1. BITBILIHome
  2. Article

Messaging giant Telegram’s security breach exposes Mac users’ cameras

44 views

TL;DR Breakdown

  • Telegram downplayed the seriousness of an exploit that allowed researchers to access the camera systems of Apple macOS devices.
  • By injecting a dynamic library into a user’s system, the exploit could grant access to the device’s camera and enable the recording and saving of the files.
  • The introduction of blockchain-based anonymous numbers as a feature in Telegram further showcases the platform’s efforts to enhance user privacy. 

Messaging application Telegram downplayed the seriousness of an exploit that allowed researchers to access the camera systems of Apple macOS devices. The exploit was flagged by software engineer Dan Revah, who detailed the method in a blog post. By injecting a dynamic library into a user’s system, the exploit could grant access to the device’s camera and enable the recording and saving of the files. Revah also claimed that the exploit could bypass the terminal’s sandbox using a launch agent and gain additional system privileges. 

However, the spokesperson Remi Vaughn stated that Telegram users are not at risk by default, as the exploit requires malware to be installed on their systems. Vaughn attributed the issue to Apple’s permission security and the possibility of bypassing the sandbox restrictions meant to prevent abuse of third-party apps. The application made changes to address the exploit, and the updated version received approval from the Apple App Store. Users who downloaded Telegram directly from the app’s website were not affected. 

Telegram addresses the exploit

In a separate update, Telegram introduced a feature in December 2022 that allows users to create accounts using blockchain-based anonymous numbers to enhance privacy and security. This feature requires users to purchase blockchain-powered anonymous numbers from the decentralized auction platform Fragment. The usernames and anonymous numbers obtained from the platform are only compatible with Telegram. Telegram founder Pavel Durov also indicated in November 2022 that the platform would develop decentralized tools and services following the collapse of the FTX cryptocurrency exchange owned by Sam Bankman-Fried.

Additionally, the discovery of the exploit in Telegram highlights the ongoing challenge of balancing user privacy and security with the potential risks posed by vulnerabilities in software systems. While Telegram emphasized that its users were not at risk by default, the incident raises concerns about the overall security of messaging applications and the ability of attackers to exploit weaknesses in the underlying operating systems.

The response from Telegram, in addressing the exploit and working to make necessary changes, reflects the company’s commitment to maintaining the privacy and security of its users. By promptly implementing updates and obtaining approval from the Apple App Store, Telegram demonstrated its dedication to addressing potential vulnerabilities and protecting its user base.

The introduction of blockchain-based anonymous numbers as a feature in Telegram further showcases the platform’s efforts to enhance user privacy. By leveraging decentralized technology, Telegram aims to provide users with more control over their personal information and communication. This aligns with the growing trend of integrating blockchain and decentralized solutions to address concerns regarding data privacy and security.

As for Apple, the response from the company regarding the exploit is awaited. Given the gravity of the issue, it is likely that Apple will investigate the matter and take appropriate measures to address any vulnerabilities in its macOS operating system that may have enabled the exploit.

Overall, the incident serves as a reminder of the importance of regularly updating software, maintaining strong security measures, and being vigilant against potential vulnerabilities that could be exploited by malicious actors. It highlights the ongoing cat-and-mouse game between cybersecurity researchers and attackers, with companies like Telegram working to stay one step ahead to protect their users’ privacy and security.

Disclaimer. The information provided is not trading advice. Cryptopolitan.com holds no liability for any investments made based on the information provided on this page. We strongly recommend independent research and/or consultation with a qualified professional before making any investment decisions.

文章来源于互联网:Messaging giant Telegram’s security breach exposes Mac users’ cameras

Disclaimers:

1. You are solely responsible for your investment decisions and this info is not liable for any losses you may incur.

2. The copyright of this article belongs to the writer, it represents the writer's opinions only, not represents the site's ones. Not financial advice.

Previous 2023年5月18日 16:08
Next 2023年5月18日 17:01

Related articles

  • Crypto wallet Tangem is set to take up more market share off Ledger and Trezor

    TL;DR Breakdown Tangem plans a complete rebranding to accumulate more market shares from popular hardware wallets. The wallet provider has seen massive traction, with a 738% spike in monthly active users since 2022. Tangem will debut the “first fully self-custodial payment solution integrated with a global payment network.” Description Leading crypto wallet provider Tangem on Friday announced a full-scale product upgrade and rebrand to strengthen its position in the hardware wallet market. The move follows a massive user growth in Tangem Wallet, a card-shaped self-custodial cold wallet that gives users full control of their private keys.  Tangem Records 738% Increase in MAUs In a … Read more Leading crypto wallet provider Tangem on Friday announced a full-scale product upgrade and rebrand to strengthen its position in the hardware wallet market. The move follows a massive user growth in Tangem Wallet, a card-shaped self-custodial cold wallet that gives users full control of their private keys.  Tangem Records 738% Increase in MAUs In a Friday announcement, Tangem said its monthly active users had grown 738% since the recent product release last year….

    Article 2023年9月9日

  • FTX and Genesis reach agreement in bankruptcy cases

    TL;DR Breakdown Bankrupt crypto firms FTX Trading Ltd. and Genesis Global Holdco LLC have agreed to settle their Chapter 11 cases. FTX originally claimed a $3.9 billion debt from Genesis, which was later reduced to $2 billion. Description Brace yourselves as the crypto universe witnesses an unprecedented episode of resolution. The bankruptcy specter, FTX Trading Ltd., and Genesis Global Holdco LLC have decided to bury the hatchet and find common ground to settle their Chapter 11 cases. Out of chaos comes order In the throes of financial collapse, FTX Trading had squared off … Read more Brace yourselves as the crypto universe witnesses an unprecedented episode of resolution. The bankruptcy specter, FTX Trading Ltd., and Genesis Global Holdco LLC have decided to bury the hatchet and find common ground to settle their Chapter 11 cases. Out of chaos comes order In the throes of financial collapse, FTX Trading had squared off with Genesis Global, claiming a staggering debt of $3.9 billion. The crypto lender, Genesis, countered this allegation, leading to a reduction of the contested amount to $2 billion. A…

    Article 2023年7月29日

  • Alameda Research seeks support from claimants who hold 10% of GBTC

    TL;DR Breakdown Alameda has announced its intention to file an amended complaint against Grayscale, with the goal of adding additional plaintiffs who own at least 10% of the outstanding shares of the GBTC Trust. Recently, David Bailey, the CEO of Bitcoin Magazine, encouraged GBTC shareholders to join the lawsuit by registering on RedeemGBTC.com. Description The bankrupt cryptocurrency investment firm, Alameda Research, is seeking support from claimants who hold 10% of Grayscale’s Bitcoin Trust (GBTC) shares in its ongoing lawsuit against Grayscale and its parent company, Digital Currency Group (DCG). Alameda has announced its intention to file an amended complaint against Grayscale, with the goal of adding additional plaintiffs who … Read more The bankrupt cryptocurrency investment firm, Alameda Research, is seeking support from claimants who hold 10% of Grayscale’s Bitcoin Trust (GBTC) shares in its ongoing lawsuit against Grayscale and its parent company, Digital Currency Group (DCG). Alameda has announced its intention to file an amended complaint against Grayscale, with the goal of adding additional plaintiffs who own at least 10% of the outstanding shares of the GBTC Trust. The…

    Article 2023年7月29日

  • Biden and McCarthy are quite confident that U.S. will not default

    TL;DR Breakdown Despite ongoing tense negotiations over raising the U.S. debt ceiling, both President Joe Biden and House Speaker Kevin McCarthy expressed confidence that the U.S. will not default on its debt. While negotiations have moved into a more serious phase, key points of contention remain, including the Republican request to attach work requirements to federal food benefits. Despite Democrats’ calls for revenue-raising mechanisms to be part of the discussion, McCarthy stated that taxes will not be part of the debt ceiling negotiations. Despite ongoing negotiations and the looming deadline to raise the debt ceiling, both President Joe Biden and House Speaker Kevin McCarthy expressed confidence that the United States would not default on its debt. Their assurances come at a crucial time when the government is racing against the clock to strike a deal and avert an economic catastrophe. What are Biden and McCarthy planning? Biden and McCarthy’s statements indicate that the previously stalled negotiations are now entering a more serious and concrete phase, with the possibility of a deal drawing nearer. The June 1 deadline to raise the…

    Article 2023年5月18日

  • Stablecoin transactions under scrutiny: Justin Sun’s deep dive into the $800M movement

    TL;DR Breakdown Justin Sun mints an eye-catching $815 million of the little-used stablecoin TUSD, with funds swiftly moving through a series of complex transactions, leading to a massive stUSDT minting. Amidst controversies, Sun clarifies the transactions are related to his fund as debates over transparency in the cryptocurrency world gain momentum. Description In an era where digital currencies are making headlines and reshaping the financial landscape, one particular transaction has raised eyebrows in the cryptocurrency community. On Friday, HTX board member and billionaire trader Justin Sun made waves with a massive minting of the lesser-known stablecoin, TUSD (TrueUSD). This complex transactional activity not only caught the attention … Read more In an era where digital currencies are making headlines and reshaping the financial landscape, one particular transaction has raised eyebrows in the cryptocurrency community. On Friday, HTX board member and billionaire trader Justin Sun made waves with a massive minting of the lesser-known stablecoin, TUSD (TrueUSD). This complex transactional activity not only caught the attention of traders but also raised concerns about the transparency and motives behind such large-scale movements….

    Article 2023年9月16日
TOP