Hackers linked to Russian intelligence agencies are using popular messaging apps to carry out massive cyber attacks. The US Central Intelligence Agency (FBI) has issued a warning that this attack is being carried out to hack the accounts of high-ranking and important people.
The FBI, in a joint directive with the Cybersecurity and Infrastructure Security Agency, said these hackers have already hacked thousands of accounts around the world. Those who have highly sensitive information are being targeted, the directive said. They include current and former US government officials, military and political figures, and journalists.
Once an account is hacked, attackers can view all of that person’s messages and contact lists. It can even send messages to other people using the victim’s identity and conduct phishing attacks on other commercial messaging applications (CMAs).
The investigation revealed that hackers are specifically targeting users of Signal (an open source messaging app). However, the same phishing method can be applied to other popular apps like WhatsApp and Telegram. The signal authority said in a statement that a highly ‘sophisticated phishing campaign’ is being run to trick users into stealing information.
According to the British daily The Independent, the hackers were unable to break the app’s basic encryption or security measures; Rather they are tricking users through ‘social engineering’. Russian hackers lured users to share verification codes or PINs or click on links by posing as ‘official support’ to the app. This allows them to gain unauthorized access to accounts, which can then turn into larger attacks like spreading malware.
In such situations, the FBI and CISA advise users to be cautious. Any unexpected messages from unknown numbers are urged to be verified. Apart from this, it has been asked to refrain from clicking on suspicious links or opening files. Those who have already been victims of this Russian hacking are advised to file a complaint with the ‘Internet Crime Complaint Center’ (IC-3).
