Hackers are targeting a bug previously mentioned in the Signal Clone App Telemessage app in an effort to steal private data from users, according to security researchers and a US government agency.
Telemessage, which was revealed earlier this year that it was used by high -ranking officials in Trump administration, has already experienced at least one data breach in May. The company markets Amended versions of Signal, WhatsApp and Telegram for companies and government services that must archive legal and compliance conversations.
On Thursday, Greynoise, a cyberspace company with visibility in what hackers do online thanks to its sensor network, Posted a post Warning that he has seen several attempts to exploit the defect in telemedicine, which was originally revealed in May.
If hackers are able to take advantage of vulnerability for their goals, they could have access to “usernames, passwords and other sensitive data”, according to the business.
“I stayed with disbelief in the simplicity of this exploitation”, Greynoise Researcher Howdy Fisher wrote in a post Analyzing the defect. “[A]Fter Some Digging, I found that many devices are still open and vulnerable to it. ”
According to the researcher, the exploitation of this defect is “insignificant”, and it seems that hackers have been aware.
Contact us
Do you have more information about these attacks? Or for the telemedicine? We would like to hear from you. From a device and non-work network, you can contact Lorenzo Franceschi-bicchierai safely on the mark on +1 917 257 1382, or through the telegram and keybase @lorenzofb or email.
At the beginning of July, the US -based Cisa US Security Organization reported the defect – officially defined as Cve-2025-48927 – In the list of well -known exploited vulnerabilities, a database that collects security errors that are known to have exploited from hackers.
In other words, Cisa says hackers successfully exploit this error. At this point, however, there have been no publicly reporting any halves against Telemessage customers.
In May, Telemessage, which at this point was a little known alternative to Signal, became a domestic name after the then National Security Advisor Mike Waltz accidentally revealed that he used the app. Waltz had previously added a journalist to a very sensitive group conversation with other Trump administration officials where the team discussed plans for bomberA security SNAFU business caused scandal leading to the disappearance of Waltz.
Since Telemessage was recognized as the Waltz application and others in the administration used to communicate, the company was hacked. Unknown attackers stole the contents of private messages and users’ conversations, including customs and border protection, as well as giant coinbase encryption, According to 404 mediawhich first mentioned hack.
Telemessage did not immediately respond to a request for comments.
