German police investigate fake messages to politicians (CEFR Compare)

Apr 24, 2026, 15:38

German police investigate fake messages to politicians

Introduction

German police started an investigation. They look at fake messages on the Signal app. The messages try to get secret information. The targets are politicians, government workers, diplomats, and journalists. The police think it is spying.

Main Body

The investigation started in mid-April. The police did not give many details. But media reports say many politicians from different parties were attacked. Attackers hacked the Signal account of Julia Klöckner. She is the head of the German parliament. They tried to hack the Chancellor's account, but it did not work. The attack uses fake messages. The messages look like they come from Signal's support team. They ask for account information. The attackers do not use computer viruses. They use the app's own security features. They trick people to give them passwords. Once they get in, they can see chats, files, and photos. They can also pretend to be the user. German security agencies warned about this since early 2024. Who did it? Dutch intelligence said Russian state actors. German authorities did not name anyone, but they think Russia. Russia says it did not do it. A German lawmaker called the attack a 'wake-up call'. Another lawmaker worried about the safety of parliament communications. The government says it uses secure channels for important talks. This happens because Germany gives a lot of military help to Ukraine. German security services found Russian hackers before. They attacked internet routers and air traffic control. They also spread false information before the 2025 elections. Many people now use Signal instead of WhatsApp for privacy. This may give attackers more chances to attack.

Conclusion

The investigation continues. German authorities want to know how many people were affected and who did it. The attacks show that German political groups need to be careful about online safety.

Vocabulary Learning

attack (n.)

assault / an attempt to harm or get information攻擊

Example:The attack used fake messages to trick people.

investigation (n.)

inquiry / the act of finding out facts about something調查

Example:The police started an investigation into the fake messages.

messages (n.)

notes / pieces of information sent to someone訊息；信息

Example:The fake messages asked for account information.

politicians (n.)

lawmakers / people who work in government政治家；從政者

Example:Many politicians from different parties were attacked.

security (n.)

safety / protection from danger安全；保安

Example:German security agencies warned about this attack.

Sentence Learning

The investigation started in mid-April.

Time Marker: The phrase "in mid-April" tells us when the investigation started. It shows a specific time.時間標記：「in mid-April」告訴我們調查開始的時間。它顯示了一個具體的時間。

But media reports say many politicians from different parties were attacked.

Contrast Connector: The word "But" shows a contrast between the police not giving details and media reports saying something different.對比連接詞：「But」一詞顯示警方未提供細節與媒體報導說不同事情之間的對比。

They attacked internet routers and air traffic control.

Addition Connector: The word "and" connects two things the attackers did: attacking internet routers and air traffic control. It adds information.附加連接詞：「and」連接攻擊者所做的兩件事：攻擊互聯網路由器和空中交通管制。它增加了信息。

This happens because Germany gives a lot of military help to Ukraine.

Reason Connector: The word "because" gives the reason why this happens. It explains the cause.原因連接詞：「because」給出了這種情況發生的原因。它解釋了原因。

The messages look like they come from Signal's support team.

Prepositional Phrase: The phrase "from Signal's support team" tells us where the messages appear to come from. It gives location or source.介詞短語：「from Signal's support team」告訴我們這些消息看似來自哪裡。它提供了位置或來源。

German Federal Prosecutors Investigate Signal Phishing Campaign Targeting Politicians and Officials

Introduction

German federal prosecutors have started an investigation into a series of phishing attacks aimed at users of the Signal messaging app. The targets include high-ranking politicians, civil servants, diplomats, and journalists. The inquiry, announced on April 24, is based on initial suspicion of espionage.

Main Body

The investigation was launched by the German Federal Prosecutor's Office after reports of a coordinated phishing campaign. According to the prosecution service, the probe began in mid-April. The office did not give specific details about suspects or the full number of targets. However, media reports and statements from lawmakers show that the attacks have affected members of several political parties, including the Christian Democratic Union (CDU), the Social Democratic Party (SPD), and the Left Party (Die Linke). Notably, the Signal account of Bundestag President Julia Klöckner, a CDU member, was successfully hacked. An attempt to access the account of Chancellor Friedrich Merz was reportedly unsuccessful. The method of attack involves phishing messages that look like they come from Signal's support team, asking for sensitive account information. The attackers do not use malware or exploit technical weaknesses. Instead, they use the app's legitimate security features combined with social engineering to gain unauthorized access to individual and group chats, as well as contact lists. Once they have access, they can view shared files and photos and pretend to be the compromised user. The German domestic intelligence service (BfV) and the Federal Office for Information Security (BSI) have issued warnings about this campaign since early 2024. They note that it is still active and growing. Who is responsible for the attacks has been a topic of discussion. In March, Dutch intelligence services publicly identified Russian state actors as responsible. German authorities have not officially named a perpetrator, but suspicion has focused on Russia, which denies involvement. CDU lawmaker Marc Heinrichmann, who chairs the parliamentary committee overseeing intelligence services, described the phishing attempt as a 'wake-up call' and emphasized the need for alertness. Another CDU parliamentarian, Konstantin von Notz, expressed concern that the scale of the attacks raises questions about the security of parliamentary communications. The German government has stated that communications among the chancellor, ministers, and government officials are conducted via secure channels. This campaign takes place against a background of increased cyber and espionage activities targeting Germany, which has been a major military aid provider to Ukraine since Russia's full-scale invasion in 2022. German security services have previously accused hackers linked to Russian military intelligence of infiltrating internet routers and targeting air traffic control systems, as well as spreading disinformation ahead of the 2025 federal elections. The shift of many users from WhatsApp to Signal, driven by privacy concerns, may have expanded the potential attack surface.

Conclusion

The investigation into the Signal phishing campaign is ongoing. German authorities are working to determine the full extent of the compromise and identify those responsible. The incident highlights the persistent cybersecurity challenges facing German political and governmental institutions amid increased political tensions.

Vocabulary Learning

alertness (n.)

the state of being watchful and ready to respond警覺性

Example:The lawmaker emphasized the need for alertness.

espionage (n.)

the practice of spying or using spies to obtain secret information間諜活動

Example:The inquiry is based on initial suspicion of espionage.

infiltrate (v.)

to secretly enter or gain access to a place or system滲透

Example:German security services have accused hackers of infiltrating internet routers.

phishing (n.)

a fraudulent attempt to obtain sensitive information by disguising as a trustworthy entity網絡釣魚

Example:The attackers used phishing messages that look like they come from Signal's support team.

unauthorized (adj.)

not having official permission未經授權的

Example:They used social engineering to gain unauthorized access to individual and group chats.

Sentence Learning

The investigation was launched by the German Federal Prosecutor's Office after reports of a coordinated phishing campaign.

Passive Voice: The subject (investigation) receives the action (was launched) by the agent (German Federal Prosecutor's Office). Used to emphasize the action or when the agent is less important.被動語態：主語（調查）接受動作（被啟動），由施動者（德國聯邦檢察院）執行。用於強調動作或施動者不重要時。

The Signal account of Bundestag President Julia Klöckner, a CDU member, was successfully hacked.

Passive Voice with past tense: 'was successfully hacked' indicates the account was the target of hacking. The agent is omitted.被動語態過去式：'was successfully hacked' 表示帳戶被黑客攻擊，施動者省略。

The method of attack involves phishing messages that look like they come from Signal's support team, asking for sensitive account information.

Defining Relative Clause with 'that': 'that look like they come from Signal's support team' specifies which phishing messages. It is essential to identify the noun.限定性關係從句用'that'：'that look like they come from Signal's support team' 具體說明是哪種釣魚信息，對名詞起限定作用。

CDU lawmaker Marc Heinrichmann, who chairs the parliamentary committee overseeing intelligence services, described the phishing attempt as a 'wake-up call'.

Non-defining Relative Clause with 'who': 'who chairs the parliamentary committee...' adds extra information about Marc Heinrichmann. It is set off by commas.非限定性關係從句用'who'：'who chairs the parliamentary committee...' 提供關於 Marc Heinrichmann 的額外信息，用逗號分隔。

German authorities have not officially named a perpetrator, but suspicion has focused on Russia, which denies involvement.

Contrast using 'but': connects two contrasting ideas (not naming perpetrator vs suspicion on Russia). Also includes a relative clause 'which denies involvement'.用'but'表示對比：連接兩個對比的想法（未指名嫌疑人 vs 懷疑俄羅斯）。同時包含關係從句'which denies involvement'。

German Federal Prosecutors Investigate Signal Phishing Campaign Targeting Politicians and Officials

Introduction

German federal prosecutors have initiated an investigation into a series of phishing attacks directed at users of the Signal messaging application, with high-ranking politicians, civil servants, diplomats, and journalists among the targets. The inquiry, announced on April 24, is based on preliminary suspicion of espionage.

Main Body

The investigation was launched by the German Federal Prosecutor's Office following reports of a coordinated phishing campaign. According to statements from the prosecution service, the probe began in mid-April. The office declined to provide specific details regarding suspects or the full extent of the targets. However, media reports and statements from lawmakers indicate that the attacks have affected members of several political parties, including the Christian Democratic Union (CDU), the Social Democratic Party (SPD), and the Left Party (Die Linke). Notably, the Signal account of Bundestag President Julia Klöckner, a CDU member, was successfully compromised. An attempt to access the account of Chancellor Friedrich Merz was reportedly unsuccessful. The method of attack involves phishing messages that appear to originate from Signal's support team, requesting sensitive account information. The attackers do not employ malware or exploit technical vulnerabilities; instead, they leverage the application's legitimate security features combined with social engineering to gain unauthorized access to individual and group chats, as well as contact lists. Once access is obtained, the perpetrators can view shared files and photos and impersonate the compromised user. The German domestic intelligence service (BfV) and the Federal Office for Information Security (BSI) have issued warnings about this campaign since early 2024, noting that it remains active and is gaining momentum. Attribution of the attacks has been a subject of discussion. Dutch intelligence services publicly identified Russian state actors as responsible in March. German authorities have not officially named a perpetrator, but suspicion has focused on Russia, which denies involvement. CDU lawmaker Marc Heinrichmann, who chairs the parliamentary committee overseeing intelligence services, described the phishing attempt as a "wake-up call" and emphasized the need for vigilance. Another CDU parliamentarian, Konstantin von Notz, expressed concern that the scale of the attacks raises questions about the integrity of parliamentary communications. The German government has stated that communications among the chancellor, ministers, and government officials are conducted via secure channels. The campaign occurs against a backdrop of increased cyber and espionage activities targeting Germany, which has been a major military aid provider to Ukraine since Russia's full-scale invasion in 2022. German security services have previously accused hackers linked to Russian military intelligence of infiltrating internet routers and targeting air traffic control systems, as well as spreading disinformation ahead of the 2025 federal elections. The shift of many users from WhatsApp to Signal, driven by privacy concerns, may have expanded the potential attack surface.

Conclusion

The investigation into the Signal phishing campaign is ongoing, with German authorities working to determine the full scope of the compromise and identify those responsible. The incident underscores persistent cybersecurity challenges facing German political and governmental institutions amid heightened geopolitical tensions.

Vocabulary Learning

attribution (n.)

the action of regarding something as being caused by a particular person or thing歸因；歸責

Example:Attribution of the attacks has been a subject of discussion.

compromise (v.)

to cause something to be vulnerable or to have its security breached入侵；攻破

Example:The Signal account of Bundestag President Julia Klöckner was successfully compromised.

espionage (n.)

the practice of spying or using spies to obtain secret information間諜活動

Example:The investigation was based on preliminary suspicion of espionage.

impersonate (v.)

to pretend to be another person for fraudulent purposes冒充；假冒

Example:Once access is obtained, the perpetrators can impersonate the compromised user.

leverage (v.)

to use something to maximum advantage, especially for a purpose利用；借助

Example:The attackers leverage the application's legitimate security features combined with social engineering.

Sentence Learning

The attackers do not employ malware or exploit technical vulnerabilities; instead, they leverage the application's legitimate security features combined with social engineering to gain unauthorized access to individual and group chats, as well as contact lists.

Semicolon and Parallel Structure: This sentence uses a semicolon to contrast two independent clauses, creating a balanced rhetorical effect. The second clause employs parallel verb phrases ('leverage... combined... to gain') and a complex noun phrase ('the application's legitimate security features combined with social engineering') to express a multi-step attack method.分號與平行結構：此句使用分號對比兩個獨立子句，營造平衡的修辭效果。第二子句運用平行動詞短語（「利用……結合……以獲取」）及複雜名詞短語（「應用程式的合法安全功能結合社交工程」）來表達多步驟的攻擊手法。

The German domestic intelligence service (BfV) and the Federal Office for Information Security (BSI) have issued warnings about this campaign since early 2024, noting that it remains active and is gaining momentum.

Participial Phrase: The sentence ends with a participial phrase ('noting that...') that provides additional information about the warning. This structure allows the writer to pack a subordinate clause into a compact, non-finite form, enhancing lexical density.分詞短語：句子以分詞短語（「指出……仍然活躍且正在增強」）結尾，提供關於警告的額外資訊。此結構讓作者將從屬子句壓縮成非限定形式，提升詞彙密度。

German authorities have not officially named a perpetrator, but suspicion has focused on Russia, which denies involvement.

Non-restrictive Relative Clause: The relative clause 'which denies involvement' is non-restrictive (set off by a comma) and adds extra information about Russia. This structure is typical of formal writing, allowing the author to insert commentary without disrupting the main clause.非限制性關係子句：關係子句「俄羅斯否認參與」是非限制性的（以逗號分隔），補充關於俄羅斯的額外資訊。此結構常見於正式寫作，讓作者在不打斷主要子句的情況下插入評論。

The campaign occurs against a backdrop of increased cyber and espionage activities targeting Germany, which has been a major military aid provider to Ukraine since Russia's full-scale invasion in 2022.

Relative Clause and Participial Phrase: The sentence contains a participial phrase ('targeting Germany') modifying 'activities', and a non-restrictive relative clause ('which has been...') modifying 'Germany'. This layering of modifiers creates a dense, information-rich structure typical of C2-level writing.關係子句與分詞短語：此句包含修飾「活動」的分詞短語（「針對德國」）以及修飾「德國」的非限制性關係子句（「自2022年俄羅斯全面入侵以來一直是……的主要軍事援助提供者」）。這種修飾語的層疊創造出資訊密集的結構，是C2等級寫作的典型特徵。

The investigation into the Signal phishing campaign is ongoing, with German authorities working to determine the full scope of the compromise and identify those responsible.

Absolute Construction with 'with': The phrase 'with German authorities working...' is an absolute construction that provides a concurrent circumstance. It uses a present participle ('working') and parallel infinitive phrases ('to determine... and identify...'), adding complexity without a finite verb.帶有「with」的絕對結構：短語「德國當局正在努力確定……並找出……」是絕對結構，提供同時發生的情況。它使用現在分詞（「努力」）和平行不定式短語（「確定……並找出……」），在無需限定動詞的情況下增加複雜性。