[mldbk]

Given the fact that the most of zero click 0-day exploits were targeting iMessage, I'd disagree with your statement.

[scarface_74]

Well, Telegram is by definition not as a secure as iMessage. Telegram messages are by default not encrypted on the server. Even when it is encrypted on the server, telegram has the keys and can decrypt it.

They have the decryption keys

https://telegram.org/faq#:~:text=To%20protect%20the%20data%2....

[bcg361]

Telegram isn't as private as iMessage, but that doesn't mean it's not as secure. Security-wise, exploiting iMessage is easier than exploiting telegram, since iMessages has some special privileged access. Security doesn't mean privacy.

[scarface_74]

The issue with parsing images in a process was fixed awhile back. If you are really paranoid, you can put your iPhone in “lockdown mode”.

https://support.apple.com/en-us/105120

[eitland]

You rebutted something GP didn't write.

[bee_rider]

This is true (one is talking about zero-click zero days, the other is talking about “privacy,” not sure if they mean privacy against Facebook or privacy against other users of their device).

But the comment that kicked off the thread was the one about privacy.

[iknowstuff]

I think they mostly targeted font/image/url parsing which are used across the OS. iMessage was somewhat privileged at some point in the back but was compartmentalized later and media processing was the only escape, but that’s out of process now too I believe.

[saagarjha]

Most car crashes also happen near your house.

[albedoa]

The stats understander is logged on and strapped in.

[darthrupert]

That's because telegram has 3000-day exploits.