Telegram users spinning up their own honeypots and blindly trusting a client/server message encryption system is never not a great idea for new grass root criminal enterprises.
I find that some folks who know just a little about security are some of the worst at it. Their ability to confidently make terrible choices and inexplicably expose themselves to more risk than some rando citizen is amazing. It's like their strong enthusiasm / personal beliefs drive them head long into inexplicable choices and now their eggs are all in one insecure basket and they put a lot of foolish things there.
In contrast a more nervous / unknowing person might think "oh man I better not talk about this anywhere, I don't know who could be listening".
It's like that classic bell curve troll meme - "oh man I better not talk about this anywhere, I don't know who could be listening" is a correct instinct, especially in a western country. Doing anything on the web, whether it be crimes and ecommerce, is absolutely not anonymous. They re-use handles or emails that have personally identifying information, they don't use clean workstations, they brag (dumbest opsec thing ever, giving away information for absolutely no reason than your big ego), they taunt law enforcement. Osama bin Laden basically vanished off the face of the planet when much of the world's most powerful intelligence and militaries were hunting him, and he wasn't hiding in a cave, but he was not connected to the internet in any way whatsoever and communicated via courier, which still got got. The only reason you are anonymous or think you are anonymous is because no one powerful or determined enough has gone looking yet. This is a fact I am convinced of, and I am much more fearful of successful obfuscation tactics and red herrings left on purpose rather than a 20 year old kid engaging in a fantasy that he's so l33t he'll never get caught.
The other thing I'd say to any aspiring criminals out there is it's usually much less stressful and still profitable to get gainful employment if you are actually a talented hacker. Most of these guys seem like script kiddies, that do not understand the ramifications of what they are doing. Some of these breaches will be felt and cleaned up for decades, all so they could get a laugh and a few shekels and their e-peens stroked by other criminals.
To me it does, in terms of data privacy and isolation if your goal is to remain undetected by anyone you wish not to be - it's the wild west, even if you believe the GDPR has been effective. Even if you do believe it's just as bad in the rest of the world, we're heading into some sort of crisis when sufficiently powerful computing becomes commercially available (if it isn't already somewhere in a lab) and all the data these countries have been hoovering up and storing for who knows how long becomes decrypted, I would much rather be living in other parts of the world in terms of my privacy if/when that day comes.
Are you under the impression things are somehow better in e.g. Saudi Arabia or Russia or China? Maybe if the qualification was "developed countries", because developing ones might not have the budget, but "the west" is just wrong.
By grass root you mean not state sponsored? Agreed it’s not a good idea using Telegram as a server, people forget bots have chat history you can replay too
