{"rewrite":{"id":"r_84ac36e0e724d91b428add55","clusterId":"c_b0ed5ec015aacf1441df2c78","slug":"us-government-offers-10-million-bounty-for-russian-hackers-targeting-signal-and-whatsapp","model":"deepseek-v4-flash","headline":"US Government Offers $10 Million Bounty for Russian Hackers Targeting Signal and WhatsApp","summary":"The US government has announced a reward of up to $10 million for information leading to the identification of two Russian-linked hacking groups, UNC5792 and UNC4221, which compromised thousands of Signal and WhatsApp accounts by exploiting linked-device features and phishing for recovery keys. Targets included US and NATO officials, journalists, and NGOs supporting Ukraine.","whyItMatters":"The bounty signals the US government's assessment that Russian intelligence services are systematically exploiting standard features of encrypted messaging apps to surveil government personnel and allies, and that the threat is active and ongoing.","webCardHtml":"\u003cp\u003eThe US government is offering up to $10 million for information on two hacking groups tied to Russian intelligence that compromised thousands of Signal and WhatsApp accounts. The groups, designated UNC5792 and UNC4221, are linked to the FSB Border Guard Service and Russian military intelligence, respectively. They exploited Signal\u0026#39;s Linked Devices feature to sync messages without the user\u0026#39;s knowledge and used compromised accounts to launch further phishing attacks. In some cases, they tampered with Signal\u0026#39;s group invite page to redirect users to malicious URLs. Attackers also posed as official messages to trick victims into handing over recovery keys. Targets included US and NATO government officials, diplomats, defense personnel, journalists covering Russia and Ukraine, and NGOs supporting Ukraine.\u003c/p\u003e","blueskyPost":"UNC5792 and UNC4221 exploited Signal and WhatsApp's linked-device features, not zero-day flaws. The bounty targets the social engineering layer that messaging apps still leave exposed.","twitterPost":"UNC5792 and UNC4221 bypassed encryption by targeting linked-device features. The $10m bounty targets the method, not the code.","threadsPost":"UNC5792 and UNC4221 compromised Signal and WhatsApp accounts without breaking encryption. They used linked-device features and recovery key phishing. The $10 million bounty signals that the US government sees the social engineering layer, not the protocol, as the current vulnerability.","newsletterBlurb":"The US government has announced a $10 million reward for information on two Russian-linked hacking groups that compromised thousands of Signal and WhatsApp accounts. The groups exploited the apps' standard features to read messages and steal recovery keys, targeting US and NATO officials, journalists, and NGOs.","attributionJson":"[{\"source\":\"GIGAZINE\",\"url\":\"https://gigazine.net/news/20260630-rfj-signal-whatsapp/\",\"title\":\"US Government Offers $10 Million Bounty for Information on Groups Involved in Hacking Signal and WhatsApp\"}]","lintFlagsJson":null,"lintHits":0,"costUsd":0,"inputTokens":4154,"outputTokens":535,"status":"published","repairAttempts":0,"nextRepairAt":null,"factsAttemptedAt":1782791102,"createdAt":"2026-06-30T03:38:14.000Z","publishedAt":"2026-06-30T03:39:50.000Z","updatedAt":"2026-06-30T03:39:50.000Z"},"cluster":{"id":"c_b0ed5ec015aacf1441df2c78","canonicalTitle":"アメリカ政府がSignalとWhatsAppのハッキングに関与したグループの情報に1000万ドルの懸賞金をかける","representativeArticleId":"a_cee4376600b3a904ce06d20f","sourceCount":1,"writtenSourceCount":1,"writeAttempts":0,"isSolo":true,"entitiesJson":"{\"anime_titles\":[],\"manga_titles\":[],\"work_titles\":[],\"studios\":[],\"people\":[],\"type\":\"news\",\"domain\":\"other\",\"is_roundup\":false}","contentType":"news","status":"published","firstSeenAt":"2026-06-30T02:21:00.000Z","lastSeenAt":"2026-06-30T02:21:00.000Z","updatedAt":"2026-06-30T03:39:51.000Z"},"attribution":[{"source":"GIGAZINE","url":"https://gigazine.net/news/20260630-rfj-signal-whatsapp/","title":"アメリカ政府がSignalとWhatsAppのハッキングに関与したグループの情報に1000万ドルの懸賞金をかける"}],"entities":{"anime_titles":[],"manga_titles":[],"work_titles":[],"studios":[],"people":[],"type":"news","domain":"other","is_roundup":false},"keyFacts":["The US government is offering up to $10 million for information on two hacking groups tied to Russian intelligence.","The groups, UNC5792 and UNC4221, are linked to the FSB Border Guard Service and Russian military intelligence, respectively.","They exploited Signal's Linked Devices feature to sync messages without user knowledge and used compromised accounts for further phishing attacks.","Attackers tampered with Signal's group invite page to redirect users to malicious URLs and posed as official messages to trick victims into handing over recovery keys.","Targets included US and NATO officials, diplomats, defense personnel, journalists covering Russia and Ukraine, and NGOs supporting Ukraine."]}
