Messaging platforms long considered secure because of end-to-end encryption have become the latest target of a sophisticated cyber campaign. A fresh warning from Europe indicates that Russia-linked hacking groups have launched a global operation aimed at compromising Signal and WhatsApp accounts used by government officials, military personnel and journalists.
According to European intelligence agencies, the campaign relies heavily on social engineering techniques. In these attacks, hackers impersonate app support teams or technical chatbots and persuade users to reveal security verification codes or PIN numbers. Once the attackers obtain these codes, they can take full control of the accounts and gain access to private conversations, group chats and potentially sensitive information.
Officials say the objective of such operations is not merely account takeover but also the extraction of confidential communications, diplomatic discussions and information related to journalistic sources.
Fake support chatbots used as bait
Cybersecurity experts say the most commonly used tactic in this campaign involves fake “Signal Support” chatbots. In this method, hackers send a message to a target claiming that there is a security issue or verification problem with their account.
The user is then asked to share a six-digit verification code or security PIN. In some cases, victims are warned that their account could be blocked if the code is not provided immediately. Once the user shares the code, the attackers use it to log in and take control of the account.
‘Linked Devices’ feature also exploited
Investigations have also revealed that hackers are abusing the Linked Devices feature of messaging apps. In such cases, users are sent a link or QR code and told to scan it to verify their account.
If the user follows the instructions, the attacker’s device gets linked directly to the victim’s account, allowing them to read messages without needing the password. This can expose group chats, shared files and private conversations.
Intelligence agencies have warned that certain signs may indicate a compromised account. For instance, if a contact appears twice in a contact list or if a familiar number shows up as a “deleted account,” it could suggest that the account has been breached.
Questions over use of apps for sensitive communication
Experts say that although messaging apps offer end-to-end encryption, their security can still be undermined if users are tricked through social engineering.
Renowned cyber crime expert and former IPS officer Prof. Triveni Singh says modern cyber criminals increasingly rely on manipulating human behaviour rather than purely technical hacking. According to him, attackers often pose as support agents, bank officials or technical staff to obtain verification codes and one-time passwords, making even secure platforms vulnerable.
Journalists and government officials among key targets
The report suggests that the campaign has targeted government employees and journalists in several countries. If journalists’ accounts are compromised, the identities of confidential sources could be exposed. In the case of government officials, sensitive diplomatic or security-related discussions may also be at risk.
Because of these concerns, authorities in Europe have issued cyber advisories to government staff and warned them against relying on messaging apps for sharing classified or highly sensitive information.
Safety advice for users
Cybersecurity specialists say a few basic precautions can significantly reduce the risk of such attacks:
- Never share six-digit verification codes or security PINs with anyone, including people claiming to be support staff.
- Avoid scanning unknown QR codes or clicking suspicious links.
- Enable two-step verification in messaging apps.
- Immediately review logged-in devices and change security settings if suspicious activity appears.
Experts say cyber criminals are rapidly adapting their strategies, focusing less on breaking systems and more on deceiving users into revealing sensitive information. In this evolving threat landscape, digital awareness and caution remain the most effective defence.
About the author – Ayesha Aayat is a law student and contributor covering cybercrime, online frauds, and digital safety concerns. Her writing aims to raise awareness about evolving cyber threats and legal responses.
