Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://mstdn.social/users/rysiek/statuses/114030735392499599">Michał "rysiek" Woźniak · 🇺🇦 (rysiek@mstdn.social)'s status on Wednesday, 19-Feb-2025 22:30:12 JST</a><a href="https://mstdn.social/@rysiek" title="rysiek@mstdn.social"><img src="https://gnusocial.jp/avatar/13472-48-20221025105231.webp" width="48" height="48" alt='Michał "rysiek" Woźniak · 🇺🇦' style="position: absolute; left: 0; top: 0;">Michał "rysiek" Woźniak · 🇺🇦</a></section><article><p>Update Signal and pay attention when joining groups:<br><a href="https://www.wired.com/story/russia-signal-qr-code-phishing-attack/" rel="nofollow noreferrer">https://www.wired.com/story/russia-signal-qr-code-phishing-attack/</a></p><p>👉 No, Signal has not been compromised<br>👉 No, Signal encryption has not been broken<br>👉 No, there is no back-door in Signal</p><p>You should continue using Signal. The update is responding to a sophisticated, state-level attack targeting specific groups.</p><p>Unless you are a high-value target, you are almost certainly never going to see this in the wild.</p><p>If you know you are a high-value target, ask your support.</p><p><a href="https://mstdn.social/tags/InfoSec" rel="tag">#InfoSec</a> <a href="https://mstdn.social/tags/Signal" rel="tag">#Signal</a></p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/4592913#notice-8991296">In conversation</a><time datetime="2025-02-19T22:30:12+09:00" title="Wednesday, 19-Feb-2025 22:30:12 JST">about 3 months ago</time> <span>from <span><a href="https://mstdn.social/@rysiek/114030735392499599" rel="external" title="Sent from mstdn.social via ActivityPub">mstdn.social</a></span></span><a href="https://mstdn.social/@rysiek/114030735392499599">permalink</a><h4>Attachments</h4><ol><li><article><header><div>Domain not in remote thumbnail source whitelist: media.wired.com</div><h5><a href="https://www.wired.com/story/russia-signal-qr-code-phishing-attack/">A Signal Update Fends Off a Phishing Technique Used in Russian Espionage</a></h5><div> from <span>Andy Greenberg</span></div></header><div>Google warns that hackers tied to Russia are tricking Ukrainian soldiers with fake QR codes for Signal group invites that let spies steal their messages. Signal has pushed out new safeguards.</div><footer></footer></article></li></ol></footer></blockquote>

Corresponding Notice

Embed this notice
Michał "rysiek" Woźniak · 🇺🇦 (rysiek@mstdn.social)'s status on Wednesday, 19-Feb-2025 22:30:12 JST Michał "rysiek" Woźniak · 🇺🇦
Update Signal and pay attention when joining groups:
https://www.wired.com/story/russia-signal-qr-code-phishing-attack/
👉 No, Signal has not been compromised
👉 No, Signal encryption has not been broken
👉 No, there is no back-door in Signal
You should continue using Signal. The update is responding to a sophisticated, state-level attack targeting specific groups.
Unless you are a high-value target, you are almost certainly never going to see this in the wild.
If you know you are a high-value target, ask your support.
#InfoSec #Signal
In conversationabout 3 months ago from mstdn.socialpermalink
Attachments
1. Domain not in remote thumbnail source whitelist: media.wired.com
  A Signal Update Fends Off a Phishing Technique Used in Russian Espionage
  from Andy Greenberg
  Google warns that hackers tied to Russia are tricking Ukrainian soldiers with fake QR codes for Signal group invites that let spies steal their messages. Signal has pushed out new safeguards.

Public

Embed Notice

HTML Code

Corresponding Notice