Hackers have launched new phishing attacks against Signal messenger users. According to TechCrunch, cybercriminals are aiming to obtain users' chat backups. During the attack, hackers pose as the app's technical support service and send fake messages to users. This is reported by Techcrunch.com reports .
According to a screenshot published by Washington Post analyst Josh Rogin, the scammers threaten the user with the loss of all data due to a supposed synchronization issue. To resolve the problem, they ask the user to send a secret recovery key that allows access to online backups via chat. If this key is obtained, hackers gain access to all of the user's old messages, photos, and documents.
Mohammed Al-Maskati, Digital Security Director at Access Now, noted that these attacks might be aimed not only at political activists but at a wider audience. According to him, stealing the recovery key is only part of the attack, and to gain full control, hackers would also need to compromise the account.
Signal administration warned users that the company never initiates contact and will never ask for a registration code, PIN, or recovery key. Any such requests from an account named "Signal Support" are fraudulent. Users are advised not to follow instructions in suspicious messages and not to share personal information with strangers.
Read “Zamin” on Telegram!
