Dutch intelligence agencies (AIVD and MIVD) have issued a global alert regarding a cyberattack campaign targeting Signal and WhatsApp users. Attributed to hackers linked to the Russian government, the operation primarily targets government officials, military personnel, and journalists.
How the Attacks Work
Rather than breaking encryption or exploiting software bugs, hackers rely on phishing and social engineering to hijack accounts.
- Signal: Attackers pose as support teams, sending fake alerts about “suspicious activity” or “data leaks” to trick users into revealing verification codes or security PINs.
- WhatsApp: Hackers use the “Linked Devices” feature. They send malicious links or QR codes that, if clicked or scanned, allow the attacker to mirror the victim’s account on their own device.
Once access is gained, hackers can monitor real-time conversations, access contact lists, and download sensitive information, often without the user noticing.
How to Protect Your Account
To defend against these tactics, security experts recommend:
- Never share verification codes: Apps like Signal and WhatsApp will never ask for your SMS code via chat.
- Enable Two-Step Verification: Set a custom PIN that must be entered when registering your number on a new device.
- Review Linked Devices: Regularly check your app settings to ensure no unrecognized devices are connected to your account.
- Verify Identities: Be skeptical of unsolicited messages, even if they appear to be from official support or known contacts.
