We value your privacy

We use cookies to enhance your browsing experience, serve personalized ads or content, and analyze our traffic. By clicking "Accept All", you consent to our use of cookies.

Customize Consent Preferences

We use cookies to help you navigate efficiently and perform certain functions. You will find detailed information about all cookies under each consent category below.

The cookies that are categorized as "Necessary" are stored on your browser as they are essential for enabling the basic functionalities of the site. ... 

Always Active

Necessary cookies are required to enable the basic features of this site, such as providing secure log-in or adjusting your consent preferences. These cookies do not store any personally identifiable data.

No cookies to display.

Functional cookies help perform certain functionalities like sharing the content of the website on social media platforms, collecting feedback, and other third-party features.

No cookies to display.

Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics such as the number of visitors, bounce rate, traffic source, etc.

No cookies to display.

Performance cookies are used to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.

No cookies to display.

Advertisement cookies are used to provide visitors with customized advertisements based on the pages you visited previously and to analyze the effectiveness of the ad campaigns.

No cookies to display.

NewApp Digest
search bot

Russian hackers find ways to snoop on Ukrainian Signal accounts

February 28, 2025

Cybersecurity Threats Targeting Ukrainian Military Personnel

In a concerning trend, hackers have been employing deceptive tactics to compromise the security of Ukrainian users. By enticing individuals to scan malicious QR codes, these cybercriminals are linking victims’ accounts to their own interfaces. This alarming maneuver allows the hackers to intercept messages in real time, effectively monitoring communications without detection.

Recent findings from Google have revealed that Russia-linked groups, specifically identified as UNC4221 and UNC5792, have been disseminating altered Signal “group invite” links and codes aimed at Ukrainian military personnel. This tactic underscores the evolving nature of cyber threats in a region already grappling with significant geopolitical tensions.

Signal, renowned for its robust security features, is often regarded as the gold standard for secure messaging. The application is built on a foundation of end-to-end encryption and collects minimal user data, with its open-source encryption protocol allowing cybersecurity experts to scrutinize its integrity continuously. Notably, institutions such as the European Commission and European Parliament have recommended Signal for secure communications, favoring it over other messaging platforms.

While Google’s research did not indicate any vulnerabilities within Signal’s encryption protocol, it highlighted that the app’s “linked devices” functionality is being exploited as a means to bypass security measures. This revelation raises critical questions about the potential for similar tactics to emerge beyond the borders of Ukraine.

In light of these threats, Signal’s senior technologist, Josh Lund, has announced several proactive measures to enhance user protection. The app has undergone a user interface overhaul, introduced additional authentication steps, and implemented notifications for any new linked devices. These changes aim to bolster awareness and safeguard users against the social engineering attacks outlined in the report.

As the landscape of cybersecurity continues to evolve, the implications of such tactics extend beyond Ukraine, prompting a need for vigilance and adaptive strategies in safeguarding sensitive communications worldwide.

AppWizard
Russian hackers find ways to snoop on Ukrainian Signal accounts