Signal, a messaging application known for its end-to-end encryption and regarded as highly secure globally, has encountered recent cyberattacks allegedly connected to Russian entities. On Saturday, high-ranking German authorities attributed phishing incidents aimed at prominent politicians on the platform to groups supported by Moscow, prompting concerns about its overall safety. Comparable phishing reports have emerged from users in the Netherlands and the United States, with Google issuing warnings in February about similar operations tied to Russian-affiliated actors.
What sets Signal apart from other communication tools, and why has this reputedly secure app become a frequent target? Signal’s end-to-end encryption ensures that messages are transmitted in an unreadable format and can only be accessed by the intended recipient. No intermediaries, including the service provider, internet carriers, or potential interceptors, can view the content without the necessary decryption keys.
While other services like WhatsApp and Apple’s iMessage offer similar encryption, Signal operates under an independent nonprofit organization, free from the profit-driven influences of large technology corporations. This structure has built greater confidence among privacy-focused individuals. Signal enhances data protection beyond WhatsApp by concealing metadata, such as delivery times and recipient details, even from its own systems. In contrast, WhatsApp discloses user data like phone numbers, device specifics, and IP addresses to its parent company Meta and other entities.
Consequently, Signal has become a preferred choice for those prioritizing confidential exchanges, including security experts, reporters, and their contacts. Established in 2012, the app is managed by the Signal Foundation in Mountain View, California. Its origins connect to WhatsApp, as it was created by cryptographer and business innovator Moxie Marlinspike, with initial funding of $50 million from WhatsApp co-founder Brian Acton. Both platforms utilize the same underlying protocol developed by Marlinspike, though WhatsApp was acquired by Mark Zuckerberg in 2014.
According to Signal’s website, the organization remains independent from major tech firms and cannot be purchased by them. Its operations are funded primarily through contributions and grants. Signal’s president, Meredith Whittaker, a former Google employee and vocal opponent of data-harvesting business practices, is notably candid compared to other tech leaders.
The app’s encryption protocol remains intact, with no breaches reported. The alleged Russian-linked cybercriminals did not compromise the encryption directly but used phishing tactics to deceive users into revealing account access. These schemes involve fraudulent messages mimicking official Signal notifications, such as false security warnings or group invitations. By interacting with these, users may inadvertently provide credentials, allowing attackers to view conversations, join groups, and pose as the account holder.
Signal has not yet provided a statement regarding the latest incidents.
