Consume Product

around J6, someone had done a dump. it showed they took a shitload of money from DARPA and a lot of people involved were all DOJ/NSA or "state department" (CIA) stooges. especially with matt rosenfeld (aka moxie), dude has so many ties to the CIA. WSJ reported that ian schuler at the "state department" (again, CIA) got him a $1.3 million grant specifically for signal. https://archive.is/7uLsN. that ballooned to over $3m https://yasha.substack.com/p/signal-is-a-government-op-85e. their financial troubles when the gov started cutting them off were rather well documented https://www.kitklarenberg.com/p/signal-facing-collapse-after-cia and https://www.mintpressnews.com/the-open-technology-fund-makes-privacy-apps-staffed-spies/279147/

> you can verify the compiled code matches the code on the app stores

this is not that reliable. apkdiff uses apktool which does not do what you think it does. even apktool admits it's not perfect 1:1 comparisons. the only way to verify would be to hash it and compare the hashes, but that will NEVER work because every build device fingerprints the apk.

the vault7 dump on wikileaks in 2017 said the CIA was already cracking signal, and a huawei (CCP) engineer separately reported they had cracked it too in 2018. it's not known whether this was from a direct backdoor, or accessing the messages through other means (e.g compromising the keyboard or TTS accessibility apps).