Signal became the target of Russian cyber espionage activities, where attackers exploited a feature allowing users to join groups via a QR code scan. Hackers sent phishing messages mimicking legitimate group invites but embedded with malicious JavaScript, which when scanned, linked victims' devices to the attackers', compromising message privacy. While Signal reacted promptly with a security update, the incident highlighted vulnerabilities in encrypted communication platforms that are widely used, including by Ukrainian military personnel. This type of social engineering enables attackers to surreptitiously monitor real-time message flows, presenting a significant breach of confidentiality and security.
Source: https://www.wired.com/story/russia-signal-qr-code-phishing-attack/
"id": "sig001022525",
"linkid": "signal-peak-ventures",
"type": "Breach",
"date": "2/2025",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"