Telegram desktop app leaked user location during voice calls




oi-Vishal Kawadkar

Telegram is plagued by a major vulnerability.


Telegram has a reputation for high-end privacy and security, but that doesn’t make it immune to breaches. Security researcher Dhiraj Mishra discovered that the desktop version of Telegram leaked public and private IP addresses whenever users made voice calls to its peer-to-peer framework.

Telegram desktop app leaked user location during voice calls

While the mobile app offers the ability to disable peer-to-peer calls and keep information intact, the desktop version didn’t offer such a choice. Doing so could trick users into attacking or revealing their exact location.

Telegram fixed the issue in beta versions 1.3.17 and 1.4 by offering an option to either completely disable peer-to-peer calls or limit them to their contacts. Mishra received a bonus of € 2,000 (approximately $ 2,300) for the discovery.

Many applications in the past have suffered from such problems. In addition, mining for cryptocurrencies is a lucrative business. But why pay huge sums of money to buy this mining equipment when you can hijack other people’s cell phones and computers to do the same for you? This is what hackers do.

According to Malwarebytes, hackers have successfully breached the security barrier of millions of Android phones through a malicious ad redirect scam. The exact method is yet to be determined, but it appears that users downloaded the malicious apps that redirected them to a website.

The website directly stated that it was using the infected device to mine the cryptocurrency and would only stop if the user enters a valid CAPTCHA code. The average time users spent on this malicious site was around four minutes, but the site had over 30 million visitors per month. If we add the numbers together, it is obvious that the hackers have mined a huge amount of crypto.

A report states that since its first appearance in December 2015, the SamSam ransomware has raked in nearly $ 6 million targeting organizations and individuals around the world, including those in India. According to the 47-page report, 74% of known victims are based in the United States. Canada, the United Kingdom and the Middle East are other regions known to have suffered attacks, with India ranking sixth among the main victim countries around the world.

Best mobiles in India

  • OPPO Reno6 Pro 5G

    39 990

  • Apple iPhone 12 Pro

    1 19 900

  • Redmi Note 10 Pro Max


  • Motorola Moto G60


  • Xiaomi Mi 11 Ultra


  • Samsung Galaxy S20 Ultra


  • Vivo X50 Pro

    49 990

  • Xiaomi mi 10i


  • Samsung Galaxy Note20 Ultra 5G

    1 04 999

  • Motorola Edge Plus


  • Samsung galaxy a51


  • Apple iphone 11


  • Redmi note 8


  • Samsung galaxy s20 plus


  • OPPO F15


  • Apple iPhone SE (2020)


  • Vivo S1 Pro


  • Realme 6


  • OPPO F19

    18 990

  • Apple iPhone XR


  • Xiaomi 11t pro


  • Xiaomi 11t


  • Xiaomi 11 Lite NE 5G


  • Infinix Zero X Neo


  • TCL 20R 5G

    15 677

  • Samsung galaxy m22


  • ZTE nubia Red Magic 6s Pro


  • ZTE nubia Red Magic 6S


  • Vivo X70


  • TCL L10 Pro

    18 230

Article first published: Monday, October 1, 2018, 12:30 p.m. [IST]



Leave A Reply