Attackers Are Targeting Encrypted Messaging Users to Steal Private Chat Archives Through Social Engineering
As an independent cybersecurity blogger and part-time penetration tester, one of the most persistent threats I observe across high-risk communities is the targeting of encrypted communication platforms, not by breaking the encryption itself, but by attacking the human holding the keys. A new and coordinated phishing campaign is now actively targeting users of a widely trusted encrypted messaging platform. Attackers are impersonating the platform's official support team and manipulating victims into surrendering the very keys that protect years of private communications. This is not a vulnerability in the platform's encryption. It is a deliberate, well-organised exploitation of human trust, and it is working. What Is Happening: Recovery Keys Targeted in a New Backup Theft Campaign The latest campaign represents a notable evolution in how attackers approach encrypted messaging platforms. Rather than attempting to hijack live accounts or intercept future messages, the threat...