FBI Warns of Russian Hackers Targeting Signal and WhatsApp in Mass Phishing Campaign

The Federal Bureau of Investigation (FBI), alongside the Cybersecurity and Infrastructure Security Agency (CISA), has issued a warning about a large-scale cyber campaign carried out by hackers linked to Russian intelligence services. The attackers are targeting users of Signal and WhatsApp through sophisticated phishing attacks.

Who Is Being Targeted

According to officials, the campaign has already impacted thousands of users worldwide. High-value targets include government officials, military personnel, journalists, and political figures—individuals whose communications could provide strategic intelligence.

How the Attacks Work

Rather than exploiting vulnerabilities in the apps themselves, attackers are using social engineering tactics. They impersonate trusted sources—such as support teams—and trick users into:

• Sharing verification codes
• Clicking malicious login links

This allows hackers to take full control of accounts without breaking encryption.

Potential Impact

Once an account is compromised, attackers can:

• Read private messages
• Access contact lists
• Impersonate the victim
• Spread further phishing attacks

This creates a chain reaction, rapidly expanding the reach of the campaign.

FBI Recommendations

The FBI urges users to take immediate precautions, including:

• Enabling multi-factor authentication
• Never sharing verification codes
• Avoiding suspicious or unsolicited messages
• Verifying requests through official channels

Cybersecurity experts say this campaign highlights a growing trend: attackers are increasingly targeting human behavior rather than technical weaknesses. Even the most secure platforms can be undermined if users are deceived, making awareness and vigilance critical in today’s threat landscape.