The externally facing communications systems used by newsrooms and freelancers get the bulk of the attention, justifiably.
The internal systems teams use to communicate are often defaulted to, and at best they've got a data retention policy that eases the concerns regarding subpoenas and ignores surreptitious interception. I'm always up to rant about hygiene being ten times more important than a quick deletion policy, but I think we'll save that for a day when folks can see the fear in my eyes for themselves.
Device security is a huge topic all by itself, but it matters so much to this subject that I have to include a reminder that it doesn't matter how advanced your tools are if you're accessing them with a phone that isn't up to date on patches or a laptop you also use to watch pirated movies. Most people aren't quite ready to hear that they shouldn't bank where they shit, but journalists should know better.
I'm curious to know how your teams are handling communications for sensitive stories. I'm testing new tools (NomadNet, Sideband, MeshChat) and I would love to work with folks who need to implement higher level security.
Comments