Life message 3 Years Ago
- Facebook staffers caught writing 5-star Amazon reviews for Portal speaker 3 Years Ago
- R. Kelly supporters are using #FirstThem to protect him 3 Years Ago
- Lin-Manuel Miranda tweets his disappointment about Trump and Puerto Rico Today 1:28 PM
- YouTuber Simone Giertz reveals her brain tumor has returned Today 1:07 PM
- ‘Conversations With a Killer: The Ted Bundy Tapes’ feels like a bad one-man show Today 12:37 PM
- Post-cataclysmic sci-fi flick ‘IO’ fails to stand out in its saturated genre Today 12:30 PM
- Trump peddles right-wing ‘prayer rug’ conspiracy Today 11:29 AM
- Summit1G reportedly overtakes Ninja as king of Twitch subscribers Today 11:18 AM
- FCC’s request to postpone net neutrality case denied by federal court Today 11:02 AM
- School employee investigated for yelling, ‘Build the wall,’ at picketing teachers Today 10:50 AM
- Netflix announces staggering viewership for ‘You’—but many are skeptical Today 10:50 AM
- YouTuber Jesus Christ responds to sexual misconduct allegation Today 10:32 AM
- Pro-Trump Twitter blasts BuzzFeed report claiming Trump directed Cohen to lie to Congress Today 10:24 AM
ISIS recommends list of secure-messaging apps amid heated U.S. encryption debate
There’s one major app that isn’t on the list.
No matter what side of that debate you land on, however, it’s useful to keep an eye on how the world’s most infamous jihadist army is using encryption for security.
Whether you’re talking about white supremacists, jihadists, or democracy activists, extremist or subversive groups the world over—groups whose politics fall outside the mainstream and often against the powerful—have long been heavily invested in online security. This has driven U.S. officials like FBI Director James Comey to warn that terrorists and criminals are “going dark”–operating outside the reach of intelligence agents and law enforcement thanks to their use of encrypted communications.
In the last year, the Islamic State has found new ways to encourage more secure practices among their followers. The Afaaq Electronic Foundation (AEF), an arm of ISIS dedicated to “raising security and technical awareness” among jihadists, exists for the purpose.
“We recommend using encrypted and safe applications and open-source to maintain the privacy.”
In reaction to the news that WhatsApp recently enabled end-to-end encryption for its more than one billion users, AEF took to its usual propaganda channels (social media networks like Telegram and Twitter) to recommend against using anything either owned by Facebook, like WhatsApp, or whose code is hidden and closed-source, which would shield it from independent inspection for “backdoors” that could give government spies access.
“We recommend using encrypted and safe applications and open-source to maintain the privacy,” the techie-jihadis wrote.
The Islamic State’s current roundup of app recommendations is a listicle of seven encrypted apps from all over the world: Signal, Chatsecure, Telegram (with encrypted chat) SilentText, SilentPhone, LinPhone, and Surespot.
On one hand, this isn’t new. After last month’s Brussels terrorist attacks, AEF broadcast similar messages. But there’s no doubt that at least some jihadis and their supporters are now using these apps. The level of sophistication and popularity is another question entirely.
In Washington, D.C., a Senate bill is expected in the next week that will effectively ban strong encryption in the United States by requiring companies like Apple or Facebook to decrypt communications and other data for the government. A leaked draft of the legislation is already at the center of a political firestorm.
But would it stop ISIS from using these apps?
Likely not. Only two companies on that list (Open Whisper Systems, which develops Signal and whose technology powers the encryption enabled in WhatsApp; and Surespot) operate within the United States—meaning they would be subjected to U.S. law. SilentText and SilentPhone are Swiss-based creations. LinPhone is French.
In Switzerland, a political war over Internet privacy and encryption is being won by anti-surveillance forces. In France, backdoors in encryption have been repeatedly shot down by the ruling government despite multiple recent deadly terror attacks, a testament to how strong the opposition to the idea of weakening encryption is inside the country.
“Actually, until very recently, the U.S.A. was the ideal place to start a privacy-enhancing service or technology,” Joseph Lorenzo Hall, the chief technologist at the Center for Democracy and Technology, told the Daily Dot. “Our notions of free speech and the pro-innovator nature of our market tended to lay the groundwork for things like PGP [an encrypted email protocol].”
While the rest of the world wrestles with privacy and encryption thanks to violent groups like ISIS, the future of online security in America is being decided now in the halls of power—and, thanks to a largely free and robust Internet, from citizens connected in every corner of the United States.
Patrick Howell O'Neill is a notable cybersecurity reporter whose work has focused on the dark net, national security, and law enforcement. A former senior writer at the Daily Dot, O'Neill joined CyberScoop in October 2016. I am a cybersecurity journalist at CyberScoop. I cover the security industry, national security and law enforcement.