CP
cyberpings
FraudHIGH

Phishing Alert - Russians Posing as Signal Support

REThe Register Security
SignalphishingRussian intelligenceFBICISA
🎯

Basically, Russians are pretending to be Signal support to trick people into giving away their account info.

Quick Summary

Russians are impersonating Signal support to execute phishing attacks. High-value targets like officials and journalists are at risk. Stay vigilant against these deceptive tactics!

What Happened

Russian intelligence-affiliated groups are launching phishing attacks by posing as customer support for the secure messaging app Signal. The FBI and CISA issued a warning about these deceptive tactics aimed at individuals with high intelligence value, such as former government officials, military personnel, and journalists. By masquerading as trusted support, attackers have compromised thousands of accounts, allowing them to read messages and gather sensitive information from victims' contact lists.

Victims receive messages claiming there is suspicious activity on their accounts. These messages prompt users to click a link for verification, which can lead to account takeover if they provide credentials or two-factor authentication (2FA) codes. Despite Signal's reputation for strong end-to-end encryption, the effectiveness of this security can be undermined if users inadvertently invite attackers in.

Who's Being Targeted

The phishing campaign primarily targets individuals with significant intelligence value. This includes:

  • Former government officials
  • Military figures
  • Politicians
  • Journalists

These individuals often have access to sensitive information, making them attractive targets for espionage. The attackers' ability to compromise these accounts not only jeopardizes personal privacy but also poses risks to national security and public safety.

Signs of Infection

Victims of these phishing attacks may notice several signs:

  • Unexpected messages from Signal support requesting verification.
  • Account access issues, such as being logged out or unable to access messages.
  • Unusual activity in their contact lists or sent messages.

If you encounter any of these signs, it is crucial to take immediate action to secure your account and personal information. The FBI and CISA recommend standard anti-phishing practices to help mitigate risks.

How to Protect Yourself

To safeguard against these phishing attempts, consider the following steps:

  • Verify communications: Always double-check the authenticity of messages claiming to be from support services.
  • Enable two-factor authentication: This adds an extra layer of security to your accounts.
  • Educate yourself about phishing: Understanding the signs of phishing can help you avoid falling victim.
  • Report suspicious activity: If you suspect you have been targeted, report it to the relevant authorities.

By staying vigilant and informed, you can help protect yourself from these deceptive tactics and maintain the integrity of your communications.

🔒 Pro insight: This tactic reflects a growing trend in social engineering, leveraging trusted platforms to harvest sensitive information from high-profile individuals.

Original article from

The Register Security

Read Full Article

Share

Related Pings

HIGHFraud

Phishing Alert - Microsoft Azure Monitor Abused in Scams

Scammers are exploiting Microsoft Azure Monitor alerts in a new phishing campaign. Users are receiving fake emails about unauthorized charges, tricking them into calling attackers. This poses a significant risk of fraud and credential theft. Stay vigilant and verify any alerts directly through Microsoft.

BleepingComputer·
HIGHFraud

Account Recovery - Quick Guide for Hacked Accounts

A hacked account can be a nightmare, but quick action can help. Follow these essential steps to secure your account and protect your information. Don't let cybercriminals win!

WeLiveSecurity (ESET)·
HIGHFraud

Retail Fraud - Understanding Threats from Agentic AI

Retailers are facing a surge in fraud risks linked to agentic AI. This technology enables new tactics like gift card theft and returns fraud, threatening profits and customer loyalty. As these threats grow, understanding and defending against them is crucial for the retail industry.

Palo Alto Unit 42·
HIGHFraud

Fraud - Trio Sentenced for North Korean IT Worker Scheme

Three men were sentenced for facilitating a North Korean fraud scheme that stole $1.28 million from U.S. companies. Their actions raise serious national security concerns. Law enforcement continues to crack down on such schemes to protect digital borders.

CyberScoop·
HIGHFraud

Tycoon2FA - Phishing-as-a-Service Platform Persists Post Takedown

Tycoon2FA, a major phishing-as-a-service platform, continues to operate despite a recent takedown by Europol. This highlights the ongoing risk to organizations relying on MFA. Vigilance is key as cybercriminals adapt and evolve their tactics.

CrowdStrike Blog·
HIGHFraud

Fraud - Police Take Down 373,000 Fake CSAM Sites

Police have dismantled 373,000 fake CSAM sites in a major operation. Thousands of users were tricked into paying for non-existent content. This crackdown highlights the urgent need to combat online child exploitation.

BleepingComputer·