Home Russian Hackers Breach Thousands of Signal Accounts
A detailed photograph of the official gold metallic seal of the U.S. Federal Bureau of Investigation (FBI) mounted on the dark, polished stone facade of a building in Washington, D.C.

Russian Hackers Breach Thousands of Signal Accounts

22.03.2026
Share:

Russian intelligence-linked hackers have launched a massive attack against Signal messenger users. The actors gained unauthorized access to thousands of accounts worldwide. The campaign specifically targets individuals of high intelligence value, including government officials, political figures, military personnel, and journalists.

A close-up shot of a smartphone screen displaying the blue Signal app icon with a white chat bubble and a single unread message notification. Part of the WhatsApp and Facebook icons are also visible against a black background.
The Signal messenger icon on a smartphone (illustrative photo) / Open sources

Reuters reported this development, citing a joint statement from the FBI and the Cybersecurity and Infrastructure Security Agency (CISA). Authorities state that Russian intelligence services intentionally targeted users of commercial messaging applications. The list of victims includes current and former U.S. government officials and other individuals whose data is of high value to the Kremlin.

FBI Director Kash Patel highlighted the severity of the threat in his post on X:

“The FBI has identified cyber actors associated with Russian Intelligence Services targeting users of commercial messaging applications, including Signal. The campaign targets individuals of high intelligence value, including current and former U.S. government officials, military personnel, political figures, and journalists. Globally, this effort has resulted in unauthorized access to thousands of individual accounts. It’s important for you to be aware and take action – this vulnerability is not with the application – but you as the end user.”

Attack Methods and Data Protection

Experts emphasize that Signal’s encryption remains unbroken. Instead, hackers utilized sophisticated phishing schemes and social engineering. The attackers frequently posed as security officials to deceive targets. They manipulated users into sharing their verification codes to bypass security measures. Once inside, the actors could view private messages, access contact lists, and impersonate victims to spread further phishing links.

Dutch intelligence services previously reported similar Russian activity earlier this month. They identified a global campaign targeting both Signal and WhatsApp accounts of government officials. Signal confirmed that its core infrastructure remains secure. The company noted that these attacks rely entirely on misleading the end user. The Trump administration has integrated the response to these threats into its comprehensive national cybersecurity initiative.

Previously, The Ukrainian Review reported that a Russian military court illegally sentenced Ukrainian teenagers from occupied Melitopol on “terrorism” charges.

Author: Diana Slobodian | View all publications by the author

#cybersecurity #Russian aggression #Russian attack #USA