(www.cnbc.com)

410 points gpi | 2 comments | 15 May 25 15:52 UTC | HN request time: 0.416s | source

Show context

sroussey ◴[15 May 25 16:45 UTC] No.43996825[source]▶

Employees at Signal must be getting bribes as well, or even threats of violence since they can get nation state Secret communications these days.

Got to make it so employees can’t do anything nefarious. This helps protect them.

replies(1): >>43996839 #

lawn ◴[15 May 25 16:47 UTC] No.43996839[source]▶

>>43996825 #

How would employees of Signal access the encrypted messages?

replies(3): >>43996933 #>>43996962 #>>43997852 #

1. sroussey ◴[15 May 25 18:28 UTC] No.43997852[source]▶

>>43996839 #

They don’t need to.

Under specific conditions, the client can communicate with malware already on device, save data locally for other software to pick up, or downright stream the decrypted software to a third party.

Most likely is to introduce a flaw in the client that can be used by other walware on the client.

Clearly no red team members on HN these days.

replies(1): >>43999226 #

2. sroussey ◴[15 May 25 20:51 UTC] No.43999226[source]▶

>>43997852 (TP) #

Indeed, it is what TeleMessage does.

↑

Coinbase says hackers bribed staff to steal customer data, demanding $20M ransom