German authorities suspect Russian involvement in a large-scale phishing campaign that compromised at least 300 Signal accounts belonging to Bundestag deputies and government officials, including the speaker of parliament and three federal ministers. The breach emerged on 25 April, with prosecutors confirming they had opened an investigation without disclosing specific details.
Phishing campaign targeted high-profile figures
According to reports, the attackers impersonated Signal support staff to trick victims into revealing account credentials, thereby gaining access to private chats and contact networks. Among those targeted were Bundestag President Julia Klöckner, Education Minister Karin Prien, and Housing Minister Verena Hubertz. The method relies on human error rather than technical vulnerabilities, reflecting a shift toward psychological manipulation in state-sponsored cyber operations.
Moscow accused of systematic cyber espionage
Berlin has long faced persistent cyberattacks attributed to Russian state-backed groups, and the intensity has increased since the full-scale invasion of Ukraine. By infiltrating the personal devices of politicians, journalists, and military personnel, Moscow can collect intelligence on decision-making, identify influence channels, and potentially blackmail or recruit targets. The latest operation fits into a broader strategy of hybrid warfare aimed at undermining European cohesion and monitoring Western support for Kyiv.
Risks for British and European security
For UK readers, the breach underscores the vulnerability of encrypted messaging platforms when human factors are exploited. British officials and journalists who communicate via Signal face similar risks from Russian phishing campaigns. Any exposure of internal discussions within EU or NATO circles could weaken the alliance’s response to crises affecting UK interests, from Ukraine to energy security. The incident also raises concerns that stolen data might fuel disinformation campaigns designed to amplify political splits in Europe.
Strengthening defences against state-backed attacks
In response, Germany and its partners are urged to enhance cybersecurity protocols for public officials, invest in advanced threat detection, and enforce stricter legal consequences for cyberattacks. Closer coordination within the EU and NATO, combined with regular phishing awareness training, is seen as essential to counter the evolving tactics of hostile states. Without such measures, the integrity of sensitive communications across Western governments remains at risk.
