Signal phishing campaign targeting senior figures in Germany and Europe
Campaign
Summary
Hide ▲
Show ▼
A Signal phishing campaign is targeting senior figures in Germany and across Europe, seeking access to one-to-one and group chats plus contact lists. The operation uses social engineering instead of malware or exploited vulnerabilities, including fake support messages, stolen PINs/SMS codes, and QR-code device pairing. It puts politicians, military officers, diplomats, and investigative journalists at risk of account takeover and covert monitoring.
Related Happenings
Russian intelligence Signal recovery-key phishing campaign
Campaign
H score29
First: 29.06.2026 11:15
Last: 29.06.2026 11:15
Sources 1
About this happening:
An active **Russian intelligence** phishing campaign is impersonating **Signal** support to steal **Backup Recovery Keys**, **verification codes**, and **account PINs**, putting *...
Russian intelligence Signal recovery-key phishing campaign
CampaignAbout this happening: An active **Russian intelligence** phishing campaign is impersonating **Signal** support to steal **Backup Recovery Keys**, **verification codes**, and **account PINs**, putting *...
Russian intelligence services fake support SMS messaging-account phishing campaign
Campaign
H score29
First: 27.06.2026 20:27
Last: 27.06.2026 20:27
Sources 1
About this happening:
A **long-running phishing campaign** by **Russian intelligence services** is stealing **messaging-account credentials** from officials, military personnel, politicians, and activi...
Russian intelligence services fake support SMS messaging-account phishing campaign
CampaignAbout this happening: A **long-running phishing campaign** by **Russian intelligence services** is stealing **messaging-account credentials** from officials, military personnel, politicians, and activi...
India's Ministry of Electronics and Information Technology acting under Section 69A of the IT Act Restricted access to Telegram nationwide and ordered message-editing disabled
Public Sector Action
H score71
First: 17.06.2026 16:12
Last: 17.06.2026 16:12
Sources 1
About this happening:
India's **Ministry of Electronics and Information Technology** ordered a **nationwide Telegram restriction** under **Section 69A** through **June 22**, adding a separate requireme...
India's Ministry of Electronics and Information Technology acting under Section 69A of the IT Act Restricted access to Telegram nationwide and ordered message-editing disabled
Public Sector ActionAbout this happening: India's **Ministry of Electronics and Information Technology** ordered a **nationwide Telegram restriction** under **Section 69A** through **June 22**, adding a separate requireme...
TA4922 expanded European phishing-and-malware campaign
Campaign
H score40
First: 04.06.2026 00:45
Last: 04.06.2026 00:45
Sources 1
About this happening:
**TA4922** is a **China-linked** cybercrime campaign that has expanded from **East Asia** into **Europe and Africa**, including **the U.K., Germany, Italy, and South Africa**. The...
TA4922 expanded European phishing-and-malware campaign
CampaignAbout this happening: **TA4922** is a **China-linked** cybercrime campaign that has expanded from **East Asia** into **Europe and Africa**, including **the U.K., Germany, Italy, and South Africa**. The...
Signal adds in-app phishing confirmations and warning messages
Security Tool/Service
H score14
First: 12.05.2026 22:40
Last: 12.05.2026 22:40
Sources 1
About this happening:
**Signal** added **in-app confirmations** and **warning messages** to slow phishing and social-engineering attempts that could expose **accounts**, **chats**, and **contacts**. Th...
Signal adds in-app phishing confirmations and warning messages
Security Tool/ServiceAbout this happening: **Signal** added **in-app confirmations** and **warning messages** to slow phishing and social-engineering attempts that could expose **accounts**, **chats**, and **contacts**. Th...
Timeline
-
06.02.2026 22:00 1 articles · 5mo ago
Germany issues Signal phishing warning for senior figures
Initial DisclosureGermany's Federal Office for the Protection of the Constitution (BfV) and Federal Office for Information Security (BSI) issue a security advisory warning of suspected state-sponsored threat actors using phishing through messaging apps like Signal to target politicians, military officers, diplomats, and investigative journalists in Germany and across Europe. The campaign uses social engineering rather than malware or exploited technical vulnerabilities, including fake support messages, theft of Signal PINs or SMS verification codes, and QR-code device pairing abuse to gain access to one-to-one and group chats plus contact lists. The agencies recommend blocking and reporting alleged support accounts, enabling Signal's Registration Lock, and regularly reviewing Settings > Linked devices for unrecognized devices.
Show sources
- Germany warns of Signal account hijacking targeting senior figures — www.bleepingcomputer.com — 06.02.2026 22:00