您现在的位置是:娛樂 >>正文
【】
娛樂67人已围观
简介On Monday, Signal, often viewed as the most secure messaging app, shared that a security breach of i ...
On Monday,Signal, often viewed as the most secure messaging app, shared that a security breach of its phone number verification service provider affected 1,900 of its users. Due to the breach, these users' phone numbers were exposed.
Tweet may have been deleted
According to Signal's post detailing the situation, the provider, Twilio, was targeted in a phishing attack. In Twilio's own postexplaining the situation, the company says it was a "sophisticated social engineering attack designed to steal employee credentials." The attack was successful in obtaining credentials from some of Twilio's employees. Twilio says that around 125 of its customers had data compromised during the attack. One of these affected customers is Signal.
On the bright side, Signal's reputation as the most secure messaging app is intact thanks to its service being 100 percent end-to-end encrypted. Without access to a Signal user's physical device, a bad actor could not access that user's messaging history. So, any sensitive information that was shared within messages on Signal have not been compromised. Profile data, contact list, and other data also was not compromised, again, thanks to Signal's design.
However, Signal warns that there were issues that arose for the users affected by the breach:
"For about 1,900 users, an attacker could have attempted to re-register their number to another device or learned that their number was registered to Signal. This attack has since been shut down by Twilio."
SEE ALSO:Apple delayed Telegram's iOS app update due to unauthorized use of its emojiAccording to Signal, one of those 1,900 users reported that their account was re-registered on another device without their authorization. Also, as Signal notes, most of its users were not affected at all by the security breach.
That there's been fairly little fallout from this security breach is a testament to Signal's security. But the breach is also a reminder of Signal's one glaring flaw: the requirement that a user registers their phone number to use the messaging service. Signal has previously hinted that it will soon allow people to use usernames instead of their phone number, but there is currently no scheduled roll out for that feature.
TopicsCybersecurity
Tags:
转载:欢迎各位朋友分享到网络,但转载请说明文章出处“夫榮妻貴網”。http://new.maomao321.com/news/58f59899343.html
相关文章
The Weeknd teases new music in Instagram post
娛樂The Weeknd is approaching. 。 The Grammy award-winning singer looks to be in full third-studio-album m ...
【娛樂】
阅读更多Everyone seems to forget about that time Trump endorsed Eminem for President
娛樂A long time ago, in a much simpler time, Eminem ruled the early 2000's, Trump wasn't president, and ...
【娛樂】
阅读更多Trump wants to send humans back to the moon
娛樂The worst-kept secret in space policy is finally out: The Trump administration wants to send astrona ...
【娛樂】
阅读更多
热门文章
- Felix the cat just raised £5000 for charity because she's the hero we all need
- Microsoft literally built treehouses for its employees
- Sonos unveils the new Sonos One smart speaker with Alexa
- Facebook went down Wednesday, taking Instagram with it
- Michael Phelps says goodbye to the pool with Olympic gold
- Weinstein saga leads James Van Der Beek to share personal story of sexual harassment
最新文章
Watch MTV's Video Music Awards 2016 livestream
Saudi women celebrate end of driving ban, while reminding us there's more work to be done
Striking images reveal wineries devastated by wildfires
Saudi women celebrate end of driving ban, while reminding us there's more work to be done
Australian football makes history with first LGBT Pride Game
Puerto Rico hurricane crisis: Here's why this could be Trump's Katrina