[benlivengood]

Without more technical details about telemessage it isn't clear how archive servers are actually selected by the app, where they are hosted, or how they are secured.

For example, while it's possible that DoD phones would only connect to Signal via proxies from within a VPN to a private network, direct Internet connectivity could lead to a potential leak of archived messages to any Internet-connected telemessage server if the app is misconfigured or the wrong app installed.

Given the debug logs shown by the attacker it sounds like the archive server has vulnerabilities exploitable over any connected network which wouldn't protect self-hosted version in govcloud from exploitation from within those networks.

[khaki54]

Reading through the guide, organizations have to compile their own apk/ipa and deploy via MDM. I'd suspect that "archive server" variable is set at build time. Maybe not and dozens of agencies ATO'd a setup where the data was running in the clear to a vendor, and to a low security cloud environment. I just don't see that happening at the DoD level.