FBI Warns of Russian Hacker Phishing Attacks on Messaging Apps

Messenger apps you use are now becoming a new target for Russian hackers. The U.S. Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) issued a joint warning stating that cyber actors linked to Russian intelligence agencies are conducting large-scale phishing attack campaigns targeting users of encrypted messenger apps.

Instead of decrypting the apps' encryption itself, they are focusing on deceiving users to steal account access credentials. Even messenger apps with strong encryption technology lose their effectiveness if login information is leaked. Some attacks masquerade as trusted contacts.

These attacks primarily target high-value individuals such as government officials, military personnel, and journalists, but they can also spread to general users. If an account is compromised, attackers can read private conversations and access the contact list. Furthermore, they can impersonate the user and initiate new scams targeting their existing contacts.

Whereas in the past, the primary method was to attack systems directly, attempts to distract users and steal information directly are now increasingly common as a new trend in cyberattacks.