An encrypted messaging app named Signal has recently come under scrutiny following reports that high-ranking officials from the Trump administration, including Defense Secretary Pete Hegseth and Vice President JD Vance, allegedly utilized the platform to discuss a sensitive military operation. This conversation inadvertently included Jeffrey Goldberg, editor-in-chief of The Atlantic, who detailed the incident in a recent article. Goldberg recounted his surprise at being added to an 18-person chat focused on military strikes in Yemen, initially questioning the authenticity of the situation.
In response to the unfolding story, the National Security Council confirmed to CBS News that the messages appeared to be “authentic.” This revelation has sparked a broader discussion about the security capabilities of Signal, particularly in light of its use for sensitive military communications. With approximately 70 million users in 2024, Signal remains a fraction of the size of Apple’s iMessage, which boasts around 1 billion active monthly users, as noted by the national security publication Lawfare.
President Trump addressed the matter on Tuesday, stating that he had instructed national security adviser Mike Waltz to “immediately study” the implications of government officials using Signal for such discussions.
What is Signal?
Signal is an encrypted messaging service that not only facilitates text messaging but also supports phone and video calls, making it a versatile tool for secure communication. The app allows for group chats of up to 1,000 participants, with the option for messages to disappear after a designated time. Its end-to-end encryption has contributed to a growing user base, particularly during times of uncertainty, as noted by PP Foresight analyst Paolo Pescatore.
Signal’s encryption ensures that no third party can access the content of conversations or listen in on calls, meaning that only the sender and recipient possess the keys to decrypt the messages. Unlike other messaging platforms, such as Telegram, Signal has encryption activated by default and claims not to collect or store sensitive user information. According to the service, “Signal messages and calls cannot be accessed by us or other third parties because they are always end-to-end encrypted, private and secure.”
Who owns Signal?
Signal is operated by the nonprofit Signal Foundation, co-founded by Moxie Marlinspike and Brian Acton. The foundation aims to support the app’s operations and explore the future of private communication. As a nonprofit entity, Signal relies solely on its user base for sustainability, with no advertisers or investors involved. The foundation’s board consists of five members, including Marlinspike and Acton, the latter of whom co-founded WhatsApp and contributed million to establish the foundation. The Signal app originated over a decade ago when Marlinspike merged two existing open-source applications to create a secure messaging platform.
Can Signal be hacked?
While Signal promotes the privacy of its service, experts caution that it is not impervious to hacking. In February 2025, the National Security Agency issued a bulletin warning its employees about vulnerabilities within the Signal app, highlighting its appeal as a target for those engaged in surveillance and espionage. The internal document stated, “A vulnerability has been identified in the Signal Messenger Application,” indicating that the app’s use by individuals often under scrutiny makes it a prime target for interception of sensitive information.
Government officials have utilized Signal for various organizational purposes, including scheduling sensitive meetings. However, during the Biden administration, those authorized to use the app on White House-issued devices were advised to do so sparingly, as per a former national security official.
What is Signal typically used for?
Due to its robust encryption, Signal is frequently employed by national security and intelligence professionals, as well as activists and others requiring secure communication. A recent review by the Associated Press found that encrypted messaging apps are increasingly favored by government officials, with some using official mobile numbers while others opted for personal accounts.
Are there legal issues for government officials using Signal?
There may indeed be legal implications for government officials communicating sensitive national security information via Signal. CBS News national security contributor Sam Vinograd, who previously served in the Obama administration, noted that sharing classified details on a nonsecure platform could potentially violate the Espionage Act. He emphasized that such actions heighten the risk of foreign governments accessing critical operational security plans, thereby endangering U.S. personnel.
While President Trump claimed ignorance regarding Signal’s specifics, he acknowledged its widespread use among various groups, including the military and media. He remarked that the best communication occurs in secure environments, free from electronic devices. Meanwhile, Democratic lawmakers are calling for an investigation into the decision to discuss sensitive information on a commercially available messaging app rather than through secure government channels. Goldberg’s report also indicated that some messages in the group chat were set to disappear after one week or four weeks, raising concerns about potential violations of federal laws requiring the preservation of official records.
