this post was submitted on 21 Jan 2025
45 points (97.9% liked)

Privacy

520 readers
336 users here now

Protect your privacy in the digital world

Welcome! This is a community for all those who are interested in protecting their privacy.

Rules

~PS: Don't be a smartass and try to game the system, we'll know if you're breaking the rules when we see it!~

  1. Be nice, civil and no bigotry/prejudice
  2. No tankies/alt-right fascists. The former can be tolerated but the latter are banned
  3. Stay on topic
  4. Don't promote proprietary software
  5. No crypto
  6. No Xitter links (only allowed when can't fact check any other way, use xcancel)
  7. If you post news exclusive to a country please name it. ~(This isn't a bannable rule, just a recommendation!)~

Related communities

founded 2 months ago
MODERATORS
fxomt@lemm.ee
fxomt@lemmy.dbzer0.com
otter@lemmy.ca
shaytan@lemmy.dbzer0.com
45
Cloudflare Issue Can Leak Chat App Users' Broad Location (www.404media.co)
submitted 1 week ago by otter@lemmy.ca to c/privacy@lemmy.dbzer0.com
8 comments fedilink hide all child comments
 

This affects Signal too

An issue with Cloudflare allows an attacker to find which Cloudflare data center a messaging app used to cache an image, meaning an attacker can obtain the approximate location of Signal, Discord, Twitter/X, and likely other chat app users. In some cases an attacker only needs to send an image across the app, with the target not clicking it, to obtain their location.

https://gist.github.com/hackermondev/45a3cdfa52246f1d1201c1e8cdef6117?ref=404media.co

Signal, an open-source encrypted messaging service, is widely used by journalists and activists for its privacy features. Internally, the app utilizes two CDNs for serving content: cdn.signal.org (powered by CloudFront) for profile avatars and cdn2.signal.org (powered by Cloudflare) for message attachments.

you are viewing a single comment's thread
view the rest of the comments
[–] Blaze@lemmy.zip 7 points 1 week ago

Thank you for posting here!