MENU

Coins

Exchanges

Bitcoin (BTC)
Bitcoin
$ 72,084.86 2,580.96 (% 3.71)
Ethereum (ETH)
Ethereum
$ 4,038.91 133.93 (% 3.43)
XRP (XRP)
XRP
$ 0.727106 0.113616 (% 18.52)
Binance Coin (BNB)
Binance Coin
$ 519.52 -11.81 (% -2.22)
Tether (USDT)
Tether
$ 1.00 0 (% -0.12)
Litecoin (LTC)
Litecoin
$ 105.01 16.80 (% 19.04)
Cardano (ADA)
Cardano
$ 0.774866 0.057416 (% 8.00)
Bitcoin Cash (BCH)
Bitcoin Cash
$ 443.57 17.63 (% 4.14)
Ethereum Classic (ETC)
Ethereum Classic
$ 37.783474 1.333105 (% 3.66)
Stellar (XLM)
Stellar
$ 0.15958 0.01918 (% 13.66)
Cosmos (ATOM)
Cosmos
$ 13.68 0.54 (% 4.14)
EOS (EOS)
EOS
$ 1.24 0.09 (% 8.19)
TRON
TRON
$ 0.133004 -0.001235 (% -0.92)
Tezos (XTZ)
Tezos
$ 1.508825 0.086660 (% 6.09)
NEO (NEO)
NEO
$ 18.02 1.05 (% 6.18)
Dash (DASH)
Dash
$ 43.44 3.21 (% 7.99)
Holo (HOLO)
Holo
$ 0.003539 0.000008 (% 0.23)
Basic Attention Token (BAT)
Basic Attention Token
$ 0.218578 -0.000524 (% -0.24)

Potential Vulnerability In Telegram Raises Concerns

Last update 15.04.2024 15:38

Blockchain security firm CertiK has issued a cautionary notice regarding a possible vulnerability detected in Telegram’s Desktop applications. This raises concerns over users’ potential exposure to malicious attacks.

Potential Vulnerability In Telegram Raises Concerns

However, Telegram, known for its crypto-friendly messaging platform, has refuted these claims, asserting that such a vulnerability is absent within its system.

Alleged Vulnerability on Telegram

Certik claimed that Telegram’s desktop application, specifically its media processing functionality, contained a significant Remote Code Execution (RCE) vulnerability. It allegedly exposes users to attacks through media files like images or videos.

The firm specified that the vulnerability affects only desktop apps that execute programs contained within files. However, the mobile application remains unaffected.

Telegram swiftly responded to CertiK’s claims, stating that it could not verify the vulnerability and suggesting it could be misinformation. However, CertiK demonstrated an RCE attack on Telegram’s latest Windows desktop version, reinforcing its initial claim. Consequently, it advised users to exercise caution until a complete resolution is reached.

CertiK recommends users review their Telegram settings and deactivate the auto-download feature to mitigate the vulnerability. Still, Telegram has since addressed CertiK’s renewed disclosure, citing a recent server-side fix for a similar issue. The firm clarified that the resolved vulnerability required specific user interactions and advanced conditions.

“Certik posted this after we notified them about a server-side fix for an issue which was similar to the one they initially hinted at (but required user interaction; required the user to have Python installed; and could not be triggered by automatic downloads),” Telegram said.

Telegram is a widely used messenger platform recognized for its cryptocurrency-friendly environment. The application enables users to communicate, exchange files, and conduct cryptocurrency transactions, including Bitcoin, through its custodial wallet solution.

Recently, Telegram began permitting users to buy advertisements using Toncoin (TON) and introduced a revenue-sharing program to reward channel owners.

 

Source: beincrypto.com

Related News
Thai Regulator Cracks Down On Deceptive Crypto Ads Thai Regulator Cracks Down On Deceptive Crypto Ads
OpenAI Hit With Privacy Complaint In Austria, Potential EU Law Breach OpenAI Hit With Privacy Complaint In Austria, Potential EU Law Breach
Bitcoin Top $70K Or $210K? Analysts, Price Models Clash Over BTC Cycle Peak Bitcoin Top $70K Or $210K? Analysts, Price Models Clash Over BTC Cycle Peak
Binance’s $1B Emergency ‘SAFU’ Fund Now Makes Up 3% Of UDSC Supply Binance’s $1B Emergency ‘SAFU’ Fund Now Makes Up 3% Of UDSC Supply
Yuga Labs Offloads 2 NFT Games Amid Effort To ‘Unshackle’ BAYC Team Yuga Labs Offloads 2 NFT Games Amid Effort To ‘Unshackle’ BAYC Team
Former Ethereum Dev Virgil Griffith Asks For Resentencing In North Korea Case Former Ethereum Dev Virgil Griffith Asks For Resentencing In North Korea Case
Gary Gensler’s Resignation ‘Troll’ Post Disappoints Crypto X Gary Gensler’s Resignation ‘Troll’ Post Disappoints Crypto X
Ernst & Young Taps ZK-Proofs On Ethereum To Automate Contracts Ernst & Young Taps ZK-Proofs On Ethereum To Automate Contracts
Binance Opts For USDC Reserves While It Seeks India Return And Dubai Entry Binance Opts For USDC Reserves While It Seeks India Return And Dubai Entry
Worldcoin Introduces World Chain Layer-2 Amidst Regulatory Spotlight Worldcoin Introduces World Chain Layer-2 Amidst Regulatory Spotlight
All Data
Coin Change(%) Price Volume (24h)
Bitcoin (BTC) 3.71 $72,084.86 $45.5B
Ethereum (ETH) 3.43 $4,038.91 $20.8B
XRP (XRP) 18.52 $0.727106 $4.4B
Solana (SOL) 1.58 $147.242060 $3.8B
Binance Coin (BNB) -2.22 $519.52 $3.0B
USD Coin (USDC) 0.03 $0.999697 $2.4B
Dogecoin (DOGE) 0.96 $0.174374 $2.1B
Shiba Inu (SHIB) -2.92 $0.000033 $1.7B
Floki Inu (FLOKI) -7.67 $0.000267 $1.3B
Avalanche (AVAX) 13.16 $47.596296 $1.2B
All Data