Russian hackers messaging apps campaigns are expanding, with authorities warning about targeted attacks on WhatsApp and Signal users.
The UK’s National Cyber Security Centre (NCSC) says threat actors are focusing on individuals with access to sensitive information. These attacks do not target encryption. Instead, they focus on gaining access to user accounts.
Attackers target accounts, not platforms
Messaging apps like WhatsApp and Signal remain secure at a technical level. However, attackers bypass these protections by targeting users directly.
By gaining access to an account, attackers can read messages, impersonate victims, and monitor conversations. This approach avoids the need for complex vulnerabilities.
Social engineering remains the main tactic
Most attacks rely on phishing and impersonation.
Common methods include:
- Requesting verification codes
- Sending malicious links or QR codes
- Impersonating trusted contacts or support services
- Triggering fake account recovery processes
These tactics depend on user interaction. Once victims share sensitive information, attackers can take control of their accounts.
Linked devices enable silent access
Attackers also abuse legitimate features within messaging apps.
By linking an additional device to a compromised account, they can access messages without obvious disruption. This allows continued monitoring while the account appears normal to the user.
As a result, victims may remain unaware for extended periods.
High-value individuals remain primary targets
The campaign focuses on individuals who handle sensitive information.
This includes:
- Government officials
- Journalists
- Military personnel
- Corporate employees
Access to these accounts can provide valuable intelligence and insight into private communications.
Agencies urge stronger account protection
Security agencies recommend several steps to reduce risk:
- Enable multi-factor authentication
- Never share verification codes
- Regularly review linked devices
- Treat unexpected messages with caution
These measures reduce the likelihood of account takeover and limit attacker access.
Conclusion
Russian hackers messaging apps campaigns show a clear shift in attack strategy. Instead of breaking encryption, attackers focus on user behavior.
By using social engineering and built-in app features, they can gain access without exploiting technical weaknesses.
As these tactics continue, user awareness and account protection will remain critical.
0 responses to “Russian hackers target WhatsApp and Signal accounts”