renzume.

Phishing

Signals of Trouble: Multiple Russia-Aligned Threat Actors Actively Targeting Signal Messenger | Google Cloud Blog

Multiple Russia-aligned threat actors are actively targeting Signal Messenger accounts through various sophisticated techniques, primarily exploiting the app's 'linked devices' feature. The attacks focus on military personnel, politicians, and journalists, with threat actors using phishing campaigns and malware to intercept sensitive communications. Signal has responded by implementing hardened features in their latest releases to protect against such phishing campaigns.

Multiple Russian Threat Actors Targeting Microsoft Device Code Authentication

Russian threat actors are conducting sophisticated phishing campaigns targeting Microsoft 365 accounts through Device Code Authentication, with recent attacks focusing on political themes around the new US administration. Multiple actors, including suspected CozyLarch (APT29), are using social engineering and spear-phishing to impersonate government officials and research institutions, achieving higher success rates than traditional phishing methods.