The only backup option I see for Signal is through Android, but it’s optional. There is no backup support for iOS or desktop.
Comment on How the Signal Knockoff App TeleMessage Got Hacked in 20 Minutes
Ulrich@feddit.org 10 months agoThey weren’t talk about the server:
This app…works in almost exactly the same way as Signal, except that it also archives copies of all the messages passing through it, shattering all of its security guarantees.
disguy_ovahea@lemmy.world 10 months ago
OmegaSunkey@ani.social 10 months ago
It’s why Molly has local database encryption.
0xD@infosec.pub 10 months ago
That doesn’t really do anything. Attackers need local access to the device to get the database itself. Chances are, they’ll get the key right with it.
HappyTimeHarry@lemm.ee 10 months ago
Molly encrypts it using a passphrase instead of a locally stored key for exactly that reason.
0xD@infosec.pub 10 months ago
The passphrase or the unencrypted database are still open in memory. Though that is, of course, a more complicated attack but they could simply read it through the app itself.
ShittyBeatlesFCPres@lemmy.world 10 months ago
Later in the article, it talks specifically about the server-side archives being stored in plain text. That’s why the hacker was able to access messages. This isn’t about the local copies on phones.
Ulrich@feddit.org 10 months ago
Yeah I didn’t read past the misinformation
doodledup@lemmy.world 10 months ago
Maybe you should start reading up on stuff you don’t know about before adding nonsense to internet threads.
nekusoul@lemmy.nekusoul.de 10 months ago
This is now the third post in the last 24 hours where I stumble into a needlessly long thread because this user is completely obtuse and can’t handle being wrong or a different opinion.
Ulrich@feddit.org 10 months ago
Don’t know what you mean. I didn’t add any “nonsense”.
AbidanYre@lemmy.world 10 months ago
Kinda sounds like you’re the misinformation.
Ulrich@feddit.org 10 months ago
You’re confused, I am not the author of this article.