Let’s make something clear: The Trump cabinet’s shocking leak of its plans to bomb Yemen raises myriad confidentiality and legal issues. The security of the encrypted messaging app Signal is not one of them.
Comments
Log in with your Bluesky account to leave a comment
The real story is why were they using Signal in the first place? It’s so there wouldn’t be a record available to request from FOIA. This was done deliberately to not leave a paper trail, which shady and probably illegal.
Bigger scandal...
#mikeWaltz is in regular contact with a well known #israeli spy and ex idf soldier #JeffGoldberg to send #usa war plan secrets and frame public opinion.
Signal should be suing DJT and others defaming them, no? The fault for its misuse is with Waltz for adding a reporter and both he and the others for using a nonarchival non-approved app on personal phones.
Next time this admin leaks battle plans, the journalist should not sit on them, they should release them to the concerned parties. The Atlantic should have sent them to the Houthis.
No! security of the app is in question. It uses a one-time pad, if I am not mistaken. If the app is used over an unsecured network (Russian cell phone network), and the unencrypted message known, the data can be captured, and unencrypted, revealing the one-time encryption key. Very bad thing!!
It's not unsecured, it's highly secured... everything else you said is correct, tho.
Signal is one of the most secure communication tools not reliant on extensive, hardened infrastructure; only designated recipients (not even Signal) can decrypt the message, just don't designate the wrong person(s).
Are you certain that Signal is most secure? Here is the protocol. Notice the one time key generation. If a message is sent over an unsecured network, where sniffers exist, and the content of the message is already known, then the encryption key can be deduced.
Precisely. While “Kremlin dude” is using Signal over an unsecured (adversarial) phone network, the one-time key is easily compromised. Any communication w/other chat members will also render the chat members keys susceptible to breaking, because the message is known. No one is talking about it…yet!!
yeah this is not a matter of if signal is good at encryption as it is still not a legal instrument to communicate privileged information. as someone who had to view, and communicate such material removal or discussion outside appropriate channels is paramount to treason even if accidentally. oh and
However, that hardened infrastructure, and all the procedures around it are required for these types of communications by law to make them more secure... messages could be intercepted across Signal, they're just encrypted junk w/o the key; which can be obtained by targeting vulnerable devices/users.
not with confidential information it is a clear violation and threat to security of any government agency.
this program isn't literally air gapped from outside vulnerabilities like a government secure network, and use of it for official gov business whether confidential or not violates federal law
Oops sorry — last month.
NSA sent out a bulletin last month: "A vulnerability has been identified in the Signal Messenger Application. ….www.cbsnews.com/news/nsa-sig...
Yes, however there was a government memo just a week ago from NSA saying not to use it because of the possibility of it being hacked. That was for the entire Defense Dept.
The real lesson is much simpler, experts tell us: Don’t invite untrusted contacts into your Signal group chat. And if you’re a government official, use the encrypted communication tools that run on restricted, often air-gapped devices intended for a top-secret setting.
That’s because they don’t want their records subpoenaed because all they are doing is streamlining project 2025 that is why all of this shit is happening in so much of the population is clueless
..you are surreptitiously selling an UNTRUSTWORTHY product. There is NO amount of convincing that you can generate to justify people entrusted with the National Security mission of America using a COMMERCIAL App like Signal "encrypted or not!". @wired.com
@kevinmkruse.bsky.social recently suggested that ratcliffe looked like Michael Scott of The Office and especially after this photo I CANNOT STOP SEEING IT!!!
At WIRED’s The Big Interview event in December, the president of the Signal Foundation, @meredithmeredith.bsky.social, talked about secure communications as critical infrastructure and the need for a new funding paradigm for tech.
Any NORMAL Corporation has strict rules about data security, which communication methods R approved & they make their employees take MANDATORY training about these subjects & they FIRE THEM ON THE SPOT if they do NOT COMPLY
WTF AMERICA!
#ImpeachAndRemoveTrump&Vance
#ArrestAndDeportMusk
#FireHegseth
But weren’t the agency chief IT folks the ones who directed that the app be put on the govt phones. After all the warnings.Who told the IT chiefs at the agencies to do it? Was it potus or a lackey just using the auto pen? Where’s the order to pull back the devices now that they are all compromised?
Don't agree. It's at least in part about signal. The administration is using a 3rd party app to evade accountability laws. They shouldn't being using signal period.
Right, but the point being made here is that Signal is a secure tool but any reasonable definition; not that it's an acceptable channel for top secret communication, because any channel is only as strong as its weakest link: be it the device, operating system, network, software, password, or user.
Exactly! You can have the most secure app in the world, but it’s useless if you have the ability, for example, to capture, in real time, a screen view of what an adversary is doing on a compromised device.
And, again, the fact that they are using the Project 2025 playbook recommendation about how to avoid FOIA laws matters. This regime has been dismantling the government & directly disobeying laws intentionally and regularly. Let’s not normalize dodging accountability to the American people.
Lol wtf are you talking about? Yes it is. It's been proven to have been hacked by Russia on numerous occasions to obtain Ukrainian military comms. The security of the app is one of the leading confidentiality concerns.
Am I the only one who is here screaming that they were deliberating to go or not to go without the president of the United States involved or aware of it? 😂
Thanks to @lhn.bsky.social for letting me share some perspective on this. “If you spill milk on the floor, you can’t just say, ‘that’s actually not spilled milk, because I intended to spill it.’” And for the record, Signal is great E2E encryption and a great resource. Donate if you can!
Any NORMAL Corporation has strict rules about data security, which communication methods R approved & they make their employees take MANDATORY training about these subjects & they FIRE THEM ON THE SPOT if they do NOT COMPLY
WTF AMERICA!
#ImpeachAndRemoveTrump&Vance
Signal is fine. Using it to avoid leaving evidence of work that you're responsible to provide documentation of (ie: as govt employee, cabinet member, or advisor to POTUS) is illegal.
Comments
#mikeWaltz is in regular contact with a well known #israeli spy and ex idf soldier #JeffGoldberg to send #usa war plan secrets and frame public opinion.
It's not about Signal, The Atlantic or Jeffrey Goldberg
It's about the Criminally Incompetent trump Regime & trump
https://bsky.app/profile/jctrevino9.bsky.social/post/3llcdd3xtes23
Signal encrypts messages in transit but not on device, so they're securely transmitted but not stored securely
And if they're using Signal it's on commercial devices which someone like Citizen Labs regularly shows aren't secure either
Signal is one of the most secure communication tools not reliant on extensive, hardened infrastructure; only designated recipients (not even Signal) can decrypt the message, just don't designate the wrong person(s).
The included link is new to me and requires some digestion.
this program isn't literally air gapped from outside vulnerabilities like a government secure network, and use of it for official gov business whether confidential or not violates federal law
This is the long awaited sequel.
NSA sent out a bulletin last month: "A vulnerability has been identified in the Signal Messenger Application. ….www.cbsnews.com/news/nsa-sig...
The US is bombing another country.
Does Trump know? He says, “Not me!”
Lying or stupid his answer makes clear,
The incompetence here is really severe.
Learn more:
WTF AMERICA!
#ImpeachAndRemoveTrump&Vance
#ArrestAndDeportMusk
#FireHegseth
https://musingsofanobodyweb.wordpress.com/2025/03/26/is-idiotic-signal-chat-a-harbinger-of-upcoming-disaster/
@repjasmine.bsky.social
@aoc.bsky.social
@beyer.house.gov
@ocasio-cortez.house.gov
@reppeteaguilar.bsky.social
@raskin.house.gov
@schatz.bsky.social
@sanders.senate.gov
@housedemocrats.bsky.social @warren.senate.gov
@avindman.bsky.social
@repyassansari.bsky.social
@governorwalz.mn.gov
@mayorwu.boston.gov
@govpritzker.illinois.gov
@govwesmoore.bsky.social @govandybeshear.bsky.social @whitehouse.senate.gov @georgewhitesides.bsky.social
@jayapal.house.gov
@lujan.senate.gov @robertgarcia.bsky.social @rokhanna.bsky.social
@democraticwins.bsky.social @lincolnproject.us
@latinos4pp.bsky.social
@replsimon.bsky.social
@tonolatino.bsky.social
@hispaniccaucus.bsky.social @robertgarcia.bsky.social @gomez.house.gov @aoc.bsky.social @maxwellfrost.bsky.social
@adammockler.bsky.social @lukepbeasley.bsky.social @pattymurray.bsky.social @karaswisher.bsky.social @profgalloway.com @bobbyscott.house.gov
@georgetakei.bsky.social @davidcorn.bsky.social
@tnbrando.bsky.social
@mdg650hawk.bsky.social
This is way bigger than Signalgate
and inviting unauthorized guests.
Any NORMAL Corporation has strict rules about data security, which communication methods R approved & they make their employees take MANDATORY training about these subjects & they FIRE THEM ON THE SPOT if they do NOT COMPLY
WTF AMERICA!
#ImpeachAndRemoveTrump&Vance