FBI, CISA Warn Russian Hackers Are Targeting High-Value Individuals Through Signal
\n \t
\n
<\/BR>
\n
\n \t
\n
<\/BR><\/p>\n
The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) have recently released a joint cybersecurity advisory regarding a widespread phishing campaign<\/a>. <\/p>\n The alert warns that Russian Intelligence Services are actively targeting users of encrypted messaging applications, primarily Signal. <\/p>\n The attackers are bypassing the platform\u2019s robust end-to-end encryption by hijacking user accounts rather than compromising the underlying cryptographic protocols.<\/p>\n This cyber espionage campaign is meticulously designed to compromise individuals who possess high intelligence value. <\/p>\n The threat actors are specifically targeting current and former United States government officials, military personnel, influential political figures, and prominent journalists. <\/p>\n According to the intelligence agencies<\/a>, the operation has already resulted in the unauthorised access of thousands of accounts on a global scale.<\/p>\n Because Signal\u2019s core encryption remains secure, hackers rely entirely on deceptive social engineering techniques to trick victims into surrendering control of their profiles. <\/p>\n The attackers initiate contact by sending in-app messages that impersonate official automated support channels. These fraudulent profiles often use authoritative names such as \u201cSignal Security Support ChatBot\u201d or \u201cSignal Security Team\u201d to appear legitimate.<\/p>\n To manipulate the victims, the messages artificially manufacture a sense of urgency. They falsely claim that the user\u2019s account has experienced a data leak<\/a>, or that suspicious login attempts were detected from foreign locations and unrecognized devices. <\/p>\n The messages then instruct the target to complete a mandatory verification procedure to secure their account by handing over their SMS verification code or scanning a malicious QR code.<\/p>\n When a victim inadvertently shares their verification code, the attackers exploit the application\u2019s linked device feature. This allows the hackers to tether their own hardware to the compromised account without raising immediate alarms. <\/p>\n Once inside, the threat actors gain the ability to silently monitor private conversations, read historical messages, and infiltrate private group chats. <\/p>\n Furthermore, they can harvest contact lists and impersonate the victim to launch secondary phishing campaigns against trusted colleagues.<\/p>\n To defend against these sophisticated account takeover <\/a>attempts, the FBI and CISA urge users to implement strict security hygiene and vigilance.<\/p>\n Follow us on Google News<\/a>, LinkedIn<\/a>, and X<\/a> for daily cybersecurity updates. Contact us<\/a> to feature your stories.<\/strong><\/p>\n The post FBI, CISA Warn Russian Hackers Are Targeting High-Value Individuals Through Signal<\/a> appeared first on Cyber Security News<\/a>.<\/p>\n<\/div>\nFBI, CISA Warn Russian Hackers <\/strong><\/h2>\n
Recommended Mitigations<\/strong><\/h2>\n
\n