【】

发布时间：2025-04-04 09:56:28 作者：玩站小弟

On Monday, Signal, often viewed as the most secure messaging app, shared that a security breach of i 。

On Monday,Signal, often viewed as the most secure messaging app, shared that a security breach of its phone number verification service provider affected 1,900 of its users. Due to the breach, these users' phone numbers were exposed.

Tweet may have been deleted

According to Signal's post detailing the situation, the provider, Twilio, was targeted in a phishing attack. In Twilio's own postexplaining the situation, the company says it was a "sophisticated social engineering attack designed to steal employee credentials." The attack was successful in obtaining credentials from some of Twilio's employees. Twilio says that around 125 of its customers had data compromised during the attack. One of these affected customers is Signal.

On the bright side, Signal's reputation as the most secure messaging app is intact thanks to its service being 100 percent end-to-end encrypted. Without access to a Signal user's physical device, a bad actor could not access that user's messaging history. So, any sensitive information that was shared within messages on Signal have not been compromised. Profile data, contact list, and other data also was not compromised, again, thanks to Signal's design.

Mashable Light SpeedWant more out-of-this world tech, space and science stories?Sign up for Mashable's weekly Light Speed newsletter.By signing up you agree to our Terms of Use and Privacy Policy.Thanks for signing up!

However, Signal warns that there were issues that arose for the users affected by the breach:

"For about 1,900 users, an attacker could have attempted to re-register their number to another device or learned that their number was registered to Signal. This attack has since been shut down by Twilio."

SEE ALSO:Apple delayed Telegram's iOS app update due to unauthorized use of its emoji

According to Signal, one of those 1,900 users reported that their account was re-registered on another device without their authorization. Also, as Signal notes, most of its users were not affected at all by the security breach.

That there's been fairly little fallout from this security breach is a testament to Signal's security. But the breach is also a reminder of Signal's one glaring flaw: the requirement that a user registers their phone number to use the messaging service. Signal has previously hinted that it will soon allow people to use usernames instead of their phone number, but there is currently no scheduled roll out for that feature.

TopicsCybersecurity

Tag：

Mom discovers security cameras hacked, kids' bedroom livestreamed
A mother in Houston, Texas woke up one morning to pretty much every parent's worst-case scenario. 。 "
2025-04-04
Twitter kills egg avatar instead of hate speech and no this is not an April Fools' joke
Twitter is finally making some changes -- just not the ones we asked for.On Friday -- following the
2025-04-04
You could be an extra on 'Game of Thrones' this weekend
Practice your cursing and probably playing dead -- Game of Thronesis reportedly casting extras in Du
2025-04-04
Rental bidding startup seems good for landlords. Tenants? Not so much.
Finding a place to rent can be hellish, but does transferring that process online make it better? On
2025-04-04
5 people Tim Cook calls for advice on running the biggest company in the world
It's only fitting that the leader of the biggest company in the world has a pretty impressive list o
2025-04-04
Calvin Harris, Ariana Grande, Young Thug and Pharrell demand you have fun on 'Heatstroke'
Calvin Harris is a pragmatist, and that why he has crafted a technically perfect Song of the Summer
2025-04-04

綜合

知識

探索

焦點

休閑

百科

時尚

熱點

【】

相关文章

最新评论

文章分类

大家感兴趣的内容

最近更新的内容

友情链接