Kaspersky Shares Essential Tips for Messaging App Security and Privacy

Messaging apps are integral to modern communication, but they also pose significant security and privacy risks. Kaspersky’s latest recommendations highlight best practices to safeguard your data. Below, we expand on these tips with actionable commands, code snippets, and steps to enhance your security posture.

You Should Know:

1. Enable Two-Factor Authentication (2FA)

• Most apps (WhatsApp, Telegram, Signal) support 2FA. Use it!
• Linux CLI: Generate a TOTP key for apps using oathtool:

  oathtool --totp -b "YOUR_SECRET_KEY" 
  

2. Disable Cloud Backups

• Cloud backups can be hacked. Disable them in app settings.
• Windows Command: Check backup status via Registry:

  reg query "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\CloudStore" 
  

3. Use Disappearing Messages

• Signal and Telegram offer self-destructing messages.
• Bash Script to Auto-Delete Files (Simulating Disappearing Messages):

  find /path/to/messages -type f -mtime +1d -exec rm {} \; 
  

4. Block Suspicious Contacts

• Use `ufw` (Linux) to block IPs of known malicious users:

  sudo ufw deny from 123.45.67.89 
  

5. Verify QR Codes Before Scanning

• Use `zbarimg` (Linux) to inspect QR codes offline:

  zbarimg suspicious_qr.png 
  

6. Encrypt Chats End-to-End (E2E)

• Apps like Signal use E2E by default. Verify encryption status.
• OpenSSL Command to Simulate E2E Encryption:

  openssl enc -aes-256-cbc -salt -in message.txt -out encrypted.enc 
  

7. Disable Read Receipts

• Prevents tracking. Disable in app settings.

8. Regularly Update Apps

• Linux (Debian):

  sudo apt update && sudo apt upgrade -y 
  

9. Avoid Public Wi-Fi for Sensitive Chats

• Use a VPN. Linux (OpenVPN):

  sudo openvpn --config client.ovpn 
  

10. Check App Permissions

• Windows PowerShell:

  Get-AppxPackage | Select Name, PackageFullName 
  

11. Use Strong, Unique Passwords

• Generate passwords with pwgen:

  pwgen 16 1 -s -y 
  

12. Monitor Linked Devices

• Revoke unknown sessions. Telegram CLI:

  telegram-cli --lsessions 
  

What Undercode Say:

Messaging security is non-negotiable. Beyond Kaspersky’s tips, integrate these commands into your routine for proactive defense. Linux and Windows offer robust tools (ufw, openssl, reg query) to enforce privacy. Always verify, encrypt, and audit.

Expected Output:

• Enhanced messaging security via 2FA, encryption, and permissions management.
• Automated cleanup of sensitive data with cron jobs (find + rm).
• Network-level blocking (ufw) and offline QR verification (zbarimg).

Relevant URLs:

• Kaspersky’s Official Security Tips
• Signal Encryption Docs
• OpenSSL Manual

References:

Reported By: Ethical Hacks – Hackers Feeds
Extra Hub: Undercode MoN
Basic Verification: Pass ✅

Join Our Cyber World:

💬 Whatsapp | 💬 Telegram