Cybersecurity Breach of Telemedge Messaging Platform
Hackers targeted Telemedge, a messaging platform utilized by U.S. officials, leaking data from over 60 government users, including diplomats and disaster responders. While this incident raises significant cybersecurity concerns, no sensitive content has been confirmed as part of the breach.
Washington:
A recent review indicated that former Trump national security adviser Mike Waltz could access messages from American officials more extensively than initially reported. This revelation highlights persistent questions regarding data security during the Trump administration.
According to reports, a cache of leaked data consists of over 60 unique government users of the Telemedge platform, including information from disaster responders, customs officials, diplomatic staff, and even a White House employee. Messages reviewed spanned about a day, concluding on May 4th, with many being incomplete.
Media attention on Telemedge intensified after a Reuters report on April 30 showed it being discussed during a cabinet meeting. The platform appeared relatively obscure, known mostly within certain government and financial circles.
Though Reuters couldn’t verify all the contents of the leaked data, in several instances, the agency confirmed that the phone numbers matched their owners. One intercepted message from a Federal Emergency Management Agency (FEMA) applicant was verified, with others from financial services firms also confirmed as authentic.
Despite this, nothing overwhelmingly sensitive was identified. The chats didn’t seem to involve direct discussions by Waltz or other Cabinet members, but did hint at travel plans for government officials, including one group related to events in the Vatican and another discussing U.S. official visits to Jordan.
Requests for comments were sent to all identifiable individuals, with some confirming their identity, while most declined further engagement or referred to their institutions.
It remains unclear how Telemedge was employed within various agencies. The platform was designed to be integrated with popular apps while adhering to government regulations for archiving messages. However, it was taken offline on May 5 due to the surrounding scrutiny. The company behind Telemedge, Smarsh, has not commented on the data breach.
The White House acknowledged awareness of the incident involving Smarsh but offered no further details about the platform’s use. The State Department did not respond, and the Secret Service mentioned that Telemedge was utilized by a limited number of its employees. FEMA stated they found no evidence of a data breach but did not respond when contacted about an internal message. A Customs and Border Protection (CBP) spokesperson indicated ongoing investigations linked to the platform.
Concerns Over Metadata
Federal contract records reveal that the Centers for Disease Control and the Department of Homeland Security had entered into contracts with Telemedge in recent years. A CDC representative noted that they had piloted the software in 2024 to evaluate potential records management needs. However, the status of other contracts remains ambiguous. After the breach, the U.S. cybersecurity agency CISA advised users to refrain from using the product except for specific instructions regarding the Smarsh app.
Jake Williams, a former National Security Agency cyber specialist, emphasized that even without sensitive content, the metadata—leaked conversations and group chats—poses a significant intelligence risk. “Even if you don’t have content, it’s first-class intelligence access,” he stated.
Notably, Waltz’s previous usage of signals led to controversy when he inadvertently added prominent journalists to a discussion about Yemen air raids. Although he was removed from his position, he remained in the administration, with Trump nominating him as the next U.S. ambassador to the United Nations.
The details concerning Waltz’s involvement with Telemedge remain unclear, and neither he nor the White House have responded to inquiries regarding the situation.
