The company behind the Signal clone used by at least one Trump administration official was breached earlier this month. The hacker says they got in thanks to a basic misconfiguration.
This app…works in almost exactly the same way as Signal, except that it also archives copies of all the messages passing through it, shattering all of its security guarantees.
Later in the article, it talks specifically about the server-side archives being stored in plain text. That’s why the hacker was able to access messages. This isn’t about the local copies on phones.
Signal uses end-to-end encryption (E2EE). The only copies of messages are on the sender’s and recipient’s devices.
https://support.signal.org/hc/en-us/articles/360007320391-Is-it-private-Can-I-trust-it#%3A~%3Atext=Signal+conversations+are+always+end%2C%2C+every+call%2C+every+time.
Copies of messages are also known as archives.
Signal does not archive messages on server side
They weren’t talking about the server:
Later in the article, it talks specifically about the server-side archives being stored in plain text. That’s why the hacker was able to access messages. This isn’t about the local copies on phones.
Yeah I didn’t read past the misinformation
Kinda seems like you’re the misinformation.
You’re confused, I am not the author of this article. I did not write the statement above, just copied and pasted it here.
I’m not confused, you’re intentionally misreading what’s happening for some reason.
“Passing through it” pretty clearly refers to the server as that’s what was hacked into and had plain text archives.
You’re hyper fixating on the fact that the article says “the app” when referring to both the phone and server pieces to try and argue… something.