Berlin Opens Espionage Probe into Russia-Linked Signal Phishing of 300 German Officials

The episode echoes the May 2015 Bundestag breach—also traced to GRU unit APT28—when 16 GB of parliamentary emails were exfiltrated, underscoring that Berlin has been a preferred Russian cyber target since at least the Cold War’s “Rome-Moscow Line” wiretaps of the 1980s. What changed this time is the attack vector: rather than breaking encryption, the actor weaponised social engineering against an app explicitly adopted as a WhatsApp alternative after Meta’s 2021 metadata policy shift. The incident spotlights two structural trends: (1) the growing mismatch between strong cryptography and the soft underbelly of user behaviour; (2) the ratcheting cyber confrontation between Russia and the EU that accelerated after the 2022 invasion of Ukraine and Germany’s 2024 decision to surpass the U.S. in military aid to Kyiv. On a century horizon, it marks another step in the perennial contest between secure communication tech and state interception—much like the 1940 cracking of Enigma or the 1970s SIGINT race—signalling that even end-to-end systems can be neutralised by targeting the human node, a vulnerability unlikely to disappear in the next hundred years.