The encrypted messaging app Sign is engaged on new safety measures following reviews that Russian state-sponsored hackers efficiently hijacked as many as 300 person accounts in Germany.
“Within the coming weeks, you’ll see us rolling out quite a few modifications to assist hinder these sorts of assaults,” Sign stated in a tweet on Monday.
Final week, information emerged that Russian hackers managed to hijack the accounts of a number of high-profile politicians in Germany, together with the president of the nation’s parliament. The hijackings affected no less than 300 individuals within the nation, based on the German information web site Der Spiegel.
Sign famous the encrypted messaging service wasn’t hacked. “Our encryption, infrastructure, and the integrity of the app’s code was not compromised,” the nonprofit Sign Expertise Basis stated.
As an alternative, the suspected Russian hackers have been utilizing phishing messages that impersonate “Sign Help.” Contacted victims assume the messages are legit, however are literally a lure to control customers into handing over the one-time authentication code, Sign PIN, and even the backup restoration key, which might then used to entry the person’s Sign account on a second telephone.
European officers raised alarm bells concerning the risk final month, adopted by the FBI. But it surely seems just like the warnings haven’t been sufficient to cease the hackers. Josh Rogin, a worldwide safety analyst with The Washington Put up, famous the identical tactic has been efficiently focusing on human rights activists against the Chinese language authorities.
This Tweet is currently unavailable. It might be loading or has been removed.
For now, Sign was mum on the way it’ll precisely counter the risk. The nonprofit famous that as a result of Sign makes use of end-to-end encryption it may well’t accumulate any person knowledge to disclose extra technical particulars concerning the phishing assaults.
Nonetheless, Sign stated: “Whereas it’s true that every one messaging platforms are inclined to scammers and phishing that betrays individuals’s belief and convinces them to ‘unlock the entrance door’ the place no backdoor exists, we wish to do all the pieces we are able to to assist individuals keep away from and detect such scams.”
“In the intervening time, please keep vigilant towards phishing and account takeover makes an attempt,” Sign added. “Do not forget that nobody from Sign Help will ever ship you a message request or ask to your registration verification code or Sign PIN.”
A Sign assist doc additionally notes: “We don’t provoke contact through in-app messages, telephone calls, SMS, or social media. We talk solely through electronic mail with our official @sign.org handles.”
About Our Skilled
Michael Kan
Principal Reporter
Expertise
I have been a journalist for over 15 years. I bought my begin as a colleges and cities reporter in Kansas Metropolis and joined PCMag in 2017, the place I cowl satellite tv for pc web companies, cybersecurity, PC {hardware}, and extra. I am presently primarily based in San Francisco, however beforehand spent over 5 years in China, protecting the nation’s expertise sector.
Since 2020, I’ve lined the launch and explosive development of SpaceX’s Starlink satellite tv for pc web service, writing 600+ tales on availability and have launches, but in addition the regulatory battles over the growth of satellite tv for pc constellations, fights with rival suppliers like AST SpaceMobile and Amazon, and the trouble to broaden into satellite-based cellular service. I’ve combed by way of FCC filings for the newest information and pushed to distant corners of California to check Starlink’s mobile service.
I additionally cowl cyber threats, from ransomware gangs to the emergence of AI-based malware. In 2024 and 2025, the FTC compelled Avast to pay customers $16.5 million for secretly harvesting and promoting their private info to third-party shoppers, as revealed in my joint investigation with Motherboard.
I additionally cowl the PC graphics card market. Pandemic-era shortages led me to camp out in entrance of a Finest Purchase to get an RTX 3000. I am now following how the AI-driven reminiscence scarcity is impacting all the shopper electronics market. I am all the time wanting to study extra, so please soar within the feedback with suggestions and ship me suggestions.
Learn Full Bio
