Hackers are trying to steal Signal users’ backups in new wave of phishing attacks
Hackers are launching a new phishing campaign targeting Signal users to steal their chat backups. They impersonate Signal's support team, warning users that their backups are at risk and asking for recovery keys. Signal has reiterated that it will never contact users for sensitive information, highlighting the importance of vigilance against such scams.
- ▪Hackers are pretending to be Signal's support team to trick users into sharing their recovery keys.
- ▪This phishing attempt has also reached several anti-CCP activists, indicating a potentially broader target range.
- ▪Signal has warned users that it will never ask for sensitive information, emphasizing the need for caution.
Opening excerpt (first ~120 words) tap to expand
Hackers are targeting Signal users in an attempt to steal their chat backups as part of a new hacking campaign, TechCrunch has learned. On Wednesday, Washington Post analyst Josh Rogin posted a screenshot of a new kind of attack against Signal users, where hackers pretend to be the app’s support team and warn the target that their backed-up chats and media are “at risk of permanent loss due to a sync issue.” To avoid that, the message said, the target needs to share the recovery key that is used to access their online backups in the chat with the hackers. “This links your existing backup to your account. Failure to do this may result in losing access to your account and all stored data,” read the message purporting to come from an account called Signal Support. This is a phishing attempt.
…
Excerpt limited to ~120 words for fair-use compliance. The full article is at TechCrunch.
Discussion
0 commentsMore from TechCrunch
