A Signal Update Fends Off a Phishing Technique Used in Russian Espionage
1 min read
Summary
Russian hackers have used Ukraine as a test lab for their techniques that target eavesdropping on messaging platforms like Signal.
In recent weeks Google has found that Russian-linked hacking groups are targeting the Signal platform with a phishing attack that uses QR codes to obtain messages in real time as their victim receives them.
Google has notified the Signal Foundation, which has rolled out an update to the iOS and Android apps alerting users to the new authentication process for the new device feature.
QR-code phishing is just one of the techniques that has been developed in Ukraine that has now moved worldwide.
Previously Russian hackers have used the same tactics in Ukraine to access Signal messages on computers infected with Turla malware, and to pair compromised phones to PCs using the app’s linked device feature.
