Problem
When I browse this forum, I constantly read about the weaknesses of popular "secure" messaging applications such as Signal, Telegram, and WhatsApp.
Some of the most notable critiques regarding their design and operation are:
Phone number requirement. Privacy is fundamentally compromised by necessitating users provide a phone number as it links their virtual profiles to an easily traceable mechanism (via phone billing) should the servers be compromised.
Loss of control over keys. It is possible for malicious third parties, or powerful arms of governments, to obtain access over their servers private keys - thereby compromising the entire network.
Loss of control over servers. Should the founders or operators of such systems remain stubborn against the threat of subpoena, the servers themselves can be reprogrammed to send doctored versions of Javascript/APKs to certain users that downgrade their secure transmission into plain transmission.
Question
Is this all fear mongering from a forum over unrealistic attack vectors? Or are these genuine plausible ways to compromise the aforementioned messaging applications.
Are there any realistic and accessible ways for the average person to communicate with one and another over the internet that ensures close-to-perfect security? A medium that provides anonymity on top of the usual privacy, authenticity and integrity?
*Anonymity as defined as being implausible to map the identities of a sender & receiver to their respective real-world identities. In other words, the only way for a participant's identity to be leaked is if their counterpart already knew their identity beforehand and is compromised.