Phishing Attacks Target Signal Users Amid Russian Cyber Threats

Severity: Medium (Score: 58.0)

Sources: Uk.Finance.Yahoo, support.signal.org

Summary

Signal, a secure messaging app, has been targeted by phishing attacks attributed to Russian-backed hackers. German officials reported that senior politicians were specifically targeted, raising concerns about the app's security despite its end-to-end encryption. Similar attacks have been reported by users in the Netherlands and the United States. The phishing attempts involve social engineering tactics, where attackers impersonate trusted contacts to steal sensitive information. Signal emphasizes that they do not initiate contact through in-app messages or social media, and users are warned to never share verification codes or recovery keys. This situation highlights the ongoing risks associated with even the most secure communication platforms. The attacks have prompted Signal to issue guidance on recognizing and reporting phishing attempts. Key Points: • Signal is facing phishing attacks linked to Russian-backed hackers. • Senior politicians in Germany are among the targeted users. • Signal warns users to never share verification codes or sensitive information.

Key Entities

• Phishing (attack_type)
• Russia (country)
• T1566 - Phishing (mitre_attack)
• Signal (company)