‘High-risk’ Telegram vulnerability exposes users to attacks — CertiK


A major vulnerability on Telegram messenger is exposing users to malicious attacks, according to a new report released by the blockchain security firm CertiK.

CertiK Alert took to the social media platform X on April 9 to warn the public against a “high-risk vulnerability in the wild,” potentially allowing hackers to deploy a remote code execution (RCE) attack through Telegram’s media processing.

According to the post, CertiK’s team has discovered a “possible RCE” attack in Telegram’s media processing on Telegram Desktop application.

“This issue exposes users to malicious attacks through specially crafted media files, such as images or videos,” CertiK wrote.

In order to avoid the vulnerability, users should check their Telegram Desktop configuration and disable the auto-download feature. The feature can be disabled by going to “Settings” and then tapping on “Advanced.”

Source: CertiK

“Under the ‘Automatic Media Download’ section, disable auto-download for ‘Photos’, ‘Videos’, and ‘Files’ across all chat types (Private chats, groups, and channels),” CertiK noted.

Cointelegraph approached CertiK and Telegram for a comment regarding the new Telegram’s vulnerability but did not receive a response at the time of publication.

This is a developing story, and further information will be added as it becomes available.

Source link

Leave a Reply

Your email address will not be published. Required fields are marked *

Previous Post

NuggetRush, Dogwifhat, or Arbitrum: Which coins should you add to your portfolio?

Next Post

BCB Group migrates its digital asset custody operations to Ripple’s Metaco platform

Related Posts