This media is not supported in your browser
VIEW IN TELEGRAM
๐43
Where is it?
๐22๐ฅ9โคโ๐ฅ5โค4๐4๐ข3๐3๐คฎ2๐คก1๐คฃ1๐ญ1
Cognitum
Cognitum.One โ Intelligence for the Real World
Cognitum.One โ always-on, self-learning AI agents that live where your data is born: at the edge, in the real world, in real time. Deploy on the Seed device, integrate via MCP, build with Rust, Node.js & Python SDKs.
๐13โค5๐ฅ2๐2๐ข2๐1
Telegram does not need to have its message encryption broken for users to be tracked at the network layer.
Telegram sends MTProto over unencrypted TCP, exposing auth_key_id - a long-lived identifier tied to the clientโs authorisation key. An ISP, hotel WiFi operator, mobile carrier, transit provider, or surveillance system on the network path can see that identifier if they can observe the traffic. It can remain stable across app restarts, IP changes, VPN use, network switches, and location changes.
Secret Chats protect message content, but this leak is below that layer. That makes the attack passive.
The risk is in retroactive correlation. Think a journalist using Telegram from different networks for months, then joining hotel or corporate WiFi under a real name.
That one identity anchor could make old logs searchable for the same auth_key_id.
The fix is simple - mandatory transport encryption for all MTProto connections, with no unencrypted fallback. Telegram chose not to do this.
Source: @kaepora symbolic.software/pdf/gnmx-01.pdf
P.s.: Long life, global passive observer
Telegram sends MTProto over unencrypted TCP, exposing auth_key_id - a long-lived identifier tied to the clientโs authorisation key. An ISP, hotel WiFi operator, mobile carrier, transit provider, or surveillance system on the network path can see that identifier if they can observe the traffic. It can remain stable across app restarts, IP changes, VPN use, network switches, and location changes.
Secret Chats protect message content, but this leak is below that layer. That makes the attack passive.
The risk is in retroactive correlation. Think a journalist using Telegram from different networks for months, then joining hotel or corporate WiFi under a real name.
That one identity anchor could make old logs searchable for the same auth_key_id.
The fix is simple - mandatory transport encryption for all MTProto connections, with no unencrypted fallback. Telegram chose not to do this.
Source: @kaepora symbolic.software/pdf/gnmx-01.pdf
P.s.: Long life, global passive observer
โค8๐8๐ญ4๐3๐ฅ1๐1
This media is not supported in your browser
VIEW IN TELEGRAM
Did you prepare yourself for it?
๐พ5