Signal Warns Users About Scams After Hackers Target Officials
Encrypted messaging platform Signal has issued a warning to users following reports that hackers are targeting accounts through sophisticated scam campaigns.
The alert comes after Dutch intelligence agencies revealed that a cyber operation believed to be linked to Russia had targeted prominent users of Signal and WhatsApp. According to officials, the attacks focused on individuals such as government representatives, military personnel and journalists.
Authorities said the campaign involved hackers impersonating technical support staff in an attempt to trick victims into handing over sensitive login information that could allow access to their accounts.
The operation was identified by the General Intelligence and Security Service (AIVD) and the Military Intelligence and Security Service (MIVD). Both agencies described the effort as a large-scale international cyber campaign aimed at people considered valuable intelligence targets.
Simone Smit emphasised that the messaging platforms themselves had not been breached.
“It is not the case that Signal or WhatsApp as a whole have been compromised. Individual user accounts are being targeted,” Smit said.
Signal echoed that position, stating in posts on social media that its systems remain secure.
“The attacks involve advanced phishing techniques designed to trick users into revealing information such as SMS verification codes or Signal PINs,” the company said.
Phishing scams typically involve criminals pretending to be trusted individuals or organisations in order to obtain passwords, verification codes or other sensitive details. In this campaign, attackers reportedly posed as Signal support representatives to convince users to share information that could give them access to their accounts.
Signal requires users to protect their accounts with a personal identification number, which the company says should never be shared with anyone. It also warned users not to reveal verification codes sent to their phone numbers.
WhatsApp has issued similar advice, reminding users that the six-digit codes used to secure their accounts should never be shared with others.
Cybersecurity experts say these types of attacks are becoming increasingly common as hackers shift their focus from technical vulnerabilities to human behaviour.
Muhammad Yahya Patel, a security adviser at Huntress, said modern attacks often rely on manipulating users rather than exploiting software flaws.
“In the past, hackers looked for bugs in code. Now they are looking for human bugs in how people interact with apps,” he said.
Patel explained that convenient features such as logging in on multiple devices via QR codes or recovering accounts through SMS verification codes can become entry points for attackers if users are tricked into sharing access.
He advised users to regularly check which devices are linked to their accounts and remove any unfamiliar connections.
Experts also caution that while technologies such as end-to-end encryption protect messages in transit, they cannot prevent breaches if a user’s account or device itself becomes compromised.
Dutch intelligence officials said Signal’s reputation for strong security may have made it an attractive target for attackers hoping to gather sensitive information.
However, Peter Reesink warned that even encrypted messaging platforms should not be used for highly sensitive or classified communications.
“Despite their end-to-end encryption, messaging apps such as Signal and WhatsApp should not be used as channels for classified, confidential or sensitive information,” he said.
Signal urged users to remain vigilant and to treat unexpected messages requesting account details or verification codes as potential scams.
