On March 10, 2026, Dutch intelligence services – the General Intelligence and Security Service (AIVD) and the Military Intelligence and Security Service (MIVD) – issued a warning about a coordinated cyber campaign allegedly backed by Russian actors. The operation focuses on infiltrating accounts on the messaging platforms Signal and WhatsApp, with the primary targets being government officials, military personnel and journalists.
What the attack entails
The campaign is designed to compromise private communications that may contain sensitive information or strategic insights. According to Dutch sources, the attackers are not exploiting known software vulnerabilities but instead appear to be using sophisticated social‑engineering techniques and possibly zero‑day exploits in the apps’ encryption protocols.
Why Signal and WhatsApp?
Both platforms have become essential tools for real‑time coordination among political and military actors worldwide. By gaining access to these channels, the campaign could potentially provide Russian intelligence with a window into decision‑making processes and operational plans.
"The operation primarily focuses on government officials, military personnel, and journalists," stated an anonymous AIVD spokesperson.
International response
The Dutch warning has prompted several European governments to review their own cybersecurity posture regarding encrypted messaging. While no confirmed breaches have been reported in the United Kingdom or Germany as of this writing, analysts advise that all officials and journalists exercise heightened vigilance when using these platforms.