US Offers $10 Million Reward for Information on Russian-Linked Hackers Targeting Messaging Apps
The US government has announced rewards of up to $10 million for information leading to the identification or capture of individuals linked to two cyber threat groups suspected of working with Russian intelligence.
The groups, tracked as UNC5792 and UNC4221, have been targeting current and former US government officials, military personnel, allied officials, journalists, political figures, and Ukrainian government-related individuals.
According to cybersecurity agencies, including the FBI and the Cybersecurity and Infrastructure Security Agency (CISA), the hackers are using phishing campaigns against popular commercial messaging platforms such as Signal and WhatsApp to gain unauthorized access to accounts.
The attackers often impersonate automated customer support accounts from messaging services. They attempt to trick victims into clicking malicious links or sharing verification codes, allowing hackers to take control of their accounts.
In a recent update, security officials warned that the threat actors have expanded their tactics by requesting Backup Recovery Keys from victims. These keys can allow attackers to access previous conversations, including private chats and group messages.
Officials warned that stolen recovery keys may remain useful even after victims create new accounts using the same phone number, potentially allowing attackers to regain access in the future.
Security agencies are urging users to be cautious of unexpected support messages, avoid sharing verification codes or recovery keys, and enable additional security protections on messaging accounts.
Leave a comment