
AIVD
Dutch General Intelligence and Security Service, which co-issued the joint advisory warning of state-linked QR-code attacks on Signal and WhatsApp.
Last refreshed: 17 April 2026 · Appears in 1 active topic
Why are Dutch and UK intelligence agencies jointly warning about Signal QR codes?
Timeline for AIVD
Signed 16-agency joint advisory on China-nexus covert networks
Cybersecurity: Threats and Defences: Sixteen agencies put IOC extinction in printMentioned in: NCSC ships SilentGlass, its first commercial product
Cybersecurity: Threats and DefencesCo-issued advisory with NCSC on 9 March and 31 March 2026 on state-linked targeting of Signal and WhatsApp accounts
Cybersecurity: Threats and Defences: Signal, WhatsApp hit by three statesWhy did Dutch intelligence warn about Signal attacks?
What is the AIVD?
Background
AIVD co-issued a joint advisory with the UK NCSC on 9 March 2026 warning that state-linked actors, including Russia's FSB Star Blizzard, China's APT31 and Iran's IRGC, are using malicious QR codes and contact impersonation to compromise Signal, WhatsApp and Facebook Messenger accounts of politicians, journalists, academics and lawyers. Both agencies recommended passkeys and a device audit as mitigations.
AIVD, the Algemene Inlichtingen- en Veiligheidsdienst, is the Netherlands' domestic intelligence and security service responsible for counterintelligence, counterterrorism and cyber threat assessment. It publishes threat advisories in coordination with European and Five Eyes partners and has been particularly active on Russian and Chinese state actor attribution in recent years.
The joint NCSC-AIVD advisory is notable as a coordinated European counterintelligence response to a cross-border messaging-platform campaign rather than a national-level advisory. For Dutch and UK civil-society targets in the advisory's scope, the message from both agencies is that passkey adoption is now a state-security recommendation, not a convenience feature.