No, you shouldn’t delete Signal or other encrypted apps It appears that the latest WikiLeak documents imply that the CIA may have cracked these services, but this is probably not so. The vulnerability is more likely to be malware that infects your local phone (inserted say by the CIA) which could then read your decrypted messages. From the article: The main distinction here is that if a device like your smartphone is compromised, say through malware in iOS for example, no amount of encryption can make it safe again. “There’s nothing that the app can do, it has to decrypt the message in order for you to read it, otherwise it would be kind of useless,” Schulman explains. “And when that happens, that’s when malware on the computer or on the handset can kick in and read the plain text just as well as you can.” In spite of the misconceptions, some in security still see the WikiLeaks Vault7 data as a wake-up call for those who don’t yet take privacy seriously. See http://ift.tt/2nbhZDx
Comments