Russian Hackers Are Targeting Your Messaging Apps. Here's How to Stay Safe

CISA and the FBI have issued an updated warning about Russian intelligence services running phishing campaigns that target commercial messaging applications. These are ongoing attacks where hackers send fake messages trying to trick you into clicking links or sharing your login information. The goal is to gain access to your private conversations and personal data. This threat affects anyone who uses popular messaging apps for personal or work communications.

If you use apps like WhatsApp, Telegram, Signal, or similar services to chat with family, friends, or coworkers, you could receive these fake messages. The hackers are particularly interested in stealing login credentials and accessing your accounts.

Here is what you should do right now:

1. Be suspicious of any unexpected messages asking you to click links or verify your account, even if they appear to come from someone you know.
2. Never click on links in messages unless you are absolutely certain who sent them and why.
3. If you receive a suspicious message that appears to be from a friend or colleague, contact them through a different method to verify they actually sent it.
4. Enable two-factor authentication on all your messaging apps if you have not already done so.
5. Update your messaging apps to the latest versions to ensure you have the newest security features. To protect yourself going forward, make it a habit to verify before you trust. When in doubt about any message, take a moment to confirm its legitimacy through another channel. Teach your family members, especially children and older relatives, to be cautious about unexpected messages and never share passwords or personal information through messaging apps. Regular conversations about these threats help everyone stay safer online.