[Cryptography] Signal chat fallout.
Ray Dillinger
bear at sonic.net
Fri Mar 28 14:59:46 EDT 2025
The thing that pisses me off most about cell phones is, no matter how
secure you personally may have your own set up, when you set up a
supposedly secure chat, if ANYBODY on the list has accidentally
downloaded some snoopy software that includes a screen grabber, then
EVERYBODY's discussion gets harvested. If somebody just picks up their
phone while they're in the shower, and reads it because they didn't
secure it, they read everybody's messages, not just the messages of the
participant whose phone was insecure.
That's why Hegseth's comment about "clean OPSEC" was complete
irresponsible bullshit - not only had he not secured all the endpoints,
he had no way to secure the endpoints. He had no control over the OPSEC
of all the individual devices controlled by the people involved in
this. Least of all Jeffrey Goldberg's.
It is almost certain that the Russians and the Chinese read this in
realtime, and declined to warn the Houthi because they didn't want to
confirm that they have penetrated one or more of these officials' phones.
Bear
More information about the cryptography
mailing list