The US Cybersecurity and Infrastructure Security Agency (CISA) has issued a renewed warning to smartphone users about the dangers of sending unencrypted text messages. This advisory echoes concerns from the same period last year, emphasizing the increasing threat landscape targeting private communication channels.

Nation-State Attacks and High-Value Targets

CISA highlights that malicious actors, including nation-states, are leveraging spyware and sophisticated social engineering techniques to compromise mobile devices through messaging apps. These threats are particularly directed at high-value individuals such as government officials, military personnel, and political figures.

The agency’s latest bulletin underscores the risks faced by all users, urging caution when using messaging platforms that lack end-to-end encryption (E2EE). While exploits currently focus on apps like Signal and WhatsApp, the underlying message is clear: avoid using standard, unencrypted texting services on both Android and iPhone devices.

Encryption Developments and Industry Responses

Although Rich Communication Services (RCS) supported on both Android and iOS still does not offer true E2EE, efforts are underway to change that. Google is actively testing end-to-end encryption for RCS, while Apple has announced plans to implement E2EE support in future updates across iOS, iPadOS, macOS, and watchOS.

Apple emphasizes that privacy is a fundamental human right and has contributed to industry-wide efforts to extend E2EE to RCS via the GSMA’s Universal Profile. The anticipated support for encrypted RCS messages may arrive with iOS 26.2, reflecting Apple’s ongoing commitment to user security.

CISA strongly recommends that individuals, especially those in sensitive roles, review their security measures. They advise using encrypted messaging apps like Signal or WhatsApp and disabling standard SMS options where possible. On iPhones, turning off ‘Send as Text Message’ in Settings ensures messages are sent securely via iMessage’s end-to-end encryption.

This advisory highlights the growing importance of secure communication practices, especially for government and corporate users. As threats evolve, staying informed and adopting robust encryption methods remain crucial to safeguarding sensitive information.

Inspired by

• https://www.computerworld.com/article/4096023/cisa-warns-against-unencrypted-messaging.html

Sources

• apple.com
• cisa.gov
• cisa.gov
• applemust.com
• vivaldi.net