NCSC warns of messaging app targeting by Russia-linked actors

Heightened Cyber Threats Targeting High-Risk Individuals

The UK National Cyber Security Centre (NCSC) has issued a cautionary note regarding a surge in cyber threats emanating from Russia-based actors, particularly focusing on messaging applications such as WhatsApp, Signal, and Messenger. This alert, released in collaboration with international partners, underscores the growing risk of malicious activities aimed at compromising the accounts of individuals deemed high-risk due to their access to sensitive information or their influence in decision-making processes.

According to the NCSC, the tactics employed by these attackers are varied and sophisticated. They often involve:

• Deceptive methods to coax users into divulging login or verification codes.
• Unauthorized addition of devices to accounts.
• Infiltration of group chats to gather information.
• Impersonation of trusted contacts to gain credibility.
• Utilization of phishing links or QR codes to lure unsuspecting users.

This pattern of targeting has been associated with state-affiliated groups, particularly those linked to Russia, China, and Iran. The current wave of activity has a pronounced focus on messaging platforms, which serve as critical access points for these threat actors.

High-risk individuals are characterized by their roles or public profiles that render them more susceptible to such attacks, especially if they possess access to sensitive data or networks that are of interest to hostile entities.

In response to these escalating threats, the NCSC has outlined several proactive measures for individuals to safeguard their accounts:

1. Enable two-step verification or passkeys for added security.
2. Avoid sharing verification codes under any circumstances.
3. Regularly monitor linked devices to ensure no unauthorized access.
4. Exercise caution when interacting with unknown contacts or duplicate accounts that may be impersonating trusted individuals.
5. Limit the use of personal messaging apps for work-related communications, opting for corporate systems whenever possible.
6. Utilize features such as disappearing messages to minimize data exposure in the event of a security breach, in alignment with organizational policies.

By adopting these strategies, high-risk individuals can better protect themselves against the growing tide of cyber threats targeting their messaging platforms. The NCSC’s guidance serves as a crucial reminder of the importance of vigilance in an increasingly interconnected digital landscape.