2025-02-22 02:07:05 Pacfic
Russian Hackers Exploit Signal 'Linked Devices' for Spying - 2d
Russian state-aligned hackers are exploiting the "Linked Devices" feature in Signal Messenger to conduct cyber-espionage campaigns. Google's Threat Intelligence Group (GTIG) has uncovered these campaigns, revealing that the hackers are using phishing tactics to gain unauthorized access to Signal accounts. These campaigns involve tricking users into linking their devices to systems controlled by the attackers.
Russian threat actors are launching phishing campaigns that exploit the legitimate "Linked Devices" feature in the Signal messaging app to gain unauthorized access to accounts of interest. The hackers employ sophisticated methods to trick targets into linking their Signal account to a device controlled by the attacker, compromising their secure communications.
ImgSrc: cyberscoop.com
References:
- cyberinsider.com - Russian Hackers Exploit Signal’s Linked Devices to Spy on Users - 2d
- @BleepingComputer - Russian threat actors have been launching phishing campaigns that exploit the legitimate "Linked Devices" feature in the Signal messaging app to gain unauthorized access to accounts of interest. - 2d
- www.bleepingcomputer.com - Russian threat actors have been launching phishing campaigns that exploit the legitimate "Linked Devices" feature in the Signal messaging app to gain unauthorized access to accounts of interest. - 2d
- CyberInsider - Google's Threat Intelligence Group (GTIG) has uncovered a series of cyber-espionage campaigns by Russian state-aligned hackers targeting Signal Messenger accounts. - 2d
- securebulletin.com - Russia-Aligned actors intensify targeting of Signal Messenger - 2d
- Security Archives - Security Affairs - Russia-linked threat actors exploit Signal messenger - 2d
- Talkback Resources - Russian Groups Target Signal Messenger in Spy Campaign [app] [social] - 1d
- cloud.google.com - Russian Threat Actors targeting Signal messenger accounts used by individuals of interest to Russia's intelligence services. The goal seems to be espionage or military reconnaissance in context of war - 1d
- @lukaszolejnik.bsky.social - Lukasz Olejnik - Russian Threat Actors targeting Signal messenger accounts used by individuals of interest to Russia's intelligence services. The goal seems to be espionage or military reconnaissance in context of war - 1d
- Cyble Podcast | Cybersecurity & Threat Intelligence Insights - Russia-Linked Actors Exploiting Signal Messenger’s “Linked Devices� Feature for Espionage in Ukraine - 1d
- Talkback Resources - State-aligned threat actors, particularly from Russia, are targeting Signal Messenger accounts through phishing campaigns to access sensitive government and military communications, exploiting the app - 1d
- cyberscoop.com - Russian-aligned threat groups dupe Ukrainian targets via Signal - 22h
- Talkback Resources - Signals of Trouble: Multiple Russia-Aligned Threat Actors Actively Targeting Signal Messenger [social] - 17h
- Threats | CyberScoop - Russia-aligned threat groups dupe Ukrainian targets via Signal - 17h
- www.onfocus.com - Google Threats on Signals of Trouble - 14h
- cyberriskleaders.com - Russian Hackers Targeting Ukrainian Signal Users with Malicious QR Codes - 13h
- arstechnica.com - Russia-aligned hackers are targeting Signal users with device-linking QR codes Swapping QR codes in group invites and artillery targeting are latest ploys. - 9h
- MeatMutts - Google Warns of Russian Hacking Campaign Targeting Ukraine’s Military on Signal - 4h
Classification:
- HashTags: SignalMessenger CyberEspionage RussianHackers
- Company: Google
- Target: Signal Users
- Attacker: Russian APT
- Product: Signal
- Feature: Linked Devices
- Type: Espionage
- Severity: Major