TeleMessage Signal app lands on CISA’s exploited vulnerability list

A flaw in the TeleMessage Signal app, plus its use by high-profile national security officials, was enough to land it on the Cybersecurity and Infrastructure Security Agency (CISA) Known Exploited Vulnerabilities (KEV) catalog on May 12. While the actual flaw — CVE-2025-47729 — has a low CVSS score of 1.9, security pros said CISA put the bug on the KEV catalog because of concerns that it could have been potentially exploited when former National Security Advisor Mike Waltz was photographed using the cloned TeleMessage Signal app to communicate with other high-ranking government officials.

Source: SC Magazine

Date:

13 May 2025

Categorie(s):

NEWS

Tag(s):

IT, News, Signals, TeleMessage

Donut Holes, clickfix, rapperbots, bad devs, war, Doug Rants about Backups, and More. – SWN #48720 June 2025
Jira tickets become attack vectors in PoC ‘living off AI’ attack20 June 2025
Anubis Ransomware Lists Disneyland Paris as New Victim20 June 2025
Hackers Target 700+ ComfyUI AI Image Generation Servers to Spread Malware20 June 2025
Netflix, Apple, BofA websites hijacked with fake help-desk numbers20 June 2025