RRNM ConsultancyEmpowering Smarter Decisions
All articles
Security

After Encrochat: why 'PGP phones' collapsed as a category, and what replaced them

The encrypted-phone market between 2018 and 2022 was a real industry with real revenue, marketed openly at trade shows. In 2026 it's mostly gone. Here's the honest history and what came next.

RNM Admin25 May 20263 min read
SecurityHistoryMarkets

For about a decade, there was a thriving commercial market for what were called "PGP phones" or "encrypted phones" — devices sold for a few thousand dollars apiece, with subscription fees, custom firmware, and aggressive marketing claims about end-to-end-encrypted messaging. By 2026, that category is essentially gone. The story of why it collapsed is useful for any executive thinking about secure communications today.

This is not a defence of the category. It is a market analysis.

What the category actually was

Between roughly 2014 and 2020, several vendors — Phantom Secure, Encrochat, Sky ECC, Ciphr, MPC, Anom, and a long tail of smaller operators — sold hardened Android phones with:

  • A custom messaging app using PGP-style key exchange
  • Removed cameras, GPS, browsers, and conventional phone apps
  • Subscription pricing in the $1,500–$3,000 per six months range
  • Distribution through a private reseller network, not retail

At its peak, the market is estimated to have had tens of thousands of active subscribers and several hundred million dollars of annual revenue. It was not small.

Why it collapsed — three forces, not one

The collapse is usually framed as a single law-enforcement story. The full picture is three overlapping forces, only one of which was operational law enforcement.

Force 1 — Mainstream messaging caught up

By 2020, Signal, WhatsApp, and iMessage all offered end-to-end-encrypted messaging by default. The technical case for a separate "encrypted phone" — strong cryptographic messaging that consumer apps couldn't match — disappeared.

If your only requirement was messages that the carrier can't read, your phone already did that. The category had nothing to sell to a normal corporate buyer.

Force 2 — Mainstream operating systems hardened

Around the same period, both iOS and Android substantially hardened. Apple's Lockdown Mode (2022), Google's Pixel security architecture, and Android's app sandboxing closed most of the gap between a stock device and a custom-firmware "secure phone." See our GrapheneOS and hardened iPhones buyer's guide for the current state.

A correctly-configured commercial phone in 2026 has better hardware security, faster updates, and a larger team behind it than any of the niche encrypted-phone vendors ever did.

Force 3 — Law enforcement disrupted the network economics

Beginning in 2020, several of the largest vendors — Encrochat (June 2020), Sky ECC (March 2021), Anom (June 2021) — were taken down or revealed to have been compromised. The resulting prosecutions did not eliminate the technology; what they eliminated was the commercial trust a buyer needed to use the products.

A vendor whose product has been demonstrably broken can't sell that product. The network effect that made the category work (other people using it) became a liability.

What replaced the category

In 2026, the legitimate corporate market for secure communications has consolidated into three layers, none of which is a custom phone:

  1. Stock hardware, hardened configuration — iPhone in Lockdown Mode, GrapheneOS on Pixel, MDM-managed corporate devices
  2. Cross-platform encrypted messaging — Signal as the de facto standard, sometimes Wire or Matrix-based options for enterprise
  3. Layered defence at the account level — hardware security keys, SIM-swap protection, dedicated verification numbers (see our secure SIM playbook)

This is less glamorous than carrying a black phone with a removed camera. It is also, by every objective metric, more secure.

Why this matters for an executive in 2026

Two practical conclusions for anyone buying secure communications today:

  • Be suspicious of any 2026 vendor selling something that looks like a 2018 encrypted phone. The market that supported those products doesn't exist. A new vendor in that exact shape, in 2026, is either misunderstanding the market or selling something they shouldn't.
  • Don't confuse "looks technical" with "is secure." A normal iPhone, configured well, is more secure than almost everything that was on offer in the peak encrypted-phone era. The black case and the removed camera were marketing, not security.

The lesson of the encrypted-phone era is not that encrypted communication is impossible. It is that the security came from the protocols and the operational discipline, not from the hardware shell. Both are now available on commercial devices.

Continue reading

All articles →
Security

The executive phone stack in 2026: what fractional CISOs actually recommend

Most founders we work with carry the same phone as their cousin in college. That's fine until your inbox is worth seven figures. Here's the realistic device stack we see senior security advisors recommending in 2026.

29 May 2026 · 2 min
Security

A founder's guide to secure SIMs: travel eSIMs, burner numbers, and when to use which

Every founder eventually faces the same decision tree: international travel, a sensitive negotiation, a press cycle. Here's the framework for which number to give which person.

28 May 2026 · 3 min
Security

GrapheneOS, hardened iPhones, and the 2026 buyer's guide for security-conscious executives

The market for "executive secure phones" is louder than it has ever been, and most of the advice is wrong. Here's the actual buyer's guide for 2026 — what to buy, what to skip, and what each option actually does.

27 May 2026 · 3 min

Ready when you are

Let's build the next chapter of your business — together.

Tell us where you are and where you want to go. We'll come prepared.

Start the Conversation See How We Work