A suspected Russian state-sponsored phishing campaign targeted German officials via Signal, using messages impersonating official support or trusted contacts to steal authentication codes via malicious QR codes and links. This attack vector exploits human trust to compromise accounts, granting attackers access to private chats and sensitive political discussions. While hundreds of accounts may be affected, the article is a threat intelligence report and does not contain technical vulnerability details such as CVSS scores, affected software versions, or specific patches.
Phishing , Critical Infrastructure Security , Government security Suspected Russian phishing campaign targets German officials via Signal April 29, 2026 Share By SC Staff (Adobe Stock) Recent investigations by German authorities point to a large-scale phishing campaign conducted via the Signal messaging platform, with strong suspicions of Russian involvement, as reported by Security Affairs. The campaign targeted high-profile individuals including German politicians, ministers, military personnel, diplomats, and journalists. German prosecutors have launched an investigation into what they believe may be a coordinated espionage effort, with early evidence suggesting a state-sponsored actor. The attack exploited human trust, with victims approached through messages impersonating official Signal support or trusted contacts, prompting them to share authentication codes, scan malicious QR codes, or click on crafted links. Once compromised, attackers gained access to private chats and sensitive political discussions. Authorities estimate hundreds of accounts may have been affected. While Berlin has not formally attributed the campaign, intelligence sources increasingly point toward Russian involvement, consistent with a broader pattern of cyber activities aimed at European democracies. Source: Security Affairs SC Staff Related Threat Intelligence Social media scam-related losses surge, FTC report finds SC Staff April 29, 2026 TechCrunch reports that financial losses linked to social media scams were reported by the U.S. Federal Trade Commission to have increased eightfold over time, exceeding losses attributed to other methods of fraud used by criminals to trick consumers. Phishing Massive domain spoofing campaign uncovered SC Staff April 29, 2026 More than 16,800 illicit domains masquerading as legitimate government portals, including those from the U.S.'s Department of Motor Vehicles, were discovered by Cyble Research and Intelligence Labs researchers to have been part of the large-scale Operation TrustTrap domain spoofing campaign aimed at extensive user data exfiltration, according to The Cyber Express. Phishing Canadian authorities arrest 3 in SMS blaster phishing scheme SC Staff April 28, 2026 The SMS blaster operates by emitting signals that trick mobile devices into connecting to it, appearing as a stronger, legitimate cell tower. Get daily email updates SC Media's daily must-read of the most current and pressing daily news Business Email By clicking the Subscribe button below, you agree to SC Media Terms of Use and Privacy Policy . Subscribe You can skip this ad in 5 seconds