WhatsApp-Signal Users: A new warning has emerged around the world regarding cyber security. Netherlands’ intelligence agencies have reported that Russia-backed hackers are targeting people’s messaging accounts as part of a major cyber campaign. This attack is especially focused on users of popular messaging platforms like Signal and WhatsApp.
Dutch intelligence agencies Military Intelligence and Security Service and General Intelligence and Security Service have warned that government officials, people associated with the army and people in sensitive professions like journalists are becoming targets in this campaign. According to the report, some Dutch government employees have also been targeted in this cyber campaign and there is a possibility that journalists or other important people from other countries may also be within its scope.
How are hackers gaining access to accounts?
According to the report, the attackers are very cleverly using fake methods to trap people. Hackers on Signal send messages to users pretending to be support chatbots or official support services. In this message it is claimed that suspicious activity has been observed on the account and some steps have to be completed for security check.
On this pretext, the user is asked for SMS verification code or his personal PIN. If someone shares this information then attackers can easily take control of the account.
It has also been told in the report that many times the victim does not get suspicious immediately because the chat data of the app remains saved in the phone itself. In such a situation, the person feels that everything is normal while in reality hackers have gained access to his account.
Attack is also happening through QR code and link
Another method of hackers is quite clever. In this, they send a link or QR code to the users informing them of a group chat invitation or important information. As soon as the user scans that QR code or opens the link, the attackers connect their device to that account. This gives them a chance to read the messages and keep an eye on the conversations without the user knowing.
What did the companies say?
On this matter, Signal has clarified that there has been no breach in its encryption system or technical infrastructure. The company says that this attack is actually an advanced phishing campaign in which people are fraudulently forced to share their personal information. According to the company, attackers often pose as trusted services or people and take advantage of this trust to obtain login information.
On the other hand, Meta spokesperson said that WhatsApp users should never share their six-digit verification code with anyone because this code is the most important link in the security of the account.
how to keep yourself safe
Experts say that it is very important to be alert to avoid such cyber attacks. Before trusting any unknown message, it is important to check its authenticity. First of all, never share your verification code or account PIN with anyone. If any message asks you for such information, then immediately consider it suspicious.
Second, you should turn on two-step verification for added security on your account. With this, no one will be able to login to your account without the additional passcode.
Apart from this, experts also recommend that the disappearing message feature be kept on in messaging apps. Due to this, even if the device or account gets compromised, old chats will not remain available for long.
Also read:
Google’s real name was something else! A spelling mistake made Google
