CISA urges E2EE, FIDO, and device hardening for highly targeted mobile users
Defensive Guidance
Summary
Hide ▲
Show ▼
CISA issued new defensive guidance for highly targeted mobile users, warning that commercial spyware and RAT-driven abuse can compromise messaging apps and linked accounts. The guidance matters because the threat combines social engineering, device-linking QR codes, and zero-click exploits to reach high-value victims. CISA’s recommendations focus on E2EE communications, FIDO phishing-resistant authentication, and tighter device and account hardening to reduce takeover risk.
Related Happenings
Signal adds in-app phishing confirmations and warning messages
Security Tool/Service
First: 12.05.2026 22:40
Last: 12.05.2026 22:40
Sources 1
About this happening:
**Signal** added **in-app confirmations** and **warning messages** to slow phishing and social-engineering attempts that could expose **accounts**, **chats**, and **contacts**. Th...
Signal adds in-app phishing confirmations and warning messages
Security Tool/ServiceAbout this happening: **Signal** added **in-app confirmations** and **warning messages** to slow phishing and social-engineering attempts that could expose **accounts**, **chats**, and **contacts**. Th...
NCSC-UK joint advisory on covert botnets and proxy networks
Public Sector Action
First: 23.04.2026 15:28
Last: 23.04.2026 15:28
Sources 1
About this happening:
**NCSC-UK** and partner agencies issued a **joint advisory** warning that **China-nexus hackers** are using **hijacked consumer devices** as covert proxy networks to hide maliciou...
NCSC-UK joint advisory on covert botnets and proxy networks
Public Sector ActionAbout this happening: **NCSC-UK** and partner agencies issued a **joint advisory** warning that **China-nexus hackers** are using **hijacked consumer devices** as covert proxy networks to hide maliciou...
CISA KEV directive for CVE-2026-20133
Public Sector Action
First: 21.04.2026 15:30
Last: 21.04.2026 15:30
Sources 1
About this happening:
On **Monday, April 21, 2026**, **CISA** added **CVE-2026-20133** to the **KEV Catalog** and ordered **FCEB agencies** to secure their networks by **Friday, April 24**. The directi...
CISA KEV directive for CVE-2026-20133
Public Sector ActionAbout this happening: On **Monday, April 21, 2026**, **CISA** added **CVE-2026-20133** to the **KEV Catalog** and ordered **FCEB agencies** to secure their networks by **Friday, April 24**. The directi...
Signal and WhatsApp anti-phishing account-hardening guidance
Defensive Guidance
First: 21.03.2026 15:17
Last: 21.03.2026 15:17
Sources 1
About this happening:
A **UK National Cyber Security Centre (NCSC)** alert on **March 31** warned that **Russia-based actors** are increasing **targeted attacks** against **high-risk individuals** usin...
Signal and WhatsApp anti-phishing account-hardening guidance
Defensive GuidanceAbout this happening: A **UK National Cyber Security Centre (NCSC)** alert on **March 31** warned that **Russia-based actors** are increasing **targeted attacks** against **high-risk individuals** usin...
FBI public warning on Signal and WhatsApp phishing
Public Sector Action
First: 20.03.2026 22:45
Last: 20.03.2026 22:45
Sources 1
About this happening:
The **FBI** issued a **public service announcement** warning that **Signal** and **WhatsApp** users are being targeted in **phishing campaigns**. The warning says the activity has...
FBI public warning on Signal and WhatsApp phishing
Public Sector ActionAbout this happening: The **FBI** issued a **public service announcement** warning that **Signal** and **WhatsApp** users are being targeted in **phishing campaigns**. The warning says the activity has...
Timeline
-
25.11.2025 08:42 2 articles · 6mo ago
CISA issues mobile spyware hardening guidance for high-value messaging users
Mitigation Patch UpdateCISA issued an alert on Monday warning that commercial spyware and remote access trojans are being used to target mobile messaging app users, especially current and former high-ranking government, military, and political officials, along with civil society organizations in the United States, the Middle East, and Europe. The agency said attackers use social engineering, device-linking QR codes, zero-click exploits, and spoofed messaging apps to gain unauthorized access and deploy additional malicious payloads, and it urged users to rely on end-to-end encrypted communications, FIDO phishing-resistant authentication, stronger account and device hardening, Lockdown Mode on iPhones, and Google Play Protect on Android.
Show sources
- CISA Warns of Active Spyware Campaigns Hijacking High-Value Signal and WhatsApp Users — thehackernews.com — 25.11.2025 08:42
- CISA Warns of Active Spyware Campaigns Hijacking High-Value Signal and WhatsApp Users — thehackernews.com — 25.11.2025 08:42