I've not seen anything, in fact the Cert pinning is damn solid! We have to disable Zscaler SSL inspection to even allow Signal (npub1rkw…5q62) to work.
The only issue I saw with Signal possibly "compromised" in any way was when Twilio was compromised as they did use them for verification services.
But that was like two years ago and since then they've also added usernames so you don't need to give out phone numbers
https://support.signal.org/hc/en-us/articles/4850133017242-Twilio-Incident-What-Signal-Users-Need-to-Know
ChiefGyk3D /
npub1j6…wef8k
2024-06-20 15:48:54
in reply to nevent1q…ht8q
Author Public Key
npub1j6x37cgktdd9astwr6peajs5xdwrfg0glw5slpzqcrx6un9fpmws2wef8kPublished at
2024-06-20 15:48:54Event JSON
{
"id": "a0175b15c4334b46492c186ca3f59b8f98309ed1350d65ef0b8f04e01649587d",
"pubkey": "968d1f61165b5a5ec16e1e839eca14335c34a1e8fba90f8440c0cdae4ca90edd",
"created_at": 1718891334,
"kind": 1,
"tags": [
[
"proxy",
"https://social.chiefgyk3d.com/@chiefgyk3d/112649262467358406",
"web"
],
[
"p",
"62fde58e165c695686252e25dfc14fc650e4f9769224f3a02e35615d322e3420"
],
[
"e",
"32efc16ab1fc5dd7022f0d49c25d7aae2ed619a3cee0c5e3ea5d434155647bf1",
"",
"reply"
],
[
"p",
"d94510b6ff3160c54dd7cf65ccaa86f6396eb3b04849817c4b559fde80d22bca"
],
[
"p",
"1d9daec418418c2da07b242753f373ea8e2ebe4ce89596794ed930866196d85f"
],
[
"p",
"968d1f61165b5a5ec16e1e839eca14335c34a1e8fba90f8440c0cdae4ca90edd"
],
[
"p",
"e35ae736e9e1052d92514d4553d3c429015fa882c49d0e243ebe379b0b71f2c9"
],
[
"e",
"8a0d9f3f2684ffcae4764d5718214bbb59b9b604651e72402644f8536dc0af06",
"",
"root"
],
[
"proxy",
"https://social.chiefgyk3d.com/users/chiefgyk3d/statuses/112649262467358406",
"activitypub"
],
[
"L",
"pink.momostr"
],
[
"l",
"pink.momostr.activitypub:https://social.chiefgyk3d.com/users/chiefgyk3d/statuses/112649262467358406",
"pink.momostr"
]
],
"content": "I've not seen anything, in fact the Cert pinning is damn solid! We have to disable Zscaler SSL inspection to even allow nostr:npub1rkw6a3qcgxxzmgrmysn48umna28za0jvaz2ev72wmycgvcvkmp0sa45q62 to work. \n\nThe only issue I saw with Signal possibly \"compromised\" in any way was when Twilio was compromised as they did use them for verification services. \n\nBut that was like two years ago and since then they've also added usernames so you don't need to give out phone numbers \n\nhttps://support.signal.org/hc/en-us/articles/4850133017242-Twilio-Incident-What-Signal-Users-Need-to-Know",
"sig": "d43b4a09f9693808d77c73529b38dfa471be064e9f0c5abd9293b4b23700ef6800f7bb8aa6f183d3b4490bb352e733825fae88e756d8b5f3ed7be3823d1ffe81"
}