Exclusive: Hacker who breached communications app used by Trump aide stole data from across US government
A shocking revelation has emerged about a cyber attack on a popular messaging platform, TeleMessage, which is widely used by top officials in the US government. The breach, discovered earlier this month, exposed sensitive information and conversations of at least 60 unique government users, including disaster responders, customs officials, diplomatic staffers, and White House staff members.
According to Reuters, the hacker who breached TeleMessage's security, a nonprofit group called Distributed Denial of Secrets (DDS), has made available a cache of leaked data that includes messages from various government agencies. The messages were intercepted over a roughly day-long period ending on May 4, and many of them were fragmentary.
One of the most concerning aspects of this breach is that it potentially exposed more than just sensitive information but also metadata – the who, when, and where of the conversations and chat groups. This wealth of data can pose a significant counterintelligence risk, according to Jake Williams, a former National Security Agency cyber specialist.
"Even if you don't have the content, that is a top-tier intelligence access," said Williams, now vice president of research and development at cybersecurity firm Hunter Strategy. "The fact that this data was exposed highlights the vulnerability of our national security systems."
The impact of the breach
The breach has drawn questions about data security in the Trump administration, with some lawmakers expressing concern about the potential risks posed by TeleMessage's use.
Among those affected by the breach are White House staff members and Secret Service agents. The Federal Emergency Management Agency (FEMA) confirmed that its information had not been compromised, but did not respond to further questions.
The role of the White House
The White House has acknowledged the breach but has been tight-lipped about the extent of TeleMessage's use by administration officials. When questioned about Waltz's prior use of Signal during a cabinet meeting, the White House said that it was "aware of the cyber security incident at Smarsh" but did not offer further details.
Mike Waltz, the former national security adviser to President Trump, has faced scrutiny for his use of Signal and TeleMessage. His accidental addition of a prominent journalist to a Signal chat sparked controversy and led to his ouster from his job.
The investigation
The Secret Service has launched an investigation into the breach, which they say affects "a small subset" of employees who used TeleMessage products. FEMA said it had "no evidence" that its information was compromised.
The State Department and the Centers for Disease Control (CDC) have also been affected by the breach, with CDC officials admitting that they had piloted TeleMessage's software in 2024 but found it did not meet their needs.
What's next?
The investigation into the breach is ongoing, with many questions still unanswered. As one former NSA cyber specialist noted, "The fact that this data was exposed highlights the vulnerability of our national security systems."
The incident serves as a reminder of the importance of robust cybersecurity measures in protecting sensitive information and conversations of government officials.