Signal‘s reputation for secure messaging was widely known among users. So much last year of WhatsApp Most users claim that they will share the data with Facebook. Signal was put into practice. But the company’s reputation for being safe hasn’t made it completely vulnerable to hacking incidents.
The company confirmed that a data breach at verification partner Twillio exposed the phone numbers and SMS codes of nearly 1,900 users. The intruder may have used this information to identify Signal users or re-register their numbers on other devices.
Signal users beware! Data disclosed
Data has already been misused. The criminal made some changes to the user’s account. Signal does not store chat histories or contacts online, so the breach is not expected to reveal other sensitive details.
Signal is taking steps to limit the damage available. It will unregister the app on all devices connected to the affected accounts and force users to re-register. The team also recommended enabling an enrollment lock that prevents anyone from re-registering on other devices without providing a PIN code. Twilio disclosed the breach on August 8. Currently, unidentified perpetrators are using phishing scams to obtain login information and gain access to 125 customers’ accounts. Twilio generally serves large companies and organizations, although it’s not clear which customers are affected.