Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

AIVD and MIVD Signal and WhatsApp account-hijacking guidance

Advisory/Mitigation
First reported
Last updated
Happening score
H score 39
1 unique sources, 1 articles

Summary

Hide ▲

On March 9, AIVD and MIVD issued guidance to reduce Signal and WhatsApp account hijacking risk in a global campaign targeting high-value users. The advisory warns that government employees were already affected and says military personnel, civil servants, journalists, and other persons of interest may also be targeted. It recommends checking for duplicate-looking accounts, verifying suspicious activity out of band, and removing impostor accounts through group admins.

Related Happenings

Signal adds in-app phishing confirmations and warning messages

Security Tool/Service
First: 12.05.2026 22:40 Last: 12.05.2026 22:40 Sources 1

About this happening: **Signal** added **in-app confirmations** and **warning messages** to slow phishing and social-engineering attempts that could expose **accounts**, **chats**, and **contacts**. Th...

Open Happening

Suspected Russia-linked Signal phishing campaign targeting political accounts

Campaign
First: 28.04.2026 13:54 Last: 28.04.2026 13:54 Sources 1

About this happening: A **suspected Russia-linked** phishing campaign on **Signal** compromised about **300 political-sphere accounts**, exposing chats, ongoing conversations, and address books. Victim...

Latest development: 12.05.2026 22:40

Signal introduced new in-app confirmations, warning messages, and educational prompts to help users resist phishing and social engineering attempts, including bogus Signal Support lures and requests to scan QR codes or share registration codes, PINs, or recovery keys.

Open Happening

BfV and BSI public warning on Signal phishing

Public Sector Action
First: 28.04.2026 13:54 Last: 28.04.2026 13:54 Sources 1

About this happening: Germany’s **BfV** and **BSI** issued a public warning about a **Signal phishing campaign**, flagging a likely **state-controlled cyber actor** and the risk to **politicians** and...

Open Happening

Unnamed high-profile Lebanese journalist hit by network compromise

Incident
First: 09.04.2026 13:45 Last: 09.04.2026 13:45 Sources 1

About this happening: An **unnamed high-profile Lebanese journalist** had an **Apple account** successfully compromised in **2025**, creating unauthorized access to a personal and professional identity...

Open Happening

WhatsApp anti-scam protections now warn on fraudulent device-linking requests

Security Tool/Service
First: 26.03.2026 16:06 Last: 26.03.2026 16:06 Sources 1

About this happening: **WhatsApp** rolled out **anti-scam protections** that warn users when **device-linking requests** look suspicious, adding a new user-facing control against **fraudulent account-l...

Open Happening

Timeline

  1. 10.03.2026 12:45 1 articles · 2mo ago

    AIVD and MIVD warn of Russian Signal and WhatsApp targeting

    Initial Disclosure

    A global campaign by Russian nation state operatives targeted individual Signal and WhatsApp accounts used by Dutch government employees, with military personnel, civil servants, journalists, and other persons of interest also named as possible targets; some government employees had already been victimized.

    Show sources
    Open in new tab
  2. 10.03.2026 12:45 2 articles · 2mo ago

    AIVD and MIVD issue anti-hijacking guidance for Signal and WhatsApp users

    Mitigation Patch Update

    AIVD and MIVD produced guidance for high-value Signal and WhatsApp users, advising them to check for duplicate-looking accounts in group member lists, verify suspicious activity out of band, contact group admins to remove impostor accounts, and treat requests for verification codes or Signal PINs as scams.

    Show sources
    Open in new tab