Hacker Gains Access to US Government Data Through TeleMessage App Vulnerability
A recent security breach has exposed significant vulnerabilities in TeleMessage, a messaging app used by some US government officials, including members of the Trump administration.
The hacker, who remains unidentified, managed to infiltrate the app's backend, obtaining sensitive data and raising serious concerns about the security of communications within the government.
Following the cyber incident, US Customs and Border Protection (CBP) immediately took the precaution of disabling TeleMessage, and an investigation into the extent of the breach is currently underway.
TeleMessage App Used for Archiving Government Communications Hacked
TeleMessage, developed by Israeli company Smarsh, is widely used by US government employees, particularly for the purpose of archiving encrypted messages.
The app is a modified version of Signal, designed to comply with retention policies.
It is an essential tool for ensuring that government communications, including those of top officials, are stored for record-keeping purposes.
However, this archiving function could become a security liability when not handled with the utmost care.
How Did the Hack Occur?
The breach occurred when the hacker exploited a vulnerability in the backend of TeleMessage’s system.
The attack, which took just 15 to 20 minutes, allowed the hacker to access customer data.
This included sensitive details related to CBP employees, as well as information from prominent financial institutions such as the cryptocurrency exchange Coinbase.
A screenshot from the hacker showed access to a panel listing the names, phone numbers, and email addresses of several government employees. 
Sensitive Data at Risk: A Close Call for High-Ranking US Officials
While the breach did not specifically target messages from former National Security Adviser Michael Waltz, the hack exposed other sensitive communications involving government officials.
A screenshot revealed that the attacker had access to the personal details of hundreds of US government employees.
Although Waltz’s conversations were not directly accessed, the breach has brought attention to the potential risks facing high-ranking officials’ communications.
Earlier this year, Mike Waltz faced criticism after accidentally adding a journalist to a sensitive Signal group discussing US military operations in Yemen. 
This incident came to light following his removal from office.
Despite the app's vulnerabilities, the US government continues to rely on modified communication tools for archiving, leaving key questions about the balance between security and regulatory compliance. 
The Risks of Storing Decrypted Messages
Experts have raised concerns about TeleMessage's method of storing decrypted messages.
While this practice ensures compliance with retention rules, it also creates significant security risks.
If these messages are not securely managed, hackers can exploit this vulnerability, as seen in this incident.
The lack of robust security measures around message retention underscores the fragility of digital communication systems, especially when used for sensitive government matters.
Who Is Behind the Attack?
The hacker’s identity remains a mystery, and it is unclear whether this was an isolated incident or part of a larger coordinated attack.
The fact that the hack was accomplished with minimal effort has only heightened concerns about the security of messaging platforms used by government officials.
The data stolen, including personal contact details and communication records, could have serious implications if exploited.
As the investigation continues, this breach reveals the risks associated with using third-party communication tools for sensitive government operations.