NewApp Digest
search bot

encryption technology

FTC should investigate Microsoft after Ascension ransomware attack, senator says
Winsage
September 12, 2025

FTC should investigate Microsoft after Ascension ransomware attack, senator says

A U.S. senator, Ron Wyden, has requested an investigation by the Federal Trade Commission (FTC) into Microsoft's role in a ransomware attack on Ascension Health, alleging "gross cybersecurity negligence." The attack, which occurred in 2024, involved hackers using a method called "Kerberoasting" to exploit Microsoft’s Active Directory server, taking advantage of the outdated RC4 encryption standard. Wyden criticized Microsoft for not making the more secure Advanced Encryption Standard (AES) the default option in Windows and for failing to adequately warn customers about vulnerabilities related to Kerberoasting. Microsoft acknowledged that RC4 is outdated but stated that disabling it could disrupt customer systems. The company plans to disable RC4 by default in new installations of Active Directory Domains using Windows Server 2025 by early 2026. Wyden noted that the ransomware attack originated from a malicious link clicked by a contractor while using Microsoft’s Bing, leading to malware installation and subsequent ransomware deployment across Ascension’s systems. The attack severely impacted Ascension's operations, forcing its 140 hospitals to revert to manual processes for weeks and compromising sensitive data of nearly 6 million individuals. Patients in Texas, Illinois, and Tennessee have filed class action lawsuits against Ascension due to the breach. The Black Basta ransomware gang has been implicated in the attack, although they have not claimed responsibility.
Spotify Introduces In-App Messaging for Sharing Music Recommendations With Your Friends
AppWizard
August 26, 2025

Spotify Introduces In-App Messaging for Sharing Music Recommendations With Your Friends

Spotify is introducing a new feature called Messages, allowing users to share music, podcast, and audiobook recommendations within the app. This feature will be available to Free and Premium members aged 16 and older and will initially launch on mobile devices in select markets. Users can share recommendations by tapping the share icon next to their current listening selection and sending it to friends they've previously interacted with on the platform. The feature supports one-to-one conversations and is designed to complement existing social media channels. Spotify emphasizes the importance of maintaining a safe environment, applying standard rules against illegal and harmful content and ensuring user data protection through encryption technology.
Secure Messaging: The Guardian Leverages Millions of Readers to Provide Strong Plausible Deniability
AppWizard
July 13, 2025

Secure Messaging: The Guardian Leverages Millions of Readers to Provide Strong Plausible Deniability

The Guardian has introduced a tool called Secure Messaging to protect journalistic sources, utilizing an open-source technology named CoverDrop. This system allows whistleblowers to communicate securely and anonymously with journalists by concealing the fact that messaging is occurring. CoverDrop integrates a module within The Guardian's mobile app, an untrusted cloud-based API, on-premises services known as CoverNode, and a desktop application for journalists. The CoverNode functions as a mix node to ensure the anonymity of sources. The app exchanges encrypted messages that appear indistinguishable from regular app data, providing cover for users. The technology has been rolled out to millions of users this year, and a white paper detailing its design has been published. Currently, the platform does not allow sharing of photographs or documents, but future plans include linking uploaded files with conversations. The source code for CoverDrop is available on GitHub under the Apache License 2.0.
TeleMessage suspends services after hackers claim breach
AppWizard
May 6, 2025

TeleMessage suspends services after hackers claim breach

TeleMessage has temporarily suspended all services due to a reported security breach, with the parent company Smarsh investigating the incident. Customs and Border Protection (CBP) has discontinued using the app as a precaution. A hacker claimed to have accessed a centralized TeleMessage server and downloaded data, including a screenshot of the contact list for employees at Coinbase, which confirmed the authenticity of the screenshot but stated that customer data remained secure. Multiple U.S. government agencies have contracts with TeleMessage or related entities. Another hacker also claimed to have breached TeleMessage, providing evidence of their claims. The investigation into the breach is ongoing, and it is unclear if sensitive communications from U.S. officials were compromised.
Which is the most secure messaging app? Expert weighs in after U.S. war plan leak blunder
AppWizard
March 27, 2025

Which is the most secure messaging app? Expert weighs in after U.S. war plan leak blunder

A significant intelligence breach occurred when Jeffrey Goldberg, editor-in-chief of The Atlantic, was inadvertently added to a sensitive Signal group chat that included discussions about U.S. military operations targeting Houthi rebels in Yemen, involving Vice President JD Vance and Defense Secretary Pete Hegseth. Senate Democratic Leader Chuck Schumer described it as "one of the most stunning breaches of military intelligence." Experts emphasized that the breach resulted from human error, not flaws in encryption technology. Signal is considered the gold standard for secure messaging due to its end-to-end encryption and lack of metadata collection. Other platforms like iMessage and WhatsApp have varying levels of security, with iMessage requiring both parties to use Apple devices for full protection, and WhatsApp collecting metadata. Telegram does not enable end-to-end encryption by default for standard messages. The incident highlights that even the most secure messaging applications cannot prevent breaches caused by human oversight.
What Is Signal, the App Involved in a War Plans Security Breach?
AppWizard
March 26, 2025

What Is Signal, the App Involved in a War Plans Security Breach?

Signal has recently garnered attention due to reports that senior officials from the Trump administration used the platform for sensitive war planning discussions, inadvertently including a journalist in the messaging group. This incident has raised questions about the appropriateness of using Signal for classified discussions, particularly since federal employees are usually prohibited from installing such applications on government-issued devices. Signal, launched in 2014, is an encrypted messaging application that facilitates secure communication through end-to-end encryption, ensuring messages remain private and unreadable until they reach the intended recipient. It also offers a feature for messages to disappear after a set period. Signal is operated by the Signal Foundation, an independent nonprofit organization funded by donations and grants, which allows it to prioritize privacy and security without commercial influences.
What is Signal? The app where US officials accidentally shared war plans with a journalist
AppWizard
March 25, 2025

What is Signal? The app where US officials accidentally shared war plans with a journalist

A group chat among top US officials on the secure messaging app Signal inadvertently included a journalist, raising concerns about the app's security and the protocols for its use by government officials. Signal is known for its end-to-end encryption, ensuring that only participants can access conversations, and it cannot comply with law enforcement requests for user data. During the Biden administration, officials were allowed to use Signal under strict instructions not to share classified information. The incident involving Trump administration officials, who mistakenly added a journalist to a chat about military operations, is being reviewed by the National Security Council.
Search