Hi Guys,
If you are one of the many millions of people worldwide who use Signal as their secure messaging app, please make sure you are running the latest version. Signal has just patched a critical flaw in its Android app that, in some circumstances, sent random unintended images to contacts without any explanation. The fault was detected in December 2020 by Rob Connolly, but it has only been fixed now. Please make sure you are running version 5.17 or above. While this flaw looks like it only affects the Android version of the app, I would recommend that iOS users also make sure they are running the latest versions.
On a side note, it is worrying that we are seeing so many ‘super secure’ technologies being breached over the past few months. It started with flaws in Telegram encryption, and now Signal is leaking private images. These two apps are supposed to be the most secure and privacy focused apps in the world right now. If these technologies can be breached (and if it takes Signal several months to issue a fix), it is clear that you cannot truly trust them. Be careful now much information you share with these apps and be cautious about how much to say on them.
Please tell anyone you know who is using Signal to make sure they are running version 5.17.
Thanks and have a great day.
Max Roberts,
Incognito Privacy Care Team.