Post
To help protect Signal users from phishing and social engineering attacks, we’ve introduced additional confirmations and educational messaging in the app to help people better detect fraudulent profiles, especially message requests from scammers posing as Signal.
More changes are on the way.
@signalapp I hope you support some kind of optional verification in Keyoxide style.
E.g. "this Signal account verified they control this Mastodon account and this website", but with better wording so people don't just set up lookalike accounts and websites, but it still works to deter impersonation.
The main reason I use Keyoxide is because I got impersonated in Wordpress.org blogs (which do not provide any kind of authentication). AFAIK the only way to prevent that in that platform is using PGP signed messages, which are cumbersome, or using plugins that require login, which are annoying.
@signalapp Avoid getting spam messages entirely by setting "Who can find me by phone number" to "Nobody". It's under settings > privacy > phone number.
Nobody is XMPP, so we can't very well expect anyone to impersonate them. Yet another advantage of the XMPP protocol.
@signalapp
Update for the political guys... äh girls
@signalapp Danke Julia!
@signalapp I hope you call it the Klöckner-Update.
@signalapp I think honestly the official Signal chat was the slippery slope here.
If it weren't for this chat, you could simply say that there will never be a Signal chat with Signal and every chat with Signal on the app is phishing.
Install bonfire.cafe
Get the full app experience
