Right now there are a lot of new eyes on Signal, and not all of them are familiar with secure messaging and its nuances. Which means there’s misinfo flying around that might drive people away from Signal and private communications. 1/
Conversation
Notices
-
Embed this notice
Signal (signalapp@mastodon.world)'s status on Wednesday, 26-Mar-2025 07:58:39 JST 
Signal
- BeAware :fediverse:, Rich Felker and Tim Chambers repeated this.
-
Embed this notice
Signal (signalapp@mastodon.world)'s status on Wednesday, 26-Mar-2025 08:01:20 JST
Signal
One piece of misinfo we need to address is the claim that there are ‘vulnerabilities’ in Signal. This isn’t accurate. Reporting on a Pentagon advisory memo appears to be at the heart of the misunderstanding: https://npr.org/2025/03/25/nx-s1-5339801/pentagon-email-signal-vulnerability. The memo used the term ‘vulnerability’ in relation to Signal—but it had nothing to do with Signal’s core tech. It was warning against phishing scams targeting Signal users. 2/
Tim Chambers repeated this. -
Embed this notice
Signal (signalapp@mastodon.world)'s status on Wednesday, 26-Mar-2025 08:01:39 JST
Signal
In order to help protect people from falling victim to sophisticated phishing attacks, Signal introduced new user flows and in-app warnings. This work has been completed for some time and is unrelated to any current events. If you’re interested in learning more, this WIRED article from February 19th (over a month ago) goes into more detail:
https://wired.com/story/russia-signal-qr-code-phishing-attack/ 4/ -
Embed this notice
Signal (signalapp@mastodon.world)'s status on Wednesday, 26-Mar-2025 08:01:40 JST
Signal
Phishing isn’t new, and it’s not a flaw in our encryption or any of Signal’s underlying technology. Phishing attacks are a constant threat for popular apps and websites. 3/
Tim Chambers repeated this. -
Embed this notice
br00t4c (br00t4c@mastodon.social)'s status on Wednesday, 26-Mar-2025 11:54:44 JST 
br00t4c
@signalapp Ain't a thing wrong with Signal. It's the unaccountable facsists in the rogue Trump regime that are broken and not fit for purpose.
-
Embed this notice
djsumdog (djsumdog@djsumdog.com)'s status on Wednesday, 26-Mar-2025 22:30:36 JST 
djsumdog
I mean, it was likely funded by the CIA:
https://www.kitklarenberg.com/p/signal-facing-collapse-after-cia
https://yasha.substack.com/p/signal-is-a-government-op-85e
How else would they be able to support that infrastructure?
I wouldn't recommend using the official Signal App if you do use it. Molly is open source and has an F-Droid repository that allows for easier updates if you don't use any Google Services. -
Embed this notice
Kristof Van Landschoot (ristkof@mastodon.social)'s status on Wednesday, 26-Mar-2025 22:30:37 JST 
Kristof Van Landschoot
@signalapp also in Belgian national media there's a professor from Antwerp spreading FUD about Signal ( https://www.vrt.be/vrtnws/nl/2025/03/25/signal-berichten-geheime-besprekingen-amerika/ )…
He’s calling it a "commercial app”. He claims intelligence services are able to attack if they want (somewhat credible I guess), and then proposes Threema as a better alternative, because the servers are in Switzerland (which sounds irrelevant to me in the context of e2ee without metadata).
-
Embed this notice
millennial falcon (falcennial@mastodon.social)'s status on Wednesday, 26-Mar-2025 23:41:44 JST 
millennial falcon
@signalapp Signal is good. the only requirement I know of to be successful on Signal is do not be a shit-eating dipshit nazi who is so dumb as to add professional whistleblowers to your illegal federal defense communications/gossip chat.
-
Embed this notice
Stephen Judge ???? (stephenjudge@mastodon.social)'s status on Friday, 28-Mar-2025 08:31:14 JST 
Stephen Judge ????
@signalapp IMO now is a more important time for Signal to emphasis the use of usernames v's phone numbers as a way to add and trust recipients. Similar to to the trust model of @threemaapp or #wire
All GNU social JP content and data are available under the