We are aware of recent reports regarding targeted phishing attacks that have resulted in account takeovers of some Signal users, including government officials and journalists. We take this very seriously.
To be clear: Signal’s encryption and infrastructure have not been compromised and remain robust. These attacks were executed via sophisticated phishing campaigns, designed to trick users into sharing information – SMS codes and/or Signal PIN – to gain access to users’ accounts.
they refuse to acknowledge that it's their failure by design…
Infosec.Space
Kevin Karhan :verified: (@[email protected])@[email protected] THERE IS *NO LEGITIMATE REASON* FOR #Signal TO DEMAND A #PhoneNumber (= #PII by circumstances if not mandatory doxxing to the governments aka. *"#KYC"*)… - so yes I [do blame Signal](https://infosec.space/@kkarhan/116200585213177913) because this attack vector is unique to #Signal's shittyness and would not exist with @[email protected] / #monoclesChat or even [`cock.li`](https://cock.li) of all places…
@kkarhan@infosec.space
instead #Signal continues to peddle their #Shitcoin to this day…
https://www.youtube.com/watch?v=0DSGq9FQKU4 video via / / #TechLore
YouTube
We Tried Signal's MobileCoin So You Never Have To...
