Delete/Never-Use Google Allo: Says Snowden

Uploaded on 2016-09-26 in NEWS-Cybersecurity News, FREE TO VIEW, BUSINESS-Services-IT & Telecoms

Edward Snowden has warned people not to use Google’s new chat app, because it lets the company read everything that they say.

Google has finally released its new chat app after showing it off over the summer. It comes with a robot that watches everything people say and then stores it for later analysis, using that data to improve the app itself.

But that also means that chats are stored on Google’s servers indefinitely, and are able to be read by it. The company had initially indicated that the messages would only be stored temporarily, limiting the possible impact of any data breach and retaining some privacy for users.

But it now appears that Google won’t be doing that after all. Instead it will keep hold of all conversations. Google will use that data to improve parts of the app, such as its smart replies feature. That will allow the app to read through conversations and try and work out how people talk – it can then use that data to suggest what they might want to say to their friends.

But Google would presumably also be able to use that same data at a future date to target ads at users. Since their personal conversations might include some of their most sensitive data, that could lead to prying of a kind that most people would object to.

Making the change does probably keep Google on the right side of the law. By keeping track of all messages, Allo conversations will be accessible by law enforcement with warrants – something that can’t happen on apps like iMessage or WhatsApp, both of which have run into trouble over not being able to give up information to authorities.

All of those problems led Mr Snowden to send out a flurry of tweets telling people not to use Allo. “Free for download today: Google Mail, Google Maps, and Google Surveillance,” he wrote. “That's #Allo. Don't use Allo.” Another read: “What is #Allo? A Google app that records every message you ever send and makes it available to police upon request.”

Snowden already called Allo "dangerous" after it was revealed at Google's I/O conference earlier this year. Google does allow people to switch into a different mode, called Incognito, where conversations will be end-to-end encrypted so that they can’t be read by Google. But that isn’t turned on by default and leads most of the app’s features to break, turning it into just a conventional chat app.

"We've given users transparency and control over their data in Google Allo," said a Google spokesperson. "And our approach is simple, your chat history is saved for you until you choose to delete it. You can delete single messages or entire conversations in Allo.

"We also provide the option to chat in Incognito mode, where messages are end-to-end encrypted and you can set a timer to automatically delete messages for your device and the person you’re chatting with's device at a set time."

Independent


 

« Company Lost $44m Through One Email Fraud
Finding The Right Security Professional »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

Resecurity, Inc.

Resecurity, Inc.

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

Titus

Titus

Titus is a global leader in enterprise-grade data protection solutions.

FDM Group

FDM Group

FDM Group is an international Professional services company with a focus on IT. Services offered include Software Testing, and Information Security with a focus on operational security and compliance.

FIRST Conference

FIRST Conference

Annual conference organised by the Forum of Incident Response and Security Teams (FIRST), a recognized global leader in computer incident response.

Zivver

Zivver

Zivver is the effortless, secure email platform, powering the next generation of secure communications.

Sage Designs

Sage Designs

Sage Designs is a provider of SCADA, Security & Industrial Automation products and training programs.

Vector InfoTech

Vector InfoTech

Vector InfoTech is a leader in Industrial Security, Networks, IT and Telecommunications.

OneSpan

OneSpan

OneSpan (formerly Vasco Data Security) is a global leader in digital identity security, transaction security and business productivity.

Orchestra Group

Orchestra Group

Orchestra Group offer a unique integrated cybersecurity defense platform with proactive security policy management and enforcement orchestration.

PurpleSynapz

PurpleSynapz

PurpleSynapz provides hyper-realistic Cyber Security Training with a modern curriculum and Cyber Range.

Sovereign Intelligence

Sovereign Intelligence

Sovereign Intelligence provides automated insight into the relative intensity of hidden Cyber, Brand, and Financial Risks to your company.

Aware

Aware

Aware is the only comprehensive AI solution for governance, risk, compliance and insights for leading collaboration platforms.

Cyber Bytes Foundation

Cyber Bytes Foundation

Cyber Bytes Foundation exists to establish and sustain a unique Cyber Ecosystem to accelerate the development of a strong Cyber workforce and support community outreach programs.

Sourcepass

Sourcepass

Sourcepass is an IT consulting company that focuses on providing expert IT services, cloud computing solutions, cybersecurity services, website, and application development.

Truly Secure

Truly Secure

Truly Secure is an IT Service Provider that ensures greater efficiency and security within a company's technological environment.

443ID

443ID

443ID brings OSINT data to Identity Security professionals on any digital platform.

SHI International

SHI International

SHI International deliver against your IT and business needs, helping you build strategies and solutions that will drive innovation, collaboration and security.