SignalRight now there are a lot of new eyes on Signal, and not all of them are familiar with secure messaging and its nuances. Which means there’s misinfo flying around that might drive people away from Signal and private communications. 1/
One piece of misinfo we need to address is the claim that there are ‘vulnerabilities’ in Signal. This isn’t accurate. Reporting on a Pentagon advisory memo appears to be at the heart of the misunderstanding: https://npr.org/2025/03/25/nx-s1-5339801/pentagon-email-signal-vulnerability. The memo used the term ‘vulnerability’ in relation to Signal—but it had nothing to do with Signal’s core tech. It was warning against phishing scams targeting Signal users. 2/
BananaCocoYuck@signalapp it isn’t surprising that NPR would get it wrong.
Keith BöhlerIt also kind of misses the point that they are using Signal to avoid FOIA stuff.
SamuelJohnson@keithnator3000 @byuck @signalapp Nope. Classified material isn't available using that. They intended to avoid complying with the Government Records Act, which would ensure an archival record.
@keithnator3000 @byuck @signalapp The relevant acts are the Espionage Act and the Government Records Act, not the Freedom of Information Act. First two violated and 3rd not relevant.
If its not archived it can't be foia later when classification changes. Or even investigated internally. Try and be aware so you don't talk past people.
@keithnator3000 There is a hierarchy and sequence of applicablility. There is no guarantee of FOIA ever applying even if other laws weren't broken.