Unique 0-click deanonymization attack targeting Signal, Discord and hundreds of platform · GitHub

A 15-year-old hacker discovered a 0-click deanonymization attack targeting Signal, Discord, and other apps using Cloudflare’s caching feature. The attack exploits Cloudflare’s vast network of datacenters to pinpoint a user’s location within a 250-mile radius, potentially compromising the privacy of journalists, activists, and hackers. The hacker demonstrated the attack’s effectiveness on Signal and Discord, highlighting the need for enhanced security measures to protect user anonymity.