US Offers $10 Million for Info on Russian Hacking Group

The United States Department of State announced a reward of up to $10 million for information that could identify or locate a Russian state-sponsored cyber group responsible for compromising thousands of Signal and WhatsApp accounts. This group has specifically targeted investigative reporters and US government employees. The cyber operations have been ongoing since at least March, as detailed in an FBI advisory issued that month. The advisory warned of persistent phishing campaigns aimed at high-value targets by attackers linked to Russian intelligence services.

The modus operandi involves sending messages that impersonate automated support communications. These messages prompt users to click on malicious links or provide sensitive information such as verification codes or account passcodes. If a user falls victim to these phishing attempts, their device is unknowingly linked to the attacker's, or their account is completely taken over, resulting in the user being locked out. The FBI's advisory highlighted the sophisticated nature of these attacks, designed to gain unauthorized access to secure communication platforms.

This significant reward underscores the US government's commitment to combating state-sponsored cyber threats and protecting critical infrastructure and personnel. The targeting of journalists and government employees suggests an intent to disrupt investigative journalism and potentially gain intelligence. The Department of State's Bureau of Cyberspace and Digital Policy is leading the effort to gather intelligence on this specific threat actor, aiming to disrupt their operations and hold them accountable. The ongoing nature of these attacks necessitates a proactive approach, with the reward serving as a strong incentive for individuals with relevant knowledge to come forward.