Group-IB cybersecurity experts have reported a wave of hacking Telegram accounts. Hackers gain access to credentials of Russians, after which they can read their correspondence. Is this a serious vulnerability or an attempt to intimidate messenger users?
What is known about Telegram hack?
It is reported that attackers were able to access other people's accounts using disposable SIM cards. To enter someone else’s Telegram, they requested SMS with a code to enter on behalf of the account holder, after which they intercepted it. Then they just had to log in to the account without any problems.
Group-IB also added that the attacks wereare aimed at customers of various mobile operators, as well as users of both iOS and Android. In other words, this universal vulnerability puts almost all Telegram users at risk. Moreover, in the same way, you can access other applications, including a mobile bank. The number of victims is not reported, only a few cases are known.
An attempt to intimidate Telegram users
Telegram hacking information raised powerfula wave of noise throughout the country, but only with a more detailed examination questions begin to arise. Firstly, who generally needs to hack into the accounts of ordinary people. The maximum that will be there is a couple of chats with friends - for scammers this is of no interest. Hacking accounts in the messenger makes sense only when hackers can do this massively and automatically. In this case, the account can be used to send spam, cheating, etc.
Here, criminals hack every accountmanually, and not without serious costs. Accordingly, either the Telegram victims had some really valuable information, or all this noise was a common attempt to frighten Telegram users.
After a failed lock last yearthe messenger has become even more popular, and millions of Russians are free to access information that Roskomnadzor has carefully removed from the Internet.
If this is true, the potential effectwill be doubtful. Telegram's audience is for the most part people with minimal knowledge of cybersecurity and the protection of their data. Tomorrow they will forget about all these horror stories, and continue to calmly use the messenger. But on less “advanced” Russians this can really have a frightening effect. In their view, the messenger will seem something unreliable and dangerous, so that they may well not want to use it in the future.