Toot
Written by Michał "rysiek" Woźniak · 🇺🇦 on 2025-01-21 at 22:33
Technical details tl;dr:
- Signal (and other communication platforms) uses Cloudflare with caching enabled for media
- one can check on which Cloudflare endpoints a given attachment URL got cached (one can use a VPN for this), giving them the ability to roughly geolocate users whose Signal downloaded the file
- a doctored version of Signal (or whatever app) allows the attacker to send the message with an image, and extract the attachment URL to know what URL to check for having been cached
=> More informations about this toot | View the thread | More toots from rysiek@mstdn.social
Mentions
Tags
Proxy Information
- Original URL
- gemini://mastogem.picasoft.net/toot/113868720775489576
- Status Code
- Success (20)
- Meta
text/gemini- Capsule Response Time
- 225.681037 milliseconds
- Gemini-to-HTML Time
- 0.390489 milliseconds
This content has been proxied by September (3851b).