Telemedge App Security Breach Exposes Sensitive Communications
Telemedge, a government-sanctioned messaging application used by officials during the Trump administration, has reportedly exposed archived communications due to a modified version of the platform, as stated by 404 Media.
This app has adapted features from popular encrypted services like Signal, WhatsApp, and Telegram to meet federal archiving standards. It gained attention when former national security adviser Mike Waltz was seen using it in a cabinet meeting. This breach allowed attackers to access sensitive information from Customs Border Patrol (CBP), cryptocurrency exchange Coinbase, and lobbyists backing Senate legislation.
“I think the entire process took around 15 to 20 minutes,” the hacker mentioned to 404 Media, adding, “I barely tried… if I could find this within half an hour, it seems likely others could, too.”
Fortunately, the hackers did not gain access to messages from Cabinet members or Waltz himself. However, the compromised data included group chat discussions, direct messages, as well as personal phone numbers, email addresses, and internal credentials that had been deleted from Telemessage’s backend.
One notable conversation, associated with the Crypto Firm Galaxy Digital, highlighted a discussion about legislative support surrounding a cryptocurrency bill. This chat referenced Democrat Senators Angela Brooks and Kirsten Gillibrand.
The vulnerability, reportedly tied to an insecure Amazon Web Services Endpoint, appears to have compromised selected communications from various federal and financial organizations. One screenshot verified by 404 Media detailed nearly 750 names and contact information related to CBP. Another screenshot purportedly displayed metadata from Coinbase and Scotiabank, including contacts of current and former employees.
Telemessage, a subsidiary of U.S.-based Smarsch based in Israel, markets itself as a “secure and compliant messaging solution” for archiving encrypted communications. However, by implementing a third-party archiving server between senders and receivers, the app seems to have effectively removed the benefits of end-to-end encryption, which is a critical aspect of privacy. Following these media reports, TeleMessage’s website underwent scrubbing, and its archived state can still be checked.
This incident raises ongoing questions about Waltz, who made headlines recently for mistakenly including Atlantic editor-in-chief Jeffrey Goldberg in a Signal group chat discussing U.S. military operations in Yemen. The first photos of Waltz using the White House app were initially reported by Telemedge.
Neither Telemedge nor the White House responded promptly to inquiries from the Daily Caller News Foundation. Previously, Anna Kelly, deputy director of the White House, mentioned to NBC News that “Signal is an approved app for government use,” though she did not specify if modified versions like Telemessage fall under that approval.
