Russian state-linked hacking groups have exploited Signal’s “linked devices” feature to access sensitive communications of Ukrainian military personnel, according to a Google report. Groups like Sandworm and UNC4221 have used captured devices and malicious QR codes to intercept messages. While Signal’s encryption remains secure, the feature allowing multiple device logins has been abused. Signal has responded by enhancing user interface and adding authentication steps. Google warns similar tactics could be used beyond Ukraine. — news from POLITICO Europe
