FBI & CISA Advice - Use Encrypted Messaging

Uploaded on 2024-12-11 in NEWS-Cybersecurity News, INTELLIGENCE-Hot Spots-Russia, INTELLIGENCE--USA, FREE TO VIEW, BUSINESS-Services-IT & Telecoms

Concerns about the security risks of mobile messaging are increasing with concerns over the security of messaging between platforms like iPhone and Android have significantly increased. 

At the same time,  Apple has launched  its own RCS messaging system that will compete with WhatsApp and other messaging platforms.

Now, the responsibile US authorities are telling the public to adopt fully encrypted communication services to protect against growing cyber threats. The FBI and the Cybersecurity and Infrastructure Security Agency (CISA) have published a warning after a number of wide-ranging cyber attacks attributed to the Chinese nation-sate hackers known as Salt Typhoon.

These attacks have highlighted critical vulnerabilities within US communication networks, highlighting the risk of intercepted communications when using standard text messaging. CISA's advice coincides with recommendations from  Apple, Google, and Meta, who advocate for encrypted services precisely because they render intercepted messages unreadable to outside parties,

CISA and the FBI emphasise that encryption should be the default for all personal and professional communications, with the aim that encryption ensures that even if messages are intercepted, they remain unreadable.

They specifically advised against using traditional SMS or RCS messaging due to the security gaps in cross-platform encryption. While encryption is available within Android-to-Android messaging, cross-platform messaging remains unencrypted, leaving a critical vulnerability for users of different devices.  

Despite discussions between Google and the Global System for Mobile Communications organisation about improving RCS security, a timescale for end-to-end encryption across different platforms has yet to be agreed.

Increasing cyber attacks on political figures and other high-profile individuals illustrate the need for secure encrypted communications to protect against from data breaches and intrusions on privacy. 

NBC   |   NBC   |   I-HLS   |   Forbes   |   Yahoo   |   Tribune   |   

Image: Christian Horz & MrHighSky

You Might Also Read:    

International Initiative To Control Commercial Spyware:

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible


 

« Ransomware Criminals Claim To Have Stolen Deloitte's Data
Trump 2.0: Cyberwarfare To Reach New Heights »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

Securosis

Securosis

Securosis is an information security research and advisory firm dedicated to improving the practice of information security.

Original Software

Original Software

Original Software offers a test automation solution focused completely on the goal of effective software quality management.

Apricorn

Apricorn

Apricorn provides hardware-based 256-bit encrypted external storage products to companies and organizations that require high-level protection for their data at rest.

FarrPoint

FarrPoint

FarrPoint is a specialist telecoms consultancy providing a range of services including cyber security assessments and technical assurance to safeguard your data.

Tech Mahindra

Tech Mahindra

Tech Mahindra is a global leader in IT solutions, BPO, business consulting services & digital technologies.

CopSonic

CopSonic

Copsonic provide a technology solution based on ultrasonic waves to send secure and encrypted data between two devices in order to achieve authentication.

MicroEJ

MicroEJ

MicroEJ is a software vendor of cost-driven solutions for embedded and IoT devices.

CyberForum

CyberForum

CyberForum supports businesses from the IT and high-tech industry in all stages of their development: from startup consulting to professional staffing and even location marketing campaigns.

Connectria

Connectria

Connectria provides cloud hosting, remote monitoring, and compliant cloud security solutions and services to enterprises, medium and small businesses.

ThreatReady Resources

ThreatReady Resources

ThreatReady reduces an organization’s risk by delivering cyber security awareness training based on the latest, state-of-the-art learning science to effectively drive long-term cyber-safe behavior.

4Securitas

4Securitas

4Securitas is an innovative cyber security firm focused on protecting critical data at the core of every organisation.

DigitalWell

DigitalWell

DigitalWell provide fully managed IT and communications solutions for a truly innovative end-to-end experience - for your customers and teams.

CentriVault

CentriVault

CentriVault is a leading independent provider of Cyber Security and Data protection services to small and medium enterprises (SMEs).

Denodo

Denodo

Denodo transforms the way organizations operate by unifying their data assets in real time and making data ubiquitous and secure to all users and business applications.

Kerberus Cyber Security

Kerberus Cyber Security

Kerberus Cyber Security (formerly MintDefense) is a leading innovator in Web3 user security, dedicated to safeguarding digital assets and transactions through its flagship product, Sentinel3.

Bastion Security Group

Bastion Security Group

Bastion Security combines the skills, expertise and leadership from Quantum Security, ZX Security, Helix Security and Cassini.