The US is warning Signal and WhatsApp users about cybercriminals currently trying to install spyware – here’s what you need to know.
Spyware on WhatsApp and Signal
The warning for hackers who try to install spyware via WhatsApp and Signal comes from the American CISA (Cybersecurity & Infrastructure Security Agency). Several cybercriminals are actively using commercial spyware to attack Signal and WhatsApp users to gain access to the app. They can then install additional malware and gain access to the phone as well.
The hackers use phishing and QR codes to carry out these attacks. They try to get users to give the attackers’ devices access to their accounts. In addition, the attackers use so-called zeroclick exploits. In fact, no user interaction is required at all to access the chat apps and the phone. Finally, it also happens that hackers offer apps that pretend to be WhatsApp or Signal, but are not.
Not just in the US
The hackers currently seem to focus mainly on ‘valuable persons’, such as high-ranking government officials, soldiers and politicians, social organizations, but also individuals. Victims are not only in the United States, hackers have also struck in the Middle East and Europe with spyware via Signal and WhatsApp.
The Cybersecurity & Infrastructure Security Agency recommends that Signal and WhatsApp users use a previously issued document on mobile communications to take. It states, among other things, that iPhone owners should enable isolation mode and use iCloud Private Relay. Android users are advised, among other things, to enable Android Private DNS. Furthermore, the CISA advises against using SMS and users are wise to limit the permissions you give apps as much as possible.
Do you always want to stay informed about the dangers of spyware in chat apps such as Signal and WhatsApp? Then sign up for our newsletter!
Download the iPhoned app
