According to reports, a hacker gained access to TeleMessage's backend, compromising sensitive data belonging to government agencies and private companies. This data included usernames, passwords, and chat messages.
Tech News: A significant security breach has impacted the personal data of Mike Waltz, National Security Advisor to former US President Donald Trump. A messaging app used by Waltz, known as TeleMessage, was hacked. While the app resembles and functions similarly to Signal, it offers additional features such as chat recording and data archiving.
This breach not only jeopardizes Waltz's data but also raises concerns about the leakage of sensitive information belonging to US government agencies and several large corporations.
What is the TeleMessage app?
TeleMessage is a messaging app that operates with security and encryption comparable to Signal, but includes a key differentiator: it records and archives chats and messages. Primarily used by government agencies and corporations for securing sensitive data, its backend system was compromised by hackers. This incident raises serious questions about the security of both private and government data.
Was data leaked?
Reports indicate that hackers accessed TeleMessage's backend, obtaining usernames, passwords, and other sensitive information. Data from government agencies like Customs and Border Protection, and private companies such as Coinbase, was exposed. The hackers claimed the breach took only 15-20 minutes and required minimal effort. They also stated that they did not report the vulnerability to TeleMessage, alleging the company attempted to cover it up.
Impact on Mike Waltz and other officials
While Mike Waltz's messages were not directly compromised, some other users' chat data was leaked. The incident gained further attention after a photo emerged showing Waltz using the TeleMessage app during a cabinet meeting.
Subsequently, Mike Waltz was dismissed from his position. This event raises serious questions about his career, highlighting apparent negligence concerning the security of sensitive government information.
Questions raised about the security of Signal and other messaging apps
This incident also casts doubt on the security of apps modified to mimic popular services like Signal, WhatsApp, and Telegram. While offering recording capabilities, their security might be compromised. Experts warn that using such apps can lead to security vulnerabilities, as their archiving features make them easier targets for hackers. Following this incident, Signal explicitly stated that it cannot guarantee the security of these unofficial versions.
