Since #Trump returned to office, the #Pentagon has launched an investigation into #leaks that resulted in 3 ofcls being placed on leave [#Signalgate].
It has also required legacy media organizations, including the #NewYorkTimes, the #WashingtonPost, #CNN & #NBCNews, to vacate their Pentagon office spaces in a new *rotation system* that brought in others, including outlets generally friendly to the Trump admin such as the #NewYorkPost, #Breitbart, the #DailyCaller & #OANN.
"While the Department remains committed to transparency, the Department is equally obligated to protect CSNI (#classified #intelligence) & sensitive information - the unauthorized disclosure of which could put the lives of US Service members in danger," #Hegseth said in a memo.
[laughable coming from a guy involved in the PC Houthi group chat & also a chat that included his wife & brother both of which divulged classified military operations over a commercial app. #Signalgate]
Defense Secretary Pete Hegseth touts surprise pay increases at 82nd review on Fort Bragg
Source: The Fayetteville Observer
#DUIHIRE #SignalGate #FailuretoLead #Unqualified #Incompetence
https://share.newsbreak.com/d7vjy986
Hegseth’s Plan Delivers Blow to Four-Star Generals
Source: Fort Worth StarTelegram
#DUIHire #NationalSecurityJoke #SignalGate #FailuretoLead
https://share.newsbreak.com/d7etaebp
More on the #telemessage DUMP!
"... found a message sent to a Signal group called "US / China AI Race." The Signal group had 100 people in it. [... ] many of the group members hold prominent positions at major universities, the defense industry, and the military, [...]. "
#signalgate #ai
RE: https://bsky.app/profile/did:plc:uzucgmkg2y5vbkqnbv2on7g3/post/3lpq5aykczs2m
Hack of Signal App Clone Telemessage Hits US Responders, Diplomats; Data Stolen Across US Government
#CyberSecurity #DataBreach #USGovt #TeleMessage #SignalApp #NationalSecurity #CISA #Hacking #Privacy #InfoSec #GovTech #Signalgate #Signal
Hacked "trove included material from disaster responders, customs officials, several U.S. diplomatic staffers, at least one White House staffer and members of the Secret Service." www.reuters.com/world/us/hac... TeleMessage #data #Waltz #SignalGate #cybersec #natsec
Exclusive: Hacker who breached...
A week after that #hack, the #CISA recommended that users "discontinue use of the product" barring any mitigating instructions about how to use the app from #Smarsh.
Jake Williams, a fmr #NationalSecurity Agency #cyber specialist, said that, even if the intercepted text messages were innocuous, the wealth of #metadata - the who & when of the #leaked conversations & chat groups - posed a #counterintelligence risk.
A #CBP spox repeated a past stmnt noting that it had disabled #TeleMessage & was investigating.
Federal contracting data shows that #State & #DHS have had contracts w/TeleMessage in recent years, as has the #CDC. A CDC spox told Reuters in an email that the agency piloted the software in 2024 to assess its potential for records management requirements "but found it did not fit our needs." The status of the other contracts wasn't clear.
Reuters could not ascertain how #TeleMessage had been used by each agency. The service - which takes versions of popular apps & allows their messages to be archived in line w/government rules - has been suspended since May 5, when it went offline "out of an abundance of caution." TeleMessage's owner, the Portland, Oregon-based digital communications firm #Smarsh, did not respond to requests for comments about the #leaked #data.
#Trump #NationalSecurity #Signalgate #Signal #InfoSec #idiocracy
Some chats did seem to bear on the travel plans of snr govt ofcls. One #Signal group, "POTUS | ROME-VATICAN | PRESS GC," appeared to pertain to the #logistics of an event involving #Trump at the #Vatican. Another appeared to discuss US ofcls' trip to #Jordan.
Reuters reached out to all the individuals it could identify seeking comment; some confirmed their identities but most didn't respond or referred questions to their respective agencies.
One of the intercepted texts' recipients - an applicant for aid from #FEMA confirmed to Reuters that the #leaked message was authentic; a financial services firm whose messages were similarly intercepted also confirmed their authenticity.
Based on its limited review, Reuters uncovered nothing that seemed clearly sensitive & did not uncover chats by #MikeWaltz or other cabinet ofcls.
#Trump #NationalSecurity #Signalgate #Signal #Telemessage #InfoSec #idiocracy
Reuters identified >60 unique govt users of the messaging platform #TeleMessage in a cache of #leaked #data provided by Distributed Denial of Secrets, a US nonprofit whose mission is to archive #hacked & leaked documents in the public interest. The trove included material from disaster responders, #customs ofcls, several US diplomatic staffers, at least 1 #WhiteHouse staffer & members of the #SecretService.
Exclusive: Hacker who breached communications app used by #Trump aide stole data across US govt
A #hacker who breached the comms service used by fmr Trump #NationalSecurity adviser [& current UN ambassador] #MikeWaltz earlier this month intercepted messages from a broader swath of ofcls than previously reported, potentially raising the stakes of a breach that has already drawn questions about #DataSecurity in the Trump admin.
#TeleMessage #Signalgate #InfoSec #idiocracy
https://www.reuters.com/world/us/hacker-who-breached-communications-app-used-by-trump-aide-stole-data-across-us-2025-05-21/
DNIP Briefing #23: Friends & Fiction - Das Netz ist politisch https://dnip.ch/2025/05/06/dnip-briefing-23-friends-fiction/ #DNIPbriefing #MetaPlatforms #MarkZuckerberg #Datenschutz #privacy #ArtificialIntelligence #SocialMedia #unplugUSA #MemoryWorker #MemoryWorkers #InternetArchive #DonaldTrump #Switzerland #Schweiz #DOGE #ElonMusk #SignalGate #Verschlüsselung #encryption #E2EE #End2EndEncryption #EndToEndEncryption #EpicGames #Apple :apple_inc: #AppStore #AppleAppStore #Y2K38 #Automotive
DNIP Briefing #19: Memes, Macht und Microsoft - Das Netz ist politisch https://dnip.ch/2025/04/01/dnip-briefing-19-memes-macht-und-microsoft/ #Microsoft #Datenschutz #privacy #SignalGate #Gesichtserkennung #FacialRecognition #surveillance #Überwachung #SocialMedia #Digitalisierung #digitalization #ArtificialIntelligence #LegacySoftware #DOGE #ElonMusk #AppPrivacy #Android :android: #Google :google: #iOS #Apple :apple_inc: #DigitalMarketsAct #DMA #XMPP #Fediverse :fediverse: #OpenSource #DigitalRights #VendorLockIn #DonaldTrump #DNIPbriefing #CloudACT #unplugUSA
Here's how #TeleMessage was hacked:
https:///archive.telemessage.com/management/heapdump
The admin panel used Spring Boot Actuator, which provides debugging features.
The /heapdump endpoint was enabled [no auth necessary], and upon request, responds with:
...a Java heap memory dump with delicious goodies inside. Passwords, messages, content, you name it.
There's no telling what the attackers did after.
https://www.wired.com/story/how-the-signal-knock-off-app-telemessage-got-hacked-in-20-minutes/
#Signal #SignalGate @threatintel @privacy @infosec
MD5? Seriously?
MD5 was considered useless over 16 years ago.
SMH. This is pure Security Theatre. The tickets are free.
Again - Micah Lee's reporting leaves me speechless. #telemessage using MD5 for passwords is like a diary with a heart-shaped lock. An exposed "dump" URL? Real-time treasure map. #cybersecurity #signalgate
Time to write ANOTHER letter to Congress.
(I know it won’t do shit, but a geek girl can hope.)
RE: https://bsky.app/profile/did:plc:uzucgmkg2y5vbkqnbv2on7g3/post/3lpgwdtskes2m
