On Wednesday, Washington Post analyst Josh Rogin posted a screenshot of a new kind of attack against Signal users, where hackers pretend to be the app's support team and warn the target that their backed-up chats and media are 'at risk of permanent loss due to a sync issue.' To avoid that, the message said, the target needs to share the recovery key that is used to access their online backups in the chat with the hackers. 'This links your existing backup to your account. Failure to do this may result in losing access to your account and all stored data,' read the message purporting to come from an account called Signal Support. This is a phishing attempt. If you get this message on Signal, do not follow the instructions. Many anti-CCP activists have also received this phishing attempt. Beware and be aware. pic.twitter.com/8J1YDcpUAX Mohammed Al-Maskati', the director at Access Now's Digital Security Helpline, which investigates cyberattacks against journalists, dissidents, and human...
learn more
