FR|EN
Tech essential, everyday
FR|EN
CybersecurityJune 28, 2026· via The Hacker News

Russian Spies Trick Targets with Fake Support Texts in Ukraine

Russian Spies Trick Targets with Fake Support Texts in Ukraine

Image : The Hacker News

Ukrainian and U.S. authorities have exposed a long-running cyber campaign in which Russian intelligence services allegedly sent fake support messages to steal login credentials for messaging accounts used by officials, military personnel, politicians, and activists across Ukraine, Europe, and the United States.

In a coordinated announcement, the Security Service of Ukraine (SSU) and the U.S. Federal Bureau of Investigation (FBI) described a systematic operation designed to infiltrate secure communications. The attackers posed as technical support agents, offering assistance to targets who may have been experiencing issues with their messaging platforms. Instead of resolving problems, the fake support texts were crafted to harvest usernames, passwords, and possibly multi-factor authentication codes, granting unauthorized access to sensitive conversations.

How the Operation Worked

According to the SSU, the campaign relied on social engineering tactics, exploiting the trust individuals place in official-looking communications. Targets received messages that appeared to come from legitimate support teams, often referencing recent service updates or known issues. Once credentials were entered on spoofed login pages, the stolen data was immediately relayed to servers controlled by the attackers. The operation reportedly spanned several years, indicating a sustained effort to maintain persistent access to compromised accounts.

Broader Implications for Digital Security

This incident highlights the growing sophistication of state-sponsored cyber operations and the persistent threat posed to digital communications in conflict zones and beyond. While the primary focus has been on government and military targets, the use of deceptive support tactics suggests that similar campaigns could be directed at private individuals or corporate users. Security experts recommend heightened vigilance, especially when receiving unsolicited technical support messages, and the use of hardware-based authentication tokens as a more secure alternative to SMS-based verification.

Source: The Hacker News. AI-assisted editorial synthesis — TechnoExpress.

Read the original source on The Hacker News →

← Back to home