TeleMessage, a modified Signal clone used by US government officials, has been hacked

In a shocking development, a hacker has managed to exploit a vulnerability in TeleMessage, a service that provides modded versions of encrypted messaging apps such as Signal, Telegram, and WhatsApp. The hack has exposed sensitive information about U.S. government officials, companies, and even financial institutions.

A vulnerability was exploited by a hacker

According to 404 Media, the hacking incident involved TeleMessage's modified version of Signal, which is used by various high-profile individuals, including former U.S. national security adviser Mike Waltz. The hacked data includes contents of messages, contact information of government officials, back-end login credentials for TeleMessage, and more.

Arched chat logs are not end-to-end encrypted

The hack revealed that the archived chat logs are not end-to-end encrypted between the modded version of Signal that TeleMessage offers and the ultimate location where it stores the messages. This means that even if a hacker managed to access the data, they would still need to obtain the decryption key to read the original messages.

Affecting multiple companies and individuals

The hacked data contained information about U.S. Customs and Border Protection, crypto exchange Coinbase, and financial service providers like Scotiabank. The incident highlights the risks associated with using third-party services for secure communication.

Smarsh responds to the incident

Smarsh, the company that owns TeleMessage, has suspended its services in response to the hacking incident. In a statement, Smarsh said it is investigating "a potential security incident" and engaging an external cybersecurity firm to support their investigation.

"We acted quickly to contain it and engaged an external cybersecurity firm to support our investigation," read the statement. "Out of an abundance of caution, all TeleMessage services have been temporarily suspended. All other Smarsh products and services remain fully operational."

Coinbase responds to the incident

Coinbase, which was affected by the hack, has stated that there is no evidence any sensitive customer information was accessed or that any customer accounts are at risk.

"At this time, there is no evidence any sensitive Coinbase customer information was accessed or that any customer accounts are at risk, since Coinbase does not use this tool to share passwords, seed phrases, or other data needed to access accounts," said a Coinbase spokesperson.

Signal, U.S. Customs and Border Protection, and Scotiabank did not respond to requests for comment

As of press time, Signal, U.S. Customs and Border Protection, and Scotiabank had not returned requests for comment on the incident.

A lesson in cybersecurity

This hacking incident highlights the importance of robust cybersecurity measures and the need for users to be cautious when using third-party services for secure communication. As our digital lives become increasingly dependent on these services, it is crucial that we prioritize security and take steps to protect ourselves from such incidents.

In light of this incident, users should be aware of the potential risks associated with using TeleMessage or similar services and take necessary precautions to ensure their data remains secure.