Signal says attackers may have accessed phone numbers of 1,900 users


A woman holds a smartphone displaying the Signal messaging app logo, which is also seen near her, in this illustration taken January 13, 2021. REUTERS/Dado Ruvic

(Reuters) - Encrypted messaging service Signal said the phone numbers of 1,900 users could have been revealed in a phishing attack on Twilio Inc, its verification services provider, earlier this month.

The attacker could also have accessed the SMS verification code used to register with Signal, but message history, profile information and contact lists were not revealed, the company said in a blog post on Monday.

"An attacker could have attempted to re-register number to another device or learned that their number was registered to Signal," it said.

Twilio, which disclosed the attack earlier this month, said it has been working together with Signal to help their investigation.

The San Francisco, California-based company counts over 256,000 businesses, including Ford Motor Co, Mercado Libre Inc and HSBC, among its customers.

(Reporting by Tiyashi Datta in Bengaluru; Editing by Aditya Soni)

Get 20% OFF The Star Digital Access

Monthly Plan

RM 13.90/month

RM 11.12/month

Billed as RM 11.12 for the 1st month, RM 13.90 thereafter.

Best Value

Annual Plan

RM 12.33/month

RM 9.87/month

Billed as RM 118.40 for the 1st year, RM 148 thereafter.

Follow us on our official WhatsApp channel for breaking news alerts and key updates!

Others Also Read