Following a mistake by senior Trump officials where The Atlantic editor Jeffrey Goldberg was inadvertently added to a confidential group chat discussing bombing Houthi targets in Yemen, the encrypted messaging app Signal found itself at the center of controversy this week. Some critics have lambasted the app, even holding it responsible for the scandal.
The whole episode, nicknamed “SignalGate”, is not solely linked to Signal: Experts emphasize that officials should exercise caution when inviting untrusted contacts to sensitive discussions and strictly adhere to approved devices, platforms, and protocols when handling top-secret military operations. Essentially, the errors were made by the chat setup individuals and are not reflective of Signal’s security. Interestingly, Signal has experienced a surge in downloads in the US following the news.
In another development related to the aforementioned Houthi group chat, national security advisor Mike Waltz, who initially invited Goldberg to the group, had his Venmo account publicly accessible. As per WIRED’s findings, a Venmo account under the name of “Michael Waltz” displayed names of the advisor’s acquaintances, unveiling individuals within Waltz’s broader social circle. Upon WIRED’s intervention with the White House, the account in question concealed its friends list. Additionally, WIRED unearthed other Venmo accounts associated with officials in the Signal chat. Insights into officials’ social connections could be enticing for foreign spies and hackers.
Furthermore, we delved into the potential cybersecurity risks of the White House’s adoption of Elon Musk’s Starlink as an alternative Wi-Fi network highlighting potential concerns. There are indications in Europe that some companies are rethinking their use of cloud services from Google, Amazon, and Microsoft, amidst reevaluating the hazards associated with engaging with the tumultuous second Trump administration. Additionally, given the increasing challenges at the US border for both citizens and visa holders, we have updated our guide on safeguarding your digital privacy during entry into the US.
That’s not all. Every week, we compile security and privacy news that didn’t receive in-depth coverage from us. Click on the headlines to read the full stories. Stay vigilant out there.
Revealed: US Security Officials’ Passwords and Contact Details Uncovered Online
In addition to SignalGate and exposed Venmo accounts, a report from the German news outlet Der Spiegel disclosed that sensitive personal data associated with various senior Trump administration security officials is easily accessible online. Journalists from the outlet uncovered mobile phone numbers, email addresses, and “some” passwords belonging to top officials on the web.
Leveraging people-search engines and information from public data breaches, Der Spiegel unearthed personal data linked to Waltz, director of national intelligence Tulsi Gabbard, and Pete Hegseth, the secretary of defense. The news organization stated that most of these numbers and email addresses are apparently still active, with some of them tied to profiles on social media platforms like Instagram and LinkedIn. The details were also connected to Dropbox, Microsoft Teams, Signal, and WhatsApp accounts used by the officials.
were some of the accounts restricted.
Internet Restrictions May Conceal Initial Toll of Myanmar Earthquake Damage
A massive 7.7-magnitude earthquake and subsequent tremor rocked Myanmar on Friday, resulting in extensive destruction extending hundreds of miles into Thailand. According to the latest reports from sources, at least 144 individuals have lost their lives while hundreds more have sustained injuries in Myanmar. Initial reports from The New York Times suggest that enduring and extensive internet constraints in conflict-ridden Myanmar have likely hindered the dissemination of news regarding the scale of the devastation. Since the military junta seized control in 2021, communication within Myanmar has been greatly disrupted or blocked. In one instance in 2023, 13 out of the 14 states in Myanmar experienced internet disruptions.
Following the earthquake, experts informed The Times that additional video footage and news were promptly emerging from neighboring Thailand. Joe Freeman from Amnesty International remarked, “Contrast the coverage of the earthquake in Thailand, where tremors and destruction have been extensively documented, shared, and recorded, with Myanmar, where the full extent of the damage and casualties remains unclear and may remain so for some time.” The absence of connectivity may also complicate the coordination of recovery and humanitarian efforts, underscoring once again the critical necessity for individuals to have dependable and unrestricted access to the internet.
Alleged Snowflake Hacker Connor Moucka Commits to US Extradition
The widespread hacking incident against Snowflake customers last summer, characterized by targeted attacks on accounts of the cloud storage company, is believed to be one of the most significant large-scale data extractions known publicly. Toward the conclusion of 2024, Canadian authorities apprehended Alexander “Connor” Moucka, 26, who is purported to have used aliases such as “Waifu” and “Judische” in connection with the hacking operations. Moucka has now given his consent this week to be transferred to the United States to face the alleged charges. According to Cyberscoop, Moucka is facing 20 federal charges, including those related to computer fraud, wire fraud, and aggravated identity theft. Moucka is not the lone individual allegedly involved in the Snowflake hacking, as indictments have named John Binns and Cameron Wagenius as well. The timing of Moucka’s extradition remains uncertain.
London Welcomes Its Inaugural Permanent Facial Recognition Cameras
Law enforcement agencies throughout the UK have significantly expanded their utilization of real-time facial recognition cameras in recent times. The deployment of this contentious technology has historically been temporary: placing cameras atop police vehicles and utilizing them during specific events and fixed time frames. However, a change is on the horizon with the introduction of the initial permanent facial recognition cameras in London. The Metropolitan Police in the city are currently in the process of setting up stationary cameras in Croydon, located in the southern region.
“This new approach will ensure that our use of LFR technology becomes more ingrained as a standard practice rather than relying on the availability of the LFR vans that are in high demand across London,” stated a police authority in a letter disclosed by The Times of London. Reportedly, these cameras will not be operational continuously but only when officers are present nearby to oversee potential alerts. Nevertheless, privacy advocates are concerned that this expansion may extend further across the city, leading to a network of permanent facial recognition cameras unlike any seen in other democratic nations.
