Russians Impersonate Signal Support in Phishing Campaign, Stealing 2FA Codes
Updated
Updated · The Register · Jul 9
Russians Impersonate Signal Support in Phishing Campaign, Stealing 2FA Codes
2 articles · Updated · The Register · Jul 9
Summary
Signal warned that Russian-linked attackers are posing as its support staff to trick targets into handing over one-time login codes and other credentials.
The phishing messages mimic legitimate Signal assistance, aiming to seize accounts rather than exploit a flaw in the encrypted messaging app itself.
The campaign fits a broader pattern of social-engineering attacks tied to Russian operations, using trusted brands and urgent support pretexts to bypass users' security habits.
Signal users are being urged to verify support contacts carefully and never share authentication codes, as the attacks show how account access can be compromised without breaking encryption.