Telegram is a cross-platform instant messaging system that allows users to exchange text, voice, and video messages, as well as photos and files in various formats. In addition to message exchange in chats and groups, the messenger allows for the storage of an unlimited number of files, the creation and use of “bots,” and the management of channels (microblogs).
Telegram can be considered one of the most popular messengers. However, no messenger can guarantee absolute security because there are methods of external attacks, vulnerabilities in the software code implementation, or internal vulnerabilities within the messenger itself, potentially accessible to developers or individuals with appropriate access.
GENERAL INFORMATION ABOUT THE MESSENGER
In the privacy policy of Telegram, in the section on “cloud chats” (3.3.1), it states that “Telegram is a cloud service. We store messages, photos, videos, and documents from your cloud chats on our servers…”. Data exchange in the messenger occurs through servers; text messages are not sent directly but pass through Telegram’s servers. Therefore, all conversations and data stored on servers may be accessible to developers or individuals with the relevant access.
It is relatively easy to create a detailed profile of a Telegram user’s public activity by entering their Telegram ID.
The only potentially secure way to protect privacy is through voice calls or secret chats. In these cases, it is essential to verify the images and text generated from the encryption key of the secret chat by comparing them with the images and text of your conversation partner’s chat. This verification helps ensure that data encrypted with this key is not decrypted and stored on the server, making it inaccessible to anyone else.
Considering the current realities, another critical question arises: “How can an ‘encrypted’ messenger operate in a country with total control over everything and everyone?” Telegram’s developer, Pavel Durov, is a native of St. Petersburg, Russia. One of Durov’s products is the social network VKontakte, which is now entirely controlled by Russian intelligence agencies (according to information from official open sources).
It is also worth noting that the user base of Telegram in Russia has grown from 30 million in 2020 to nearly 50 million today, surpassing the number of WhatsApp users, making it the most widely used messaging platform.
In our history, we have already witnessed the blocking of the VKontakte social network, which led to a migration of users to Telegram. However, have we simply replaced one platform with another?
RISKS OF USING TELEGRAM:
Given the origin, technical characteristics, and functionality of the messenger, several risks arise during its use.
The first aspect to pay attention to is the security of data storage within Telegram. It is impossible to track exactly which servers store the data and conversations of Telegram users, or to refute the possibility of access to such data by Russian special services. Telegram’s privacy policy states that only their employees have access to the servers and messenger infrastructure, but such employees could potentially be affiliated with security agencies. Additionally, it is impossible to rule out the recruitment of existing employees.
One of the most dangerous risks is the vulnerability in Telegram’s security, specifically open access to the API (Application Programming Interface). In the case of Telegram, this API includes text and metadata from any publicly accessible group chat or channel, such as records of when users were last online. API Telegram can also be used to spoof locations, allowing the approximate tracking of users within a 3 km radius. This feature can pose a risk to the security of military personnel, especially during times of war.
Another risky aspect is the use of open group chats, accessible to all Telegram users. Conversations or sharing of confidential information in such chats can potentially reach unwanted individuals. Despite the convenience of these chats for data exchange, they can become a target for hostile intelligence agencies. Therefore, it is important to prevent any data leaks by prohibiting the use of Telegram in the workplace for the transmission of sensitive information, particularly in the interest of national security.
Alongside other risks, there is a risk of spreading disinformation. Telegram’s built-in features for creating channels (microblogs) are often used as news feeds and resources for rapidly disseminating information. Due to the anonymity of Telegram channel owners and the existence of numerous “bot farms,” disinformation can quickly spread through the platform.
Due to poor moderation within the messenger, “bots” (fake accounts impersonating real users) can be used to conduct psychological and disinformation attacks. These bots are often employed to create an appearance of mass opinions, reactions in group chat comments, and on the pages and blogs of public figures. Such attacks can be used to manipulate public perception, promote or undermine certain publications, or tarnish the reputation and image of individuals, businesses, or entrepreneurial activities.
In addition to the risks posed by bots within Telegram, there is also the creation of pornographic content using DeepFake technology for the purpose of blackmailing users on the platform. Previously published photos or video materials are stored by malicious actors for further editing through Telegram bots to create compromising content. Despite numerous user complaints requesting the blocking of such bots, Telegram’s support service does not respond to such appeals.
Furthermore, the Telegram platform has minimal content moderation, except for its commitment to combating illegal pornography, intellectual property rights violations, fraud, and calls to violence. Telegram has become a modern “darknet,” a tool for implementing cyber threats by hacker groups associated with Russian special services and cybercriminals from various countries. According to an analysis of Telegram, it ranks third among platforms where criminals promote their phishing sites. The number of Telegram users is constantly increasing.
Telegram has also been implicated multiple times as a means of disseminating illegal substances.
Recommendations for Usage
Considering Telegram’s convenient and straightforward functionality, we cannot be 100% certain about the security of data storage and communication within the messenger.
Therefore, it is essential to adhere to basic rules when using Telegram, such as not forwarding critical information and not mentioning it in your own conversations to prevent data leakage, especially in state institutions. Do not use Telegram for work-related purposes or to transmit any data (files, documents, etc.) that could be important in the interest of national security.
Periodically check for the presence of third-party devices that have access to your Telegram account in the Telegram settings under the “Devices” section.
To avoid falling victim to disinformation, we recommend analyzing any information published in Telegram from anonymous groups, verifying the information on official resources of government bodies and public figures. The authors of Telegram channels are typically anonymous and do not bear any responsibility for the news they publish, claiming it as the truth.
Avoid engaging in debates with “strange” accounts (bots) in Telegram group comments.
We also advise minimizing the amount of personal information in your Telegram profile.
The loss of personal data, disinformation, unreliable storage, and the distribution of harmful content all make Telegram an unreliable communication tool.
Whenever possible, minimize the use of this messenger for military or official purposes, especially when exchanging sensitive or critical information.
