Hackers Launch Campaign Against Messaging Apps
Hackers linked to hostile intelligence services have initiated a campaign to seize control of user accounts on the Signal and WhatsApp messaging platforms. These attacks are specifically aimed at high-value intelligence targets, including current and former officials, military personnel, politicians, and journalists. The criminals' goal is to gain access to confidential conversations and private group chats where strategic matters and troop movements are discussed. This represents a significant escalation in cyber-espionage tactics targeting private communication channels.
According to information from the Center for Countering Disinformation, the hackers are employing sophisticated schemes that exploit vulnerabilities in the account verification system. It is crucial to note that the apps' end-to-end encryption has not been broken; instead, compromise occurs through user actions. The malicious actors impersonate security support staff to trick users into revealing their verification codes. As a result of these social engineering tactics, Signal and WhatsApp accounts become vulnerable to takeover.
Security Recommendations
The Dutch military and general intelligence services have issued a joint statement concerning a global Russian hacking campaign attempting to breach accounts on these platforms en masse. Hackers most frequently disguise themselves as the 'Signal Support' chat bot and also exploit the 'linked devices' feature in Signal to gain account access. An investigation is ongoing, and mitigation efforts are being conducted, including in cases where Ukrainian hackers accessed materials from a late October 2025 meeting of a Russian defense industry working group at the Ministry of Industry and Trade.
- Enable the Registration Lock PIN within your privacy settings;
- Regularly review connected devices in 'Settings – Linked Devices' and remove any that are unfamiliar;
- Avoid clicking links from unknown contacts, even if they appear to be official messages from support services.
This situation underscores the critical importance of cybersecurity, particularly for individuals in sensitive positions. Attacks on widely used messaging apps that carry confidential information can have serious implications for national security. Users must remain vigilant and adhere to security best practices to reduce the risk of their accounts being compromised.
As the threat of cyber-espionage intensifies, it's essential to stay informed about the broader implications of these attacks. Recent findings by Dutch intelligence reveal the extent of the Russian hacking efforts, particularly their focus on officials and journalists using messaging platforms like Signal and WhatsApp. For a deeper understanding of how these incidents are unfolding and what measures can be taken, read more about the Russian cyber campaign targeting sensitive users.