Hackers are targeting Signal with new QR code-linked cyberattack
Google researchers are warning of an ongoing phishing campaignIt distributes QR codes which grant the attackers access to people's Signal accountsThe targets are mostly military personnel, experts warn Russian state-sponsored threat actors have been increasingly targeting Signal Messenger users,
Russia-aligned hackers are targeting Signal users with device-linking QR codes
Signal, as an encrypted messaging app and protocol, remains relatively secure. But Signal's growing popularity as a tool to circumvent surveillance has led agents affiliated with Russia to try to manipulate the app's users into surreptitiously linking their devices, according to Google's Threat Intelligence Group.
Russian State Hackers Target Organizations With Device Code Phishing
Russian hackers have been targeting government, defense, telecoms, and other organizations in a device code phishing campaign.
Russian phishing campaigns exploit Signal's device-linking feature
Russian threat actors have been launching phishing campaigns that exploit the legitimate "Linked Devices" feature in the Signal messaging app to gain unauthorized access to accounts of interest.
Microsoft: Russian-Linked Hackers Using 'Device Code Phishing' to Hijack Accounts
The tech giant said the attack involves sending phishing emails that masquerade as Microsoft Teams meeting invitations that, when clicked, urge the message recipients to authenticate using a threat actor-generated device code, thereby allowing the adversary to hijack the authenticated session using the valid access token.
What is device code phishing, and why are Russian spies so successful at it?
Researchers have uncovered a sustained and ongoing campaign by Russian spies that uses a clever phishing technique to hijack ...
Microsoft7d
Storm-2372 conducts device code phishing campaign
Microsoft Threat Intelligence Center discovered an active and successful device code phishing campaign by a threat actor we ...
Microsoft: Hackers steal emails in device code phishing attacks
An active campaign from a threat actor potentially linked to Russia is targeting Microsoft 365 accounts of individuals at ...
A Signal Update Fends Off a Phishing Technique Used in Russian Espionage
Google warns that hackers tied to Russia are tricking Ukrainian soldiers with fake QR codes for Signal group invites that let ...
Infosecurity-magazine.com1d
Mobile Phishing Attacks Surge with 16% of Incidents in US
Mobile phishing attacks surged in 2024, with 16% of all incidents occurring in the US, according to a new Zimperium report ...
Russian cyberattackers spotted hitting Microsoft Teams with new phishing campaign
Microsoft has spotted a new phishing attack vector in the wild Storm-2372 is stealing access tokens through Microsoft Teams ...
aha.org7d
H-ISAC TLP White Threat Bulletin Storm-2372 Conducts Device Code Phishing Campaign
The Microsoft Threat Intelligence Center has identified an active device code phishing campaign conducted by a group known as Storm-2372, which has been operational since August 2024.