They broke the content, not the cipher: the EncroChat lesson
EncroChat sold about 60,000 people a phone marketed as untouchable: hardened handsets, a closed network, encryption end to end. In June 2020 that promise ended — and the detail that matters is that nobody broke the cipher.
What actually happened
A Joint Investigation Team — the French Gendarmerie Nationale with Dutch technical experts, authorised by the criminal court in Lille — pushed an implant onto the handsets themselves (French codename Emma 95, Dutch 26Lemont; the UK arm was Operation Venetic). It read messages straight off the device, where the words are already plaintext — before encryption protects anything, after it stops mattering. On 13 June 2020 EncroChat noticed and told users to bin the phones. Too late: data from users across 122 countries was already flowing. Germany’s federal police, the BKA, pulled its share from a Europol server, and prosecutors in Frankfurt obtained authorisation through European Investigation Orders.
The courts then settled it. On 30 April 2024 the Court of Justice of the EU (Grand Chamber), in Case C‑670/22 (M.N.), referred by the Landgericht Berlin, ruled the EncroChat data can be admissible across the EU. The same year Germany’s Federal Constitutional Court rejected a constitutional complaint against an EncroChat‑based conviction. The convictions stand.
The encryption was never the target. The endpoints and the central servers were.
The one thing that scaled: a centre
Strip the operation down and the reason it produced tens of thousands of cases is not the implant — it is that there was a single place to aim at. EncroChat ran central infrastructure. Compromise that centre once, and every user is exposed in the same stroke. Sky ECC fell the same way. ANOM went further — the centre was the police. The lesson is structural: a centre is what turns one infiltration into a dragnet.
What YGOOW changes
There is no centre to own. YGOOW’s relay is deaf: it holds no keys, no senders, no recipients, no routing, and its location sits behind a Tor onion service. Seize it and you have indistinguishable noise — you cannot even sort the blocks into conversations. There is no operator holding plaintext or a contact graph to raid, pressure, or serve an order. So to read your messages, an adversary cannot harvest everyone from one server. They have to come for your specific phone, one target at a time — which breaks the economics that made EncroChat a mass event rather than a manhunt.
The key is never in the channel. Beyond that, YGOOW can seal the words themselves under a secret the channel never touches — a password, a file, a quorum of people. A broken channel, or a phone seized cold, still yields [locked], because the key to the content was never there to find. EncroChat had ordinary end‑to‑end encryption with keys living on the device; this is a different shape of protection it never offered.
Where it ends — because we always say so
YGOOW does not beat the part that actually broke EncroChat: a live implant on an unlocked phone reads your screen no matter the cryptography, and we say exactly that on the trust page. Against a phone seized cold, our Locked — nothing stored level helps, because the secret lives only in your head. Against malware already sitting where the plaintext is, you lose — like everyone — and we will not sell you a handset that pretends otherwise.
That refusal is the point, and it is why the claims above are worth believing: EncroChat’s pitch was “untouchable”; ours is “here is precisely where it ends.” We deny the dragnet, not the laws of physics.
This is one of two ways the “unbreakable” messengers actually fell. The other never touched the content at all — it took the metadata. That is the Ricochet lesson.
Your key, your rules — everything else is redacted.