Breach Roundup: Russian State Actors Target Signal, WhatsApp

Also, More ClickFix Attacks and Teen Booters Arrested in Poland Pooja Tikekar (@PoojaTikekar) • March 12, 2026

Every week, Information Security Media Group rounds up cybersecurity incidents and breaches around the world. This week, Russian state hackers targeted Signal and WhatsApp users in a social engineering campaign, criminals impersonated U.S. city officials in permit-fee phishing scams and attackers used ClickFix tactics on compromised WordPress sites. Microsoft patched more than 80 vulnerabilities, researchers uncovered a botnet hijacking 14,000 routers for a proxy network. Polish police detained teenagers linked to DDoS-for-hire tools and Finnish intelligence warned of growing espionage by Russia and China. Also, North Korea coders for hire, openly this time.

See Also: Why HSMs Are Critical to Digital Asset Security

Russian nation-state hackers are running a global cyber campaign aimed at hijacking Signal and WhatsApp accounts used by government officials, military personnel and other high-value targets ...