Security & Privacy Blog

Exploring the importance of privacy, security, and why communication tools like Secure Legion matter in today's digital landscape.

Privacy Violation

ToTok Messaging App Accused of Being Spying Tool for UAE

Source: Axios • December 22, 2019

A popular messaging app offering free video calls was exposed as a UAE government surveillance tool. Downloaded by millions, ToTok tracked users' conversations, movements, and relationships before being removed from app stores.

The Threat: Seemingly innocent apps can be weaponized for mass surveillance. This highlights why open-source, independently audited tools matter.

Read Full Article on Axios →
Source Attribution: This article summary is based on reporting by Axios. All credit goes to the original authors and Axios. Click the link above to read the complete article on their website.
Targeted Attack

Amnesty International Staff Targeted with Malicious Spyware

Source: Amnesty International USA • Press Release

Amnesty International staff were targeted with sophisticated spyware aimed at compromising sensitive human rights work and communications.

The Threat: If well-resourced human rights organizations can be targeted, anyone is vulnerable. Privacy-focused tools that don't rely on centralized servers are essential.

Read Full Article on Amnesty USA →
Source Attribution: This article summary is based on a press release from Amnesty International USA. All credit goes to Amnesty International. Click the link above to read the complete press release on their website.
Mass Surveillance

Optic Nerve: GCHQ's Mass Webcam Surveillance Program

Source: Wikipedia • Revealed February 2014

GCHQ and NSA intercepted webcam images from 1.8 million Yahoo! users, capturing one image every 5 minutes. The program operated from 2008-2012, revealed by Edward Snowden documents in 2014.

The Threat: Centralized platforms are vulnerable to state surveillance. Encryption alone isn't enough—serverless architectures are needed to prevent mass surveillance.

Read Full Article on Wikipedia →
Source Attribution: This article is based on information from Wikipedia, which is available under the Creative Commons Attribution-ShareAlike License. Click the link above to read the full Wikipedia article and its cited sources.
Location Tracking

Fog Reveal: Mass Location Surveillance Without Warrants

Source: Wikipedia • Revealed 2022

Commercial tool tracks 250 million devices without warrants using location data from mobile apps like Starbucks and Waze. Costs law enforcement just $7,500/year for "mass surveillance on a budget." Tracks visits to doctors and lawyers.

The Threat: Apps selling your location data enable warrantless surveillance. This bypasses Fourth Amendment protections entirely.

Read Full Article on Wikipedia →
Source Attribution: This article is based on information from Wikipedia, which is available under the Creative Commons Attribution-ShareAlike License. Click the link above to read the full Wikipedia article and its cited sources.
Our Mission

Why Secure Legion Exists

The cases above illustrate a critical pattern: centralized communication platforms are inherently vulnerable to surveillance, whether by state actors, malicious developers, or compromised infrastructure.

Secure Legion addresses these threats through:

  • No Servers: Messages are delivered directly peer-to-peer using the Ping-Pong protocol, eliminating central points of surveillance
  • No Metadata: Unlike traditional messaging apps, we don't collect who talks to whom, when, or from where
  • Hardware-Backed Security: Private keys stored in device security chips (StrongBox/Secure Enclave) that cannot be extracted
  • Blockchain Identity: Your wallet is your identity—no phone numbers, email addresses, or personal information required
  • Open Source & Auditable: Unlike ToTok and other proprietary apps, our code is public and can be independently verified
  • Duress Protection: If forced to unlock your device, a duress PIN wipes all sensitive data while appearing normal

Privacy isn't just a feature—it's a fundamental human right. Secure Legion is built on the principle that your communications should be truly private, with no compromises.

Learn More About Secure Legion →