GoldBug Messenger Fraud? [was: FBI encrypted app, global arrests]
Fabio Pietrosanti (naif)
lists at infosecurity.ch
Wed Jun 9 00:44:22 PDT 2021
I did an analisys on GoldBug many years ago (in 2013) and i concluded
it's evidently a covered operations.
It's formally unknown and hidden team, but it's advertising on
specifically focused countries, it ask with active marketing for
endorsement to the NGO world.
If you wish to see the 2013 analysis to go forward, if they are still in
operations:
https://drive.google.com/drive/folders/0B6tQ4kKC2rLzUG0yS0FkWHpHZ3c?usp=sharing
-naif
On 09/06/2021 09:15, grarpamp wrote:
>> believe
> How GoldBug claimed EFF support, censored users, did
> many shady practices, never explained themselves, etc...
> is all in the archive. Whether people ever find, read, verify,
> spread, believe, or beware that history, try to resolve it,
> or audit the app themselves or not... is up to the user.
>
> Whether GoldBug, and the whole rest of their fishy suite,
> people, and actions, ever explains itself... is up to GoldBug.
>
> "GB does not provide checksums for the binary downloads
> as the source is given for those who want to build on their own.
> GB has a build date in the gui so the sums might differ."
>
> See how they still dodge around the basics that every real
> crypto project gets right. Referring to "checksums" as if that
> wasn't deprecated decades ago, claim opensource given is
> an excuse to not sign their binaries or sources, it's just the
> "build date" (which absolutely no project ever needs, and law
> of reproducible builds forbids) numbing people to fall for that
> excuse.
>
> And how no legitimate crypto comms dev people or projects
> on the internet seem to be using, reviewing, or citing them.
>
> Yet there's plenty of GoldBug's shill review sockpuppets,
> fake wiki pages, oddball software listing sites they
> spammed all over the internet.
>
> Etc, etc, etc...
>
> Fraud? Or best software ever? You decide.
>
> Maybe it is amazing tool, yet whatever it is, how they
> are acting is more than suspicious enough to hopefully
> impart a big amount of caution on potential users.
More information about the cypherpunks
mailing list