Telegram security flaws found in non-encrypted cloud chats, now fixed says company

Researchers found vulnerabilities in Telegram that could be used to manipulate bots on the app. They also found code in the Android, iOS, and desktop versions of Telegram, which could allow attackers to extract plaintext or readable form from encrypted messages.

A group of researchers at the Royal Holloway, University of London recently found security flaws in the Telegram messenger app. The researchers found vulnerabilities in Telegram that could be used to manipulate bots on the app. They also found code in the Android, iOS, and desktop versions of Telegram, which could allow attackers to extract plaintext or readable form from encrypted messages.The researchers noted that even though Telegram offers end-to-end encryption (E2EE) through a feature called secret chats, the cloud chats are not encrypted by default.