[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"focus:fbi-russian-hackers-now-target-signal-backup-recovery-keys-mqyc7psg":3},{"item":4},{"id":5,"title":6,"slug":7,"summary":8,"severity":9,"category":10,"cve_ids":11,"affected_products":12,"action_required":16,"article_ids":17,"ioc_summary":19,"source_urls":20,"status":22,"expires_at":23,"created_at":24,"updated_at":25,"articles":26},"e73ecc13-e75c-4c6a-af27-0d6489177c54","FBI: Russian hackers now target Signal backup recovery keys","fbi-russian-hackers-now-target-signal-backup-recovery-keys-mqyc7psg","Russian Intelligence Services are conducting a phishing campaign targeting Signal users to steal Backup Recovery Keys, which would allow attackers to decrypt historical messages. This targets high-value individuals and represents a shift from account hijacking to direct message access. If successful, attackers gain persistent access to sensitive communications without breaking Signal's encryption.","high","advisory",[],[13,14,15],"Signal","FBI","CISA","Hunt for phishing emails targeting your org's users with Signal-related lures. Review email logs for Signal backup\u002Frecovery key themes. Instruct users to enable registration lock in Signal settings and never share recovery keys via email or messaging. Report suspected phishing attempts to FBI\u002FCISA.",[18],"37659f6b-97ac-4c3c-813f-2de420a89c10",null,[21],"https:\u002F\u002Fwww.bleepingcomputer.com\u002Fnews\u002Fsecurity\u002Ffbi-russian-hackers-now-target-signal-backup-recovery-keys\u002F","archived","2026-06-30T22:05:13.183+00:00","2026-06-28T22:05:16.327413+00:00","2026-06-30T22:05:37.727409+00:00",[27],{"id":18,"title":6,"url":21}]