Pentagon officials recently issued a cautionary note regarding the use of the Signal messaging application. This warning came shortly after The Atlantic Editor-in-Chief Jeffrey Goldberg found himself inadvertently included in a group chat where high-ranking officials discussed sensitive military strategies. The incident, reported by NPR, has raised significant concerns about the implications for national security.
Why It Matters
Goldberg’s unexpected inclusion in the chat, which featured discussions among several Trump administration officials about potential airstrikes on Houthi-controlled regions in Yemen, has sparked bipartisan criticism. Critics argue that the conversation’s nature could have jeopardized operational security and posed a broader risk to U.S. national interests.
What to Know
NPR’s report revealed an email warning of a “vulnerability” within the Signal app. The communication stated, “A vulnerability has been identified in the Signal messenger application. The use of Signal by common targets of surveillance and espionage activity has made the application a high-value target to intercept sensitive information.” This warning highlights the risks associated with using Signal, particularly for individuals engaged in sensitive discussions.
An aerial view of the Pentagon in Arlington, Virginia on November 29, 2022.
Alex Wong/Getty Images
The email elaborated that Russian hacking groups are exploiting the app’s “linked devices” feature to monitor encrypted conversations. This feature allows users to access the application on multiple devices simultaneously, creating potential vulnerabilities. The warning detailed how these groups could embed malicious QR codes in phishing pages or disguise them within group invite links, enabling them to add their devices as linked devices and access real-time messages, thereby circumventing the app’s end-to-end encryption.
Furthermore, the email provided guidance on securing the Signal application, clarifying that while the app is permissible for “unclassified accountability/recall exercises,” it should not be used for storing nonpublic unclassified information. Notably, this is not the first time vulnerabilities in Signal have been reported; earlier this year, The Hacker News highlighted an issue with the desktop app creating an SQLite database stored as a plain text file, accessible to anyone with access to the machine.
Goldberg recounted that he received a Signal connection request from National Security Advisor Mike Waltz on March 11, leading to discussions about military actions against the Houthis, who have been targeting commercial vessels in the Red Sea for over a year. The chat reportedly included several prominent figures from the Trump administration, such as Vice President JD Vance, Defense Secretary Pete Hegseth, and Director of National Intelligence Tulsi Gabbard. Brian Hughes, a spokesperson for the National Security Council, confirmed the authenticity of the message chain and indicated that the administration was reviewing how an unintended number was added to the conversation.
What People Are Saying
President Donald Trump addressed the situation, stating, “There was no classified information, as I understand it. They used an app, if you want to call it an app. That’s an app that a lot of people use.” He emphasized that the app is widely utilized by the media and military, acknowledging the risks involved when not operating from secure environments like the Situation Room.
Senator Mark Warner, a Democrat from Virginia, expressed concern, stating, “If this information had gotten out, American lives could have been lost. If the Houthis had this information, they could reposition their defensive systems.”
Senator Angus King, an Independent from Maine, remarked, “It’s hard for me to believe that targets and timing and weapons would not have been classified.”
What Happens Next
As the fallout continues, these officials are likely to face ongoing scrutiny and calls for resignation in the coming days. However, as of now, none have indicated intentions to step down from their positions.
