As per Dutch Intelligence agencies, Russian government hackers are targeting users of the messaging apps Signal and WhatsApp in a large global campaign. The report says the attacks are specifically targeted towards government staff, military personnel, and journalists. The attackers are reportedly attempting to gain control of accounts through phishing and social engineering.
Russian government hackers are targeting Signal and WhatsApp users
In its latest report, the Dutch intelligence services said the hackers are using deception rather than sophisticated malware to break into accounts on Signal and WhatsApp. Investigators from the Netherlands Defence Intelligence and Security Service and the General Intelligence and Security Service described the activity as a large-scale global campaign linked to Russian state actors. Instead of exploiting software flaws, attackers send convincing messages that appear to come from trusted sources. These messages warn targets about suspicious activity or possible data leaks. It then encourages users to follow instructions that ultimately hand over control of their accounts.
One common tactic involves impersonating the Signal support team. The hackers contact potential victims directly and claim that their accounts may be at risk. Targets are told that verification is required to secure their profile. The attackers then request a verification code sent by SMS along with the user PIN. Once those details are shared, criminals can log in to the victim’s account on their app and can even lock the victim out temporarily.
High-level officers are advised to refrain from sharing sensitive information with anyone
Dutch officials warned that users may not immediately realize their account was compromised. With Signal, chat history is stored locally on the device. This means the victims who regain access may still see their previous conversations and assume nothing changed. The security agencies warned that attackers could still exploit the brief takeover to gather contacts or send deceptive messages. The report also specifically mentions that Signal never provides customer support through direct in-app messages.
WhatsApp users also face similar manipulation attempts. Investigators said hackers misuse the linked devices feature that allows accounts to be used on laptops or tablets. By tricking victims into scanning malicious QR codes or clicking harmful links, attackers can secretly connect their own device to the account. Unlike Signal, this method may allow access to earlier chats.
The post Russian Hackers Target Sensitive Data on WhatsApp & Signal appeared first on Android Headlines.
​Â
