There's a "Signal deanonymized" thing going around:
https://gist.github.com/hackermondev/45a3cdfa52246f1d1201c1e8cdef6117
Stay calm. Deep breaths.
👉 while this is a real consideration, the only thing the attacker gets from this is a very rough (kilometers or tens of kilometers radius) location
👉 other communication platforms that use any kind of caching CDN to deliver attachments are just as vulnerable
👉 you almost certainly should continue to use Signal, unless you specifically know that this is a big problem for you.
#Signal #InfoSec
Michał "rysiek" Woźniak · 🇺🇦 /
npub1af…q5gp4
2025-01-21 22:11:03
Author Public Key
npub1afml2kzwamqxppl50207sf5jwgl3l6ugn6hnuwugtxt7ctnhdtkqjq5gp4Published at
2025-01-21 22:11:03Event JSON
{
"id": "22a9d4cd82626ed194a3203dadaa1c1db3f07f803af9aa76c26b9628716d3c4f",
"pubkey": "ea77f5584eeec06087f47a9fe82692723f1feb889eaf3e3b885997ec2e776aec",
"created_at": 1737497463,
"kind": 1,
"tags": [
[
"t",
"signal"
],
[
"t",
"infosec"
],
[
"proxy",
"https://mstdn.social/@rysiek/113868633791655142",
"web"
],
[
"proxy",
"https://mstdn.social/users/rysiek/statuses/113868633791655142",
"activitypub"
],
[
"L",
"pink.momostr"
],
[
"l",
"pink.momostr.activitypub:https://mstdn.social/users/rysiek/statuses/113868633791655142",
"pink.momostr"
],
[
"-"
]
],
"content": "There's a \"Signal deanonymized\" thing going around:\nhttps://gist.github.com/hackermondev/45a3cdfa52246f1d1201c1e8cdef6117\n\nStay calm. Deep breaths.\n\n👉 while this is a real consideration, the only thing the attacker gets from this is a very rough (kilometers or tens of kilometers radius) location\n\n👉 other communication platforms that use any kind of caching CDN to deliver attachments are just as vulnerable\n\n👉 you almost certainly should continue to use Signal, unless you specifically know that this is a big problem for you.\n\n#Signal #InfoSec",
"sig": "b3eadbc600abb655112c429991b9bd66c8a776790cdf051b59be1450563584ffac09f0bad527ec88e76ff535a8ef82f2446aa91c9615e6ceb5e5eb5ca6c7c338"
}