News Snapshot:
The data of users of Signal’s encrypted instant messaging service were potentially exposed in a recent phishing attack targeting Twilio, the communications company that provides Signal with phone number verification services. Signal has confirmed that a small percentage of its customer base, approximately 1,900 users, were impacted in the breach and that the attacker could have used the compromised data to re-register their numbers to other devices. The affected individuals are being notified directly via SMS. Signal explains that an attacker gained access to Twilio’s customer support console via a phishing attack, revealing the SMS verification code some customers used...