@nono2357 I disgree re: @signalapp / #Signal because it being a #SingleVendor & #SingleProvider 'solution' that by @Mer__edith 's own admission is hard locked-in at #aws and thus doubly subject to #CloudAct makes it a horrible choice, as they also collect #PII (in the form of #PhoneNumbers) and still peddle a #Shitcoin that even #Cryptocurrency expert users like @techlore can't even get to work.

https://www.youtube.com/watch?v=0DSGq9FQKU4
https://www.youtube.com/watch?v=tJoO2uWrX1M

• Sorry, but I'd rather stick with real #E2EE ( = self-custody of all the keys) and use @delta / #deltaChat, @monocles / #monoclesChat & @gajim cuz that I can fully #SelfHost and thus control!

Substack Newsletter Platform Data Breach Saw Phone Numbers, Emails Exposed
https://www.pcmag.com/news/substack-newsletter-platform-data-breach-saw-phone-numbers-emails-exposed

#Infosec #Security #Cybersecurity #CeptBiro #Substack #DataBreach #PhoneNumbers #Emails

#PaneraBread #DataBreach

What Happened
In January 2026, PANERA BREAD suffered a data breach that exposed 14M records. After an attempted #extortion failed, the attackers published the data publicly, which included 5.1M unique #emailaddresses along with associated account information such as names, #phonenumbers and physical #addresses. Panera Bread subsequently confirmed that "the #data involved is contact information" and that authorities were notified.

https://haveibeenpwned.com/Breach/PaneraBread

@VD15 also #PizzaHut treats #PhoneNumbers as immuteable cistimer details, so yeah, that is a thing.

See r/ #SoftwareGore !

Calling the #UK a "#democracy" is like calling the #USA "#socialist"...

• It's a #cyberfascist shithole and everyone complying with this is a #cyberfascism enabler and thus nor trustworthy!

If a "platform" is #KYC'ing users from the UK or even is able or willing to collect #PII like #PhoneNumbers that would make them know if a customer is from the UK, it has to be regarded as #insecure - period!

• Also whoever believes #Signal or #WhatsApp are "secure" whilst being #centralized, #Proprietary, #SingleVendor & #SingleProvider services without #SelfCustody is completely dellusional: If they were secure, they'd been shutdown for ages like #EncroChat cuz Corporations can't pull the 5th!

The sheer idea of said #tech is irredeemably wrong!

• Espechally since it's not a replacement for moderation nor parenting!

#ITsec #InfoSec #OpSec #ComSec #privacy #DataProtection #OSA #UKOSA #OnlineSafetyAct

A #databreach reportedly exposed the personal information of 17.5 million #Instagram users, including #usernames, #emailaddresses, and #phonenumbers. The leaked data, available for sale on the dark web, could lead to #phishing attempts or #accounttakeovers. https://www.engadget.com/cybersecurity/an-instagram-data-breach-reportedly-exposed-the-personal-info-of-175-million-users-192105616.html?eicker.news #tech #media #news

@andnull no, but they want to be ableto #snitch and #dox users.

• Only #cops demand #ID or any *"#KYC" with #PII.
• #PhoneNumbers are #PII and are at best merely pseudonymous, but trivially to link to a person.

Good systems are #decentralized, #federated, #SelfHosting-capable, #OpenSource & #OpenStandard and offer real #E2EE (with #SelfCustody of all the keys!)…

• See #XMPP+#OMEMO (i.e. @monocles / #monoclesChat & @gajim ) and #PGP/MIME (see @delta / #deltaChat and @thunderbird )…

Anything else is either a #HoneyPot or run by #UsefulIdiots that consider snitching on their customers as valid strategy.

• Cuz we all know neither @Mer__edith nor anyone else at @signalapp is gonna risk jail for their users, and by the amount of users they have, it is a statistical inevitability that they would've had to do so already.

@b The sherr fact that @signalapp ties stuff to a #PhoneNumber is inherently bad and gives them the same stench as #EncroChat & #ANØM did.

• Why else would they not flat-out ban #PhoneNumbers from #NorthKorea, #Iran, #Russia and #Cuba?

It"s just #deanonymization with a single step in between from demanding "#KYC" with an #ID!

#YetAnotherReason why noone should ask for a #PhoneNumber, much less to consider it a "#security" feature...

• #Scammers are using stolen credentials [using #SocialEngineering or rather #SocialHacking] to #steal #Phones at the cost of #Telco customers and then #export them into markets that don't share #IMEI numbers or otherwise do clamp down on #stolen #merch.

Repeat after me: #PhoneNumbers are insecure and #2FA - #SMS are even less secure!!!

#Callcenter #India #ScamCallcenter #ScamCallcenters #Scam #ConsumerProtection #JimBrowning

@campuscodi *#YetAnotherReason why demanding #PII like #PhoneNumbers should be illegal!

What's the phone number for Linux customer support?
#linux #customersupport #phonenumbers #linustorvalds #debugging

#Development #Techniques
Phone numbers everywhere · A HTML fix for unwanted Safari/iOS phone links https://ilo.im/168osc

_____
#PhoneNumbers #Webpage #Mobile #Safari #iOS #Webkit #Browser #WebDev #Frontend #HTML

A Simple #WhatsApp #Security Flaw #Exposed 3.5 Billion #PhoneNumbers

By plugging tens of billions of phone numbers into WhatsApp’s contact discovery tool, researchers found “the most extensive exposure of phone numbers” ever—along with profile photos and more.
#privacy

https://www.wired.com/story/a-simple-whatsapp-security-flaw-exposed-billions-phone-numbers/

@Mer__edith That's why YOU DON'T DO THAT to begin with!

• Cuz lets be fundamentally clear on this one: There's no "legitimate reason" to mandate #PII like #PhoneNumbers and have #centralized infrastructure so riddled with #SPOF|s that it can't handle a single datacenter outage.

• Seriously, if @signalapp was coded by some freelancer on #Fiverr for like $100 I'd be okay with that. But how many $ did the development and infrastructure cost you (per year)?

To me this is #malpractice!

@Mer__edith No.

The fact that @signalapp CHOSE to host the most expensive way possible at a #US military contrator and in spittibgbditance to #CIA & #NSA is so deliberate, it makes #ANØM aka. #OperationIronside aka. #OperationTrojanShield professional by comparison for taking the time and effort to setup shell companies and servers in #Lithuania.

Or to ask bluntly: What Guarantees are there to prevent the #Trump Regime from taking down #Signal once it outlived it's usefulness at skirting #SubshineLaws and #Accountability and #Recordkeeping laws?

• Even if we assume you and all the coders are willing to "choose death over surrendering the keys" or implementing #Govware #Backdoors (which are wholly unnecessary with you demanding #PII like #PhoneNumbers and #Room641A-Style equipment doing the whole #metadata shit)…

If you don't own and physically control the hardware it's run on, the mere existance of #Signal depends on the goodwill of #JeffBezos!

Phone numbers for use in TV shows, films and creative works

https://www.acma.gov.au/phone-numbers-use-tv-shows-films-and-creative-works

#HackerNews #PhoneNumbers #TVShows #CreativeWorks #FilmIndustry #MediaProduction

@micahflee I just think that this will fall flat on it's face when #Signal gets their doors "bootfucked" by #AmericanGestapo!

• I hope to be wrong, but they collected all those #PhoneNumbers that are basically a personalized target marker for &"law enforcement"* to attack one after the other…

Obviously, this is not #disinformation given the #facts and circumstantial evidence.

• TELL ME WHERE I'M WRONG!

• #useast1 is in VA, USA. That's very close to #CIA and #NSA and if you think otherwise, buy yourself a fucking map!
• @signalapp collects #PII in the form of #PhoneNumbers and stores them.
• Without the #US #Government's blessing they'd not merely restrict their #MobileCoin - #Shitcoin availability but be forced to not allow users from #Cuba, #Iran, #Russia and #NorthKorea to even sign up.
• #SIgnal almost certainly has been abused by bad actors (i.e. organized crime) by mere statistical inevitability and being forced to comply with duely issued warrants and other legislation (i.e. #CloudAct) or otherwise everyone from C-level down to developer would've faced jailtime until they complied.
• #Centralization of Signal isn't excuseable as stupidity or malpractise!
• The #FBI has pulled off bigger stings (i.e. #ANØM / #OperationIronside / #OperationTrøjanShield)...

I do expect the reinstatement of my original post!

@DarkWebInformer why would anyone use #Telegram instead of #IRC over #Tor?

• Espechally given Telegram being neither #private.nor #secure and in fact collecting #PII in the form of #PhoneNumbers...

@x_cli Funnily all the @signalapp fans always claim they do protect metadata but that will matter diddly-piss when the #US - Government threatens #Signal Staff with jailtime or holds them at gunpoint.

• And whilst @Mer__edith may even be crazy enough to go face jailtime for life for users' actions, I'm convinced the rest of her staff nor the Service Providers that supply #Signal share that longing for martyrdom.

Besides, if they actually cared they'd not collect any data in the first place and instead make shure they can't even collect data like #IPs and #PhoneNumbers by hosting their stuff on @torproject / #Tor and not asking for #PII like a phone # to begin with.

• Not to mention remaining in the #USA post - #CloudAct is a big red flag, cuz even if Signal ain't complicit, all their hosters and their upstreams are and I'm convinced that every single connection gets tracked by the #NSA in realtime and every #Google and #Apple account downloading the #App earmarked as well...

Claiming to "Just download and signup to our App" is a magic silver bullet is dishonest at best and worse than lying by omnission in my book.

• Cuz if it was that simple @cryptoparty@mastodon.earth / @cryptoparty@chaos.social / #CryptoParty events would not exist at all!