TeleMessage: Customized Signal Clone for U.S. Officials Compromised

A hacker exploited a vulnerability in TeleMessage, a service recognized for its customized versions of encrypted messaging applications like Signal, Telegram, and WhatsApp. This breach allowed unauthorized access to stored messages and data from U.S. officials and organizations using their platform, as reported by 404 Media.

TeleMessage gained attention recently when it was revealed that former U.S. National Security Adviser Mike Waltz was utilizing a special version of Signal provided by the company. Based in Israel and owned by Smarsh, TeleMessage specializes in archiving communications, including voice messages, from various encrypted messaging services.

Although 404 Media noted that the messages from cabinet officials and Waltz were encrypted, the compromised data still contained message content, contact information for government officials, backend access credentials for TeleMessage, and other sensitive data. The hacker accessed information related to U.S. Customs and Border Protection, the cryptocurrency platform Coinbase, and financial institutions like Scotiabank, as highlighted in the report.

This incident underscored that the archived chat logs lack end-to-end encryption safeguards between TeleMessage’s modified version of Signal and the ultimate storage location of the messages, according to 404 Media.

Smarsh, Signal, U.S. Customs and Border Protection, Coinbase, and Scotiabank have yet to provide a response to requests for comment.