U.S. and French agencies warn that Russian intelligence‑affiliated threat actors are running phishing campaigns to compromise commercial messaging apps like Signal and WhatsApp to seize accounts of high‑value individuals such as officials, military personnel, journalists, and political figures. The attacks rely on social engineering—asking for verification codes or using malicious QR/link clicks—to either take over accounts or link attacker devices for full message access; agencies urge never sharing codes, checking links, and reviewing linked devices. #StarBlizzard #Signal
Keypoints
- Russian intelligence‑affiliated actors target commercial messaging apps to gain access to high‑value accounts.
- Thousands of individual accounts have been compromised globally without exploiting encryption flaws.
- Attackers impersonate support (e.g., “Signal Support”) to request verification codes or prompt QR/link clicks.
- Providing a PIN lets attackers recover and impersonate the account, while scanning a malicious QR/link can give access to past messages.
- Recommended defenses include never sharing verification codes, verifying unexpected messages, checking links, and regularly removing suspicious linked devices.
Read More: https://thehackernews.com/2026/03/fbi-warns-russian-hackers-target-signal.html