时间:2025-04-03 10:45:45 来源:网络整理编辑:綜合
On Monday, Signal, often viewed as the most secure messaging app, shared that a security breach of i
On Monday,Signal, often viewed as the most secure messaging app, shared that a security breach of its phone number verification service provider affected 1,900 of its users. Due to the breach, these users' phone numbers were exposed.
Tweet may have been deleted
According to Signal's post detailing the situation, the provider, Twilio, was targeted in a phishing attack. In Twilio's own postexplaining the situation, the company says it was a "sophisticated social engineering attack designed to steal employee credentials." The attack was successful in obtaining credentials from some of Twilio's employees. Twilio says that around 125 of its customers had data compromised during the attack. One of these affected customers is Signal.
On the bright side, Signal's reputation as the most secure messaging app is intact thanks to its service being 100 percent end-to-end encrypted. Without access to a Signal user's physical device, a bad actor could not access that user's messaging history. So, any sensitive information that was shared within messages on Signal have not been compromised. Profile data, contact list, and other data also was not compromised, again, thanks to Signal's design.
However, Signal warns that there were issues that arose for the users affected by the breach:
"For about 1,900 users, an attacker could have attempted to re-register their number to another device or learned that their number was registered to Signal. This attack has since been shut down by Twilio."
SEE ALSO:Apple delayed Telegram's iOS app update due to unauthorized use of its emojiAccording to Signal, one of those 1,900 users reported that their account was re-registered on another device without their authorization. Also, as Signal notes, most of its users were not affected at all by the security breach.
That there's been fairly little fallout from this security breach is a testament to Signal's security. But the breach is also a reminder of Signal's one glaring flaw: the requirement that a user registers their phone number to use the messaging service. Signal has previously hinted that it will soon allow people to use usernames instead of their phone number, but there is currently no scheduled roll out for that feature.
TopicsCybersecurity
Major earthquake and multiple aftershocks rock central Italy2025-04-03 10:43
十佳球 :孫興慜詭異任意球 蝙蝠軍核心蠍子擺尾2025-04-03 10:32
官方 :西漢姆聯簽下23歲中場 林皇前途危機預警2025-04-03 09:13
武磊提前歸來令留洋層麵受損 直言澳大利亞正在新老更替2025-04-03 09:00
Despite IOC ban, Rio crowds get their political messages across2025-04-03 08:26
官方:巴薩中場莫裏巴加盟萊比錫 轉會費2200萬歐2025-04-03 08:22
以弱勝強?國足發力定位球進攻 傷病情況不嚴重正積極恢複2025-04-03 08:13
中乙衝甲組9月1日開賽青島海牛最被看好 首輪天王山之戰2025-04-03 08:12
Snapchat is about to explode in popularity, report says2025-04-03 08:12
海港結束兩周假期集合外援四缺一 邁斯托羅維奇歸隊2025-04-03 08:01
Airbnb activates disaster response site for Louisiana flooding2025-04-03 09:56
國足平均身高超過澳大利亞日本 符合最近幾年趨勢2025-04-03 09:47
馬赫雷斯前妻:他去曼城後就變壞了 凱恩老婆真幸運2025-04-03 09:37
新華社解讀澳大利亞隊 :強在哪裏? 帶刀中衛成最佳射手2025-04-03 09:21
Cat gets stuck in the most awkward position ever2025-04-03 09:16
淚目 !C羅:對曼聯的愛永不消逝 回歸隻為弗格森2025-04-03 09:09
國足中澳戰23人名單賽前6小時確定 大概率全攻全守2025-04-03 08:57
官方:曼城六年合同續約迪亞斯 新合約期至2027年2025-04-03 08:11
Balloon fanatic Tim Kaine is also, of course, very good at harmonica2025-04-03 08:05
曼聯集郵葡萄牙球星已成癮 再挖角一大腿現前兆2025-04-03 08:03