Product

Signal

3 briefs RSS

TeamPCP Leaks Shai-Hulud Worm Source Code, European Governments Seek Secure Messaging Alternatives

The TeamPCP hacking group released the source code of the Shai-Hulud worm impacting npm and PyPI, prompting European governments to seek secure messaging alternatives due to phishing risks and data sovereignty concerns, while historical analysis reveals the Fast16 malware targeted Iran's nuclear program by tampering with simulation software.

Signal +3 TeamPCP open-source worm phishing secure messaging data sovereignty

2r 1t May 21, 2026

high advisory

Microsoft Takedown of SignSpaceCloud and Secure Messaging Concerns

2 rules 1 TTP 1 IOC

Microsoft disrupted SignSpaceCloud, a Russian cybercrime service providing code signing certificates to malware and ransomware operators, while European governments are shifting from Signal and WhatsApp due to phishing and data sovereignty risks, and the Fast16 malware targeted Iran's nuclear program.

Signal +4 ransomware code-signing supply-chain

2r 1t 1i May 21, 2026

medium advisory

Signal 'Disappearing' Messages Persist in macOS Notification Center

2 rules

macOS stores Signal message notifications in an unencrypted SQLite database, potentially exposing 'disappearing' messages even after they are deleted from the Signal application.

Signal macos notification privacy credential-access

2r Jan 2, 2024