日本語
한국어
Tiếng Việt
简体中文
The fallout from the Trump cabinet’s accidental reveal of Yemen bombing plans, dubbed “SignalGate,” has sparked a whirlwind of controversy. But security experts are keen to set the record straight: the encrypted messaging app Signal isn’t the culprit here.
The scandal erupted after The Atlantic‘s editor-in-chief, Jeffrey Goldberg, was mistakenly added to a Signal group chat discussing the sensitive operation. Critics and even the administration have, in some instances, pointed fingers at Signal, fueled by past reports of Russian spies targeting the app.
President Trump himself questioned Signal’s reliability, stating, “I don’t know that Signal works. I think Signal could be defective, to be honest with you.”
However, security researcher Kenn White argues, “Unequivocally, no blame in this falls on Signal… If someone’s brought into a conversation who’s not meant to be part of it, that’s not a technology problem. That’s an operator issue.”
Cryptography professor Matt Green echoed this sentiment: “Signal is a tool. If you misuse a tool, bad things are going to happen… It’s really on you to make sure you know who you’re talking to.”
The Real Issue: Protocol, Not Platform
The core problem isn’t Signal’s security, but the use of unapproved devices for classified communication. As White notes, the incident suggests officials used internet-connected devices – potentially personal ones – bypassing secure channels intended for top-secret discussions.
Using commercial apps on such devices opens communications to vulnerabilities in iOS, Android, Windows, or macOS.
Federal Regulations Ignored?
Apps like Signal and WhatsApp, with their “disappearing message” features, clash with federal record retention laws. In the Yemen strike chat, the auto-delete timer was a potential issue, highlighting the risk of losing crucial information.
While Director of National Intelligence Tulsi Gabbard claimed Signal can be preinstalled on government devices, sources tell WIRED this isn’t standard practice, and downloading consumer apps is heavily restricted.
Sensitive Information Mishandled
The administration defends itself by asserting no classified material was shared. However, experts argue that even non-classified but sensitive information requires careful protection.
Army veteran Andy Jabbour stressed, “It was obviously sensitive operational information that no soldier or officer would be expected to release to the public.”
Senator Mark Warner criticized the lack of basic security hygiene, questioning why no one verified the identities of all participants in the chat.
Signal: A Secure Choice, But Not a Universal Solution
Signal has addressed phishing attacks, reinforcing its security. Spokesperson Jun Harada stated they introduced “additional safeguards and in-app warnings to help protect people from falling victim to phishing attacks.”
Experts agree that if officials were determined to discuss sensitive plans on unapproved devices, Signal was a far better choice than other less secure platforms.
Ultimately, SignalGate underscores the importance of proper communication protocols and device security, not the inadequacy of the Signal app itself. It serves as a reminder that even the most secure tools can be compromised by user error and disregard for established security practices.
Related Topics: National Security, Privacy, Cybersecurity, Donald Trump, Encryption