EXCLUSIVE: RUSSIAN STATE HACKERS HIJACK SIGNAL, WHATSAPP IN GLOBAL ESPIONAGE PHISHING BLITZ
A chilling alert from the FBI and CISA reveals a massive, ongoing cybersecurity campaign where Russian intelligence operatives are not hacking the apps—they are hacking the people. Their target? The private messages of high-value U.S. and global officials, military personnel, and journalists on encrypted platforms like Signal and WhatsApp. This is a data breach of trust, executed through sophisticated phishing, not a technical zero-day exploit.
The operation, linked to threat clusters Star Blizzard and UNC5792, has already compromised THOUSANDS of accounts. By posing as "Signal Support," hackers trick targets into surrendering PINs or verification codes. Once inside, they own the account: reading full chat histories, impersonating the victim, and launching new phishing attacks from a trusted identity. This turns a personal device into a powerful espionage tool.
"These are not smash-and-grab ransomware attacks; this is sustained, state-level espionage designed to steal secrets and manipulate narratives," explains a former U.S. cyber command official. "The encryption is still strong, but the human link has been utterly compromised. It’s a masterclass in social engineering."
You should care because this blurs the line between personal and national security. If a journalist's or aide's account is seized, an adversary can spread disinformation, access sensitive sources, or blackmail contacts. This campaign proves that blockchain-level security on a platform means nothing if the endpoint—the user—is tricked into handing over the keys.
We predict this phishing-for-espionage model will be copied by other nation-states, targeting not just government but corporate leaders, especially in the crypto and critical infrastructure sectors, challenging the very premise of private communication.
Your most encrypted message is only as secure as your most foolish click.
