Hackers linked to the Kremlin have gained access to thousands of user accounts in popular commercial messengers, including Signal, which has long been considered the gold standard for secure communication. FBI Director Kash Patel reported that the campaign targeted individuals of “high intelligence value”: current and former U.S. officials, military personnel, politicians, and journalists.
According to Patel’s statement:
- Scale of Compromise: Attackers gained the ability to read private correspondence, view contact lists, and send messages on behalf of the account owners.
- Attack Method: The breaches were not due to flaws in the code of the apps themselves (Signal, Telegram, etc.), but through user manipulation and the infection of end-user devices (smartphones and PCs).
- Risks: Access to legitimate accounts allows Russian intelligence to conduct highly accurate phishing attacks by exploiting trust within tight professional circles.
The FBI Director emphasized that messenger security is powerless if the device itself is compromised or if a user’s digital hygiene is breached.
Analytical summary: The compromise of thousands of Signal accounts is a crushing blow to the cryptographic reputation that Western elites relied upon. For the global community, this signals that Russian cyber units have shifted from mass attacks to “surgical” infiltration of closed communication channels. The fact that the user, not the code, proved to be the vulnerability confirms that the human factor remains the primary “backdoor” in modern security architecture. For the U.S. and its allies, this marks the end of an era of blind trust in “out of the box” civilian messengers in the face of total state-sponsored cyberespionage.