Disclosure: I didn't write the title, this is the original title of the BleepingComputer article. I know, it's a little uncharitable. Quick run down, the vulnerability as described allows Iran to...
Disclosure: I didn't write the title, this is the original title of the BleepingComputer article. I know, it's a little uncharitable.
Quick run down, the vulnerability as described allows Iran to see who is bypassing Iran's block of Signal using the workaround that currently has Signal's stamp of approval. It doesn't provide them access to the content of the messages.
I'm not sure what is going on with the banning of the researchers. I don't think banning those talking about a vulnerability in your product often leads to that vulnerability being undiscovered by nation-state actors. Of course, Signal claims their spam detection bot auto banned their accounts, which doesn't seem like it is outside of the realm of possibility.
Disclosure: I didn't write the title, this is the original title of the BleepingComputer article. I know, it's a little uncharitable.
Quick run down, the vulnerability as described allows Iran to see who is bypassing Iran's block of Signal using the workaround that currently has Signal's stamp of approval. It doesn't provide them access to the content of the messages.
I'm not sure what is going on with the banning of the researchers. I don't think banning those talking about a vulnerability in your product often leads to that vulnerability being undiscovered by nation-state actors. Of course, Signal claims their spam detection bot auto banned their accounts, which doesn't seem like it is outside of the realm of possibility.