The Dutch military intelligence unit and internal security organization have released a combined advisory stating that Russian cybercriminals are conducting an extensive worldwide operation to infiltrate Signal and WhatsApp profiles used by high-ranking officials, armed forces members, and government employees. The notification from the Netherlands indicates that the attackers are posing as assistance bots to deceive prominent individuals into disclosing their access codes for these apps, enabling unauthorized viewing of received communications.
In the previous year, U.S. defense officials recommended that personnel avoid using Signal following comparable deceptive attacks by Russian operatives. The same American defense authorities had recently experienced self-inflicted vulnerabilities unrelated to external threats.
This latest governmental caution regarding phishing attempts on Signal and WhatsApp underscores the importance of verifying the legitimacy of requests for authentication information or hyperlinks before responding.