Signal faces scrutiny following a series of phishing-based account hijackings. As previously reported, attackers impersonated Signal support staff to trick users into revealing registration codes and PINs, enabling them to re-register accounts on devices under their control. Signal clarified that its infrastructure and encryption were not compromised, attributing the incidents entirely to social engineering.
It was mostly German conservative figures falling for the phishing attack, and mostly German conservatives demanding this now. So they’re responding in a characteristically conservative fashion: zero self-awareness, zero competence in the matter, but righteousness cranked all the way up to eleven.
A lot of journalists got that wrong in initial reporting. But as an IT administrator you can see where they are coming from with their switch to another platform.
Signal is end user software, and a very good one at that. But it is no enterprise grade software. It lacks the management and policies needed for such user groups, which Wire seems to provide. Things like a mobile number as primary account handle spells ease and low entrance hurdle for end users, and a security problem for administrations.
The fractured nature of the IT in German politics is probably still keeping the attack surface alive. As outlined here by heise:
I got scammed therefore Signal insecure. Got it.
It was mostly German conservative figures falling for the phishing attack, and mostly German conservatives demanding this now. So they’re responding in a characteristically conservative fashion: zero self-awareness, zero competence in the matter, but righteousness cranked all the way up to eleven.
Wtf is a “Signal support staff” is it edible I’m hungry
A lot of journalists got that wrong in initial reporting. But as an IT administrator you can see where they are coming from with their switch to another platform.
Signal is end user software, and a very good one at that. But it is no enterprise grade software. It lacks the management and policies needed for such user groups, which Wire seems to provide. Things like a mobile number as primary account handle spells ease and low entrance hurdle for end users, and a security problem for administrations.
The fractured nature of the IT in German politics is probably still keeping the attack surface alive. As outlined here by heise:
https://www.heise.de/en/background/Signal-attacks-Political-reality-bites-the-IT-admin-11279251.html