Telegram for MacOS writes secret messages into syslog

Telegram for MacOS writes secret messages into syslog

Russian security researcher Kirill Isis Firsov discovered vulnerability in a popular secure messaging program Telegram for MacOS. According to researcher’s tweet, the application logs all pasted into Telegram messages into syslog. This includes messages, pasted into secret chats.

This vulnerability may allow a local attacker to read all pasted texts, which were sent using Telegram. Vulnerability is confirmed by developer in the latest version of Telegram Messenger for Mac. Telegram Desktop is not vulnerable.

Syslog cannot be read by regular applications, installed from AppStore. However if there is malware on your device, it can elevate privileges and read those secret texts. And since this “feature” of Telegram was not documented anywhere, you cannot know that copies of all pasted texts are in syslog and can be accessible by unauthorized parties.

The developer of Telegram Mikhail Philiminov promised to the researcher, that this bug will be fixed in the next version of Telegram. On the meantime, we suggest cleaning your syslog files.

Back to the list

Latest Posts

UNC6148 threat actor actively targets outdated and patched SonicWall devices

UNC6148 threat actor actively targets outdated and patched SonicWall devices

The group is using stolen credentials and OTP seeds to regain access to devices even after security updates have been applied.
17 July 2025
Google patches Chrome zero-day allowing sandbox escape

Google patches Chrome zero-day allowing sandbox escape

The flaw stems from insufficient validation of untrusted input in ANGLE and GPU.
16 July 2025
Ukrainian police dismantle major server network used for malware distribution

Ukrainian police dismantle major server network used for malware distribution

Authorities identified a 33-year-old French national as the organizer of the illegal operation.
16 July 2025