Germany blames Russia for Signal phishing attacks on lawmakers
Sign up now: Get ST's newsletters delivered to your inbox
MPs from several parties, including the Speaker of Parliament and a senior member of Chancellor Friedrich Merz’s CDU party, were targeted with phishing attacks.
PHOTO: REUTERS
- German officials blamed Russia for Signal phishing attacks targeting lawmakers, senior administration officials, diplomats, and journalists.
- Attackers sent fake Signal support messages to steal sensitive account data, gaining access to chats and impersonating victims.
- Germany faces increased cyberattacks, espionage and sabotage since Russia's 2022 Ukraine invasion; Moscow denies involvement.
AI generated
BERLIN – Top officials in the German government on April 25 blamed Russia for repeated phishing attacks targeting lawmakers and senior administration officials using the Signal messaging app.
“The federal government is assuming that the phishing campaign targeting the Signal messaging service was presumably run from Russia,” AFP learnt from a government source.
The source said that the phishing campaign had been stopped.
German prosecutors on April 24 launched a spying investigation into the cyberattacks which had allegedly been directed at MPs from several parties, including the Speaker of Parliament and a senior member of Chancellor Friedrich Merz’s CDU party.
Civil servants, diplomats and journalists were also targeted.
Germany, Kyiv’s biggest provider of military aid, has been battling a surge of cyberattacks, as well as espionage and sabotage plots since Russia’s full-scale invasion of Ukraine in 2022.
Moscow denies being behind any such actions.
Signal hackers
The attacks work by sending messages purporting to come from Signal support.
Victims are urged to hand over sensitive account information, which the attackers can then use to gain access to their chat groups and messages.
When the scam is successful, the hackers gain access to photos and files shared on Signal and can also impersonate the person whose account was compromised.
German and foreign security services have been warning for months about the attacks, but the potential fallout in Germany is only just becoming clear.
Many have moved from WhatsApp to the non-profit Signal in recent years because of privacy concerns after WhatsApp said it would share some metadata with parent company Meta, which also owns Facebook and Instagram.
Hundreds affected?
The German government has so far not commented on how many of its lawmakers have been affected.
According to news outlet Der Spiegel, at least 300 accounts belonging to political figures were compromised in the phishing campaign.
Mr Konstantin von Notz, an MP who is deputy chief of the intelligence oversight committee, told AFP on April 24 that the scale of the suspected attacks was “extremely worrying”.
“The number of unreported cases will continue to rise in the coming days,” he said.
“At present, no one can say with any certainty whether the integrity of MPs’ communications is still guaranteed.”
Russia has been accused of numerous cyberattacks in Western countries. German officials have repeatedly been targeted, including in 2015 when computers belonging to the Bundestag and the office of then Chancellor Angela Merkel were breached. AFP
