|In the largest known breach of the encrypted communications system, Iranian hackers managed to compromise over a dozen accounts on Telegram and identified the phone numbers of 15,000,000 Iranian users. The attacks on the popular instant messaging service, which took place in 2016 and have not been previously reported, effectively jeopardized the communications of activists, journalists and other people in sensitive positions in the country, where the service is used by nearly 20 million people.
The messenger calls itself an ultra-secure instant messaging system as it encrypts all data from start to finish, known as end-to-end encryption. The same is done by other messaging services, including Facebook’s WhatsApp.
Berlin-based Telegram accounts for 100m active subscribers and is widely used in the Middle East, Central and South-East Asia and Latin America. It turned out that its vulnerability lies in its use of SMS text messages to activate new devices. If you want to log on to the messenger from a new phone, it sends you authorization codes in SMS, which can be intercepted by the phone company and shared with the hackers. This enables them to add new devices to your Telegram account and read all messages, including chat histories.
In response, Telegram said that its users can defend against such attacks by not just relying on SMS verification, because Telegram allows to create passwords, which can be reset with “recovery” emails. In the meantime, Iranian officials denied government links to hacking in the past.
It is known that the hackers exploited a programming interface built into the app to identify 15 million Iranian phone numbers with Telegram accounts registered to them.
Friday, August 5th, 2016
|posted by (2016-08-08 13:24:25)|
|everything is hackable with right code using right exploit.. dear sam telegram used end to end encryption before WhatsApp and messenger.. every code has security flaws.. so don't take it seriously.||
Most Popular Stories