Russian Hackers Target Signal and WhatsApp Accounts, Dutch Intelligence Warns

Dutch intelligence says Russian state hackers are targeting Signal and WhatsApp users by going after their accounts instead of trying to break the apps themselves. The warning lands on an uncomfortable point for anyone who relies on encrypted chat: strong privacy features do not help much after an attacker gets control of the account. According to a joint notice from the Dutch General Intelligence and Security Service and Military Intelligence and Security Service, the campaign has targeted dignitaries, government officials, military personnel, and other people of interest. The agencies say the activity is global in scope, and they are not suggesting that Signal or WhatsApp themselves have been compromised. How the attacks work In the Dutch cybersecurity advisory, attackers are described as posing as trusted contacts or support staff to persuade targets to share SMS verification codes or Signal PINs. Another method abuses the linked-devices feature, tricking a victim into scanning a QR code or clicking a malicious link that connects the attacker’s device to the account. Instead of trying to intercept protected traffic, attackers focus on the person using the app and the steps required to sign in, verify identity, or connect a new device. Once an attacker links
Read More