ZDI Registered a Critical Vulnerability in Telegram — Don't Panic
On March 26, an entry ZDI-CAN-30207 concerning Telegram appeared in the database of the Zero Day Initiative — the largest independent vulnerability hunting program. The vulnerability was discovered by researcher Michael DePlante from Trend Micro.
Details are classified: according to ZDI regulations, the specifics will be disclosed either as soon as the messenger fixes the issue, or on July 24, 2026, if it does not.
The popular theory about animated stickers is speculation and rumor, not facts known from this entry. All other "details" being spread by media and channels are either conjecture or descriptions of already fixed old vulnerabilities. There is no need to panic.
What to do:
• Update Telegram immediately when new versions are released.
• Use the official Telegram app to receive the update with the fix on the very first day.
• No other specific protective measures can be taken — the nature of the vulnerability is unknown.
Telegram's Reaction
The messenger's press service stated to Durov's Code that the vulnerability does not exist. Their argument: all stickers are checked by servers, therefore "the existence of such an exploit is impossible".
The @tginfo editors find this reaction strange. For some reason, Telegram commented specifically on the speculations about stickers, even though the attack vector has not been disclosed and might have nothing to do with them. It is unclear why the messenger chose to refute rumors instead of simply confirming their work on the ZDI report.
The assertion itself that the exploit does not exist due to server-side verification is technically flawed: server validation is merely one of the protection layers, which itself can contain errors and may not cover all possible scenarios. Moreover, stickers that cause the Android app to crash still exist today, which already calls into question the comprehensiveness of the claimed check.
The messenger's response to Durov's Code is a declaration, not an argument. It will only be possible to confirm or deny the existence of the problem after the details are published or a patch is released.
What Open Data Says
From the ZDI entry, the preliminary severity score — 9.8 out of 10 — and the attack vector parameters are known. If the assessment is correct, the vulnerability can be exploited remotely over the network, requires no user interaction and no system privileges, and potentially allows an attacker to gain full access to the user's data.
These are serious parameters, however, the preliminary score is set by the researcher and may be adjusted.
Context
It is not the first time Telegram has faced critical vulnerabilities. In 2020, Shielder researchers discovered 13 vulnerabilities in the rlottie library for animated stickers, including out-of-bounds write errors that allowed for remote memory corruption on the device. Telegram fixed the specific bugs but did not change the processing architecture. Potentially, animated stickers remain a broad attack surface, so it cannot be ruled out that the new vulnerability exploits them specifically.
In 2024, a flaw was discovered in Telegram Desktop that allowed programs to be disguised as videos, making it easier to convince a victim to click and launch them. In 2025, a similar EvilLoader vulnerability was found on Android. At the same time, the Russian vulnerability broker Operation Zero offered up to $4 million for zero-click exploits in Telegram, while a representative of the messenger told Forbes that "Telegram has never been vulnerable to zero-click exploits."
Practice shows that Telegram prefers to patch specific holes without addressing systemic security problems, and such rhetoric about the "absolute impossibility" of exploits does not inspire confidence considering this story.
On March 26, an entry ZDI-CAN-30207 concerning Telegram appeared in the database of the Zero Day Initiative — the largest independent vulnerability hunting program. The vulnerability was discovered by researcher Michael DePlante from Trend Micro.
Details are classified: according to ZDI regulations, the specifics will be disclosed either as soon as the messenger fixes the issue, or on July 24, 2026, if it does not.
There is no information about the vulnerability being exploited "in the wild" by actual hackers. Right now, no one except the researcher and Telegram developers knows what the vulnerability entails.
The popular theory about animated stickers is speculation and rumor, not facts known from this entry. All other "details" being spread by media and channels are either conjecture or descriptions of already fixed old vulnerabilities. There is no need to panic.
What to do:
• Update Telegram immediately when new versions are released.
• Use the official Telegram app to receive the update with the fix on the very first day.
• No other specific protective measures can be taken — the nature of the vulnerability is unknown.
Telegram's Reaction
The messenger's press service stated to Durov's Code that the vulnerability does not exist. Their argument: all stickers are checked by servers, therefore "the existence of such an exploit is impossible".
The @tginfo editors find this reaction strange. For some reason, Telegram commented specifically on the speculations about stickers, even though the attack vector has not been disclosed and might have nothing to do with them. It is unclear why the messenger chose to refute rumors instead of simply confirming their work on the ZDI report.
The assertion itself that the exploit does not exist due to server-side verification is technically flawed: server validation is merely one of the protection layers, which itself can contain errors and may not cover all possible scenarios. Moreover, stickers that cause the Android app to crash still exist today, which already calls into question the comprehensiveness of the claimed check.
The messenger's response to Durov's Code is a declaration, not an argument. It will only be possible to confirm or deny the existence of the problem after the details are published or a patch is released.
What Open Data Says
From the ZDI entry, the preliminary severity score — 9.8 out of 10 — and the attack vector parameters are known. If the assessment is correct, the vulnerability can be exploited remotely over the network, requires no user interaction and no system privileges, and potentially allows an attacker to gain full access to the user's data.
These are serious parameters, however, the preliminary score is set by the researcher and may be adjusted.
Context
It is not the first time Telegram has faced critical vulnerabilities. In 2020, Shielder researchers discovered 13 vulnerabilities in the rlottie library for animated stickers, including out-of-bounds write errors that allowed for remote memory corruption on the device. Telegram fixed the specific bugs but did not change the processing architecture. Potentially, animated stickers remain a broad attack surface, so it cannot be ruled out that the new vulnerability exploits them specifically.
In 2024, a flaw was discovered in Telegram Desktop that allowed programs to be disguised as videos, making it easier to convince a victim to click and launch them. In 2025, a similar EvilLoader vulnerability was found on Android. At the same time, the Russian vulnerability broker Operation Zero offered up to $4 million for zero-click exploits in Telegram, while a representative of the messenger told Forbes that "Telegram has never been vulnerable to zero-click exploits."
Practice shows that Telegram prefers to patch specific holes without addressing systemic security problems, and such rhetoric about the "absolute impossibility" of exploits does not inspire confidence considering this story.
🤡42👍25❤10😱10🤯4👎2🐳1
Telegram May Warn Chat Partners If You Use an Unofficial Client
A new entry has been discovered in the translation string database for the official Telegram for iOS client, indicating the potential introduction of warnings when a chat partner is using a third-party messenger client.
The appearance of such a notification is likely related to the growing popularity of the Russian third-party client "Telega", which, unlike a regular proxy, sends messages to a Russian company's servers in a way that allows them to be decrypted and read there. Furthermore, Russian companies are legally obligated to store and hand over data to the FSB upon request.
The @tginfo editors assume that Telegram isn't blocking this client directly as a compromise to maintain its position in the Russian market, but is striving to mitigate reputational risks: a single chat participant with an unofficial app is enough to put the remaining users at risk.
It is unknown whether the warning will be displayed when a chat partner uses any alternative client, even one that is officially registered and follows the API ToS, or if the new feature will only affect apps that Telegram deems unreliable. @tginfo editors fear that if the new feature applies to all third-party apps, this warning could turn into visual noise.
#iOS #security
A new entry has been discovered in the translation string database for the official Telegram for iOS client, indicating the potential introduction of warnings when a chat partner is using a third-party messenger client.
"The user uses an unofficial Telegram client – messages to this user may be less secure," reads the string for translation.
The appearance of such a notification is likely related to the growing popularity of the Russian third-party client "Telega", which, unlike a regular proxy, sends messages to a Russian company's servers in a way that allows them to be decrypted and read there. Furthermore, Russian companies are legally obligated to store and hand over data to the FSB upon request.
The @tginfo editors assume that Telegram isn't blocking this client directly as a compromise to maintain its position in the Russian market, but is striving to mitigate reputational risks: a single chat participant with an unofficial app is enough to put the remaining users at risk.
It is unknown whether the warning will be displayed when a chat partner uses any alternative client, even one that is officially registered and follows the API ToS, or if the new feature will only affect apps that Telegram deems unreliable. @tginfo editors fear that if the new feature applies to all third-party apps, this warning could turn into visual noise.
#iOS #security
1👍47🤯17❤11🤡7😱4🐳4👎2🌚2
Telegram for Android and iOS Updated to Version 12.6
The April update is live and brings many new features in it:
• Poll improvements across the board: deadlines, media files in answers, random option order, and the ability for participants to suggest their own options.
At the same time, poll answer options have received separate links to specific voting options, as well as the ability to reply to them, copy, and delete user-suggested options.
• AI text editor and translator: a built-in assistant for translation, error correction, style changes, and automatic emoji placement. A few uses are available for free, with increased limits for Premium.
• Live & Motion Photos: support for viewing and sending "moving" photos (a short video before and after the shutter button was pressed). The sender can select one of the three playback styles in the media editor: Live, Loop, and Bounce.
• Profile Playlist: search through saved tracks and add audio files directly from device storage and shared audio in Telegram.
• Updated indicators: a redesigned look for mentions and reactions, as well as notifications about new votes in your polls directly in the chat list.
Other Updates
• Bots can now easily allow their users to create customized subagent profiles with custom name and profile picture, designed to replace manually creating bots and passing their tokens.
• On iOS, easily scan documents with your camera and combine the scans into a PDF-file.
• A warning when somebody is using an unofficial Telegram client.
• Separate "Polls" tab in channel and chat profiles.
• Stories now display the music file that was used on them.
Article: telegram.org/blog/ai-editor-mighty-polls-and-more/
Download the update
• Android: Google Play, Direct APK on the official website or verified channel
• iOS: App Store.
#update #Android #iOS
The April update is live and brings many new features in it:
• Poll improvements across the board: deadlines, media files in answers, random option order, and the ability for participants to suggest their own options.
At the same time, poll answer options have received separate links to specific voting options, as well as the ability to reply to them, copy, and delete user-suggested options.
• AI text editor and translator: a built-in assistant for translation, error correction, style changes, and automatic emoji placement. A few uses are available for free, with increased limits for Premium.
• Live & Motion Photos: support for viewing and sending "moving" photos (a short video before and after the shutter button was pressed). The sender can select one of the three playback styles in the media editor: Live, Loop, and Bounce.
• Profile Playlist: search through saved tracks and add audio files directly from device storage and shared audio in Telegram.
• Updated indicators: a redesigned look for mentions and reactions, as well as notifications about new votes in your polls directly in the chat list.
Other Updates
• Bots can now easily allow their users to create customized subagent profiles with custom name and profile picture, designed to replace manually creating bots and passing their tokens.
• On iOS, easily scan documents with your camera and combine the scans into a PDF-file.
• A warning when somebody is using an unofficial Telegram client.
• Separate "Polls" tab in channel and chat profiles.
• Stories now display the music file that was used on them.
Article: telegram.org/blog/ai-editor-mighty-polls-and-more/
Download the update
• Android: Google Play, Direct APK on the official website or verified channel
• iOS: App Store.
#update #Android #iOS
👍23👎10❤8🐳1
Main Announcements From Telegram Summit 2026
Telegram's closed conference Telegram Summit 2026 concluded today, where the messenger's team presented revolutionary new features for the upcoming year. The @tginfo editors closely followed the presentation and have collected the most important announcements from the event.
AI Innovations
• Smart media compression. To save server space, photos and videos in old chats will be replaced with their brief text descriptions generated by an AI. If you need to view a deleted file, the messenger will recreate it from the text. In addition, all voice messages longer than three minutes will be forcibly transcribed, and their originals permanently deleted.
• Replacing the declining audience with AI agents. If your chat partner hasn't logged into the app for a month, the messenger will automatically create a language model based on their chat history that will continue to respond to new messages. The developers call this an innovative solution to the problem of empty contact lists: no one wants to use a messenger if they can't chat with their friends. This is especially relevant in Russia, where the user base is declining amid a ban on the messenger.
Media
• Static Videos. In addition to animated photos (Motion Photos), the messenger is working on support for Static Videos. The new feature is designed to improve the user experience in conditions of throttled internet.
• Square video messages. The classic "circles" will become an exclusive privilege for Telegram Premium subscribers. Users of the basic version of the messenger will only be able to send square videos.
Content and Community Quality
• The 🤡 reaction will become paid. Using the clown emoji in channels and chats will become a paid feature. By leaving this reaction under a post, users will automatically transfer 5 stars to its author.
• "Revolution" in channels. The audience will get the opportunity to impeach channel administrators for low-quality content and vote to transfer ownership rights to a new owner. To avoid abuse of the system, every vote will be subject to a fee.
• Telegram Premium for families. The team is testing a family subscription. However, at the moment, it is available only to Pavel Durov's biological children. As the company notes, "a large-scale beta test has already been launched, and the plan has become available to a hundred users."
#foolsday
Telegram's closed conference Telegram Summit 2026 concluded today, where the messenger's team presented revolutionary new features for the upcoming year. The @tginfo editors closely followed the presentation and have collected the most important announcements from the event.
AI Innovations
• Smart media compression. To save server space, photos and videos in old chats will be replaced with their brief text descriptions generated by an AI. If you need to view a deleted file, the messenger will recreate it from the text. In addition, all voice messages longer than three minutes will be forcibly transcribed, and their originals permanently deleted.
• Replacing the declining audience with AI agents. If your chat partner hasn't logged into the app for a month, the messenger will automatically create a language model based on their chat history that will continue to respond to new messages. The developers call this an innovative solution to the problem of empty contact lists: no one wants to use a messenger if they can't chat with their friends. This is especially relevant in Russia, where the user base is declining amid a ban on the messenger.
Media
• Static Videos. In addition to animated photos (Motion Photos), the messenger is working on support for Static Videos. The new feature is designed to improve the user experience in conditions of throttled internet.
• Square video messages. The classic "circles" will become an exclusive privilege for Telegram Premium subscribers. Users of the basic version of the messenger will only be able to send square videos.
Content and Community Quality
• The 🤡 reaction will become paid. Using the clown emoji in channels and chats will become a paid feature. By leaving this reaction under a post, users will automatically transfer 5 stars to its author.
• "Revolution" in channels. The audience will get the opportunity to impeach channel administrators for low-quality content and vote to transfer ownership rights to a new owner. To avoid abuse of the system, every vote will be subject to a fee.
• Telegram Premium for families. The team is testing a family subscription. However, at the moment, it is available only to Pavel Durov's biological children. As the company notes, "a large-scale beta test has already been launched, and the plan has become available to a hundred users."
#foolsday
2🤡271🎉24😡18❤12👎9👍8🐳8🌚7
Telegram Might Get Tools for Fighting Poll Manipulation
In his personal Telegram channel, Pavel Durov mentioned that the messenger is working on tools that will help channel owners detect rigging in polls and protect the results from manipulation.
Telegram's CEO listed the following measures:
• Poll statistics.
• Limit voting to channel subscribers.
• Limit voting to users from select countries.
In the past, Telegram has already used region-gating to prevent poll rigging, but only on a case-by-case basis — for example, during the 2020 protests in Belarus, Telegram published a poll in which only users with Belarusian SIM cards could vote.
Similarly, the messenger already allows channel owners to limit their giveaways to select countries.
Detailed voting statistics are very useful for detecting anomalies during polling. You could already see this feature in Pavel Durov’s previous product, VK․com, where it was added back in 2012, when Pavel was still its CEO.
The new set of features is likely inspired by rigging in a political poll that Pavel Durov happened to notice. He shared that most of the fake votes were made by accounts originating from “exotic countries”.
There are still no details on what poll stats will look like. At the same time, the tools for limiting the poll audience appear to be very similar to ones that are already available for giveaways, from which we can speculate about how they will work:
• Voter's Country
Usually, Telegram infers a user's region from the country where the account's SIM card is registered.
• Limiting to Channel Subscribers
Surges of bot subscribers are a very common problem admin channels face when they hold giveaways. Bot farm owners command their accounts to join channels with active giveaways to get free Premium subscriptions, while the channel owners have no tools to retaliate.
Without an “only existing subscribers can vote” option, polls can inherit this problem.
In his personal Telegram channel, Pavel Durov mentioned that the messenger is working on tools that will help channel owners detect rigging in polls and protect the results from manipulation.
Telegram's CEO listed the following measures:
• Poll statistics.
• Limit voting to channel subscribers.
• Limit voting to users from select countries.
In the past, Telegram has already used region-gating to prevent poll rigging, but only on a case-by-case basis — for example, during the 2020 protests in Belarus, Telegram published a poll in which only users with Belarusian SIM cards could vote.
Similarly, the messenger already allows channel owners to limit their giveaways to select countries.
Detailed voting statistics are very useful for detecting anomalies during polling. You could already see this feature in Pavel Durov’s previous product, VK․com, where it was added back in 2012, when Pavel was still its CEO.
The new set of features is likely inspired by rigging in a political poll that Pavel Durov happened to notice. He shared that most of the fake votes were made by accounts originating from “exotic countries”.
There are still no details on what poll stats will look like. At the same time, the tools for limiting the poll audience appear to be very similar to ones that are already available for giveaways, from which we can speculate about how they will work:
• Voter's Country
Usually, Telegram infers a user's region from the country where the account's SIM card is registered.
• Limiting to Channel Subscribers
Surges of bot subscribers are a very common problem admin channels face when they hold giveaways. Bot farm owners command their accounts to join channels with active giveaways to get free Premium subscriptions, while the channel owners have no tools to retaliate.
Without an “only existing subscribers can vote” option, polls can inherit this problem.
👍33❤9
Telegram Allowed Bots to Chat with Each Other
Since the Telegram Bot API was introduced, bots could not see each other's messages — the platform would simply hide messages and events from other bots to prevent feedback-loop errors. Starting now, bot developers can opt in to bypass this restriction.
• In Chats
The change allows admins to build complex reaction chains. For example, a bot can trigger another bot, while logging systems record all bot actions in the chat.
• Through Business Accounts
Business bots will be able to send private messages to other bots on your behalf.
You can opt in to the change in @BotFather by activating the “Bot-to-Bot Communication” toggle.
You can learn more in the documentation on Telegram's official website.
#bots #BotAPI
Since the Telegram Bot API was introduced, bots could not see each other's messages — the platform would simply hide messages and events from other bots to prevent feedback-loop errors. Starting now, bot developers can opt in to bypass this restriction.
• In Chats
The change allows admins to build complex reaction chains. For example, a bot can trigger another bot, while logging systems record all bot actions in the chat.
• Through Business Accounts
Business bots will be able to send private messages to other bots on your behalf.
You can opt in to the change in @BotFather by activating the “Bot-to-Bot Communication” toggle.
You can learn more in the documentation on Telegram's official website.
#bots #BotAPI
1👍49❤13👎12🤡8😡3🎉2🤯1
Telegram Info English
Telegram Might Get Tools for Fighting Poll Manipulation In his personal Telegram channel, Pavel Durov mentioned that the messenger is working on tools that will help channel owners detect rigging in polls and protect the results from manipulation. Telegram's…
Telegram Plans to Fight Spam Reactions
Soon, group admins will be able not only to ban users who leave reactions but also to delete reactions from such users, Pavel Durov announced. Moderator bots that use the Bot API will be able to do this too, the message clarifies:
Just a few days ago, Durov mentioned on his channel that the messenger team is working on tools to detect inauthentic votes in polls and protect the results from manipulation.
Soon, group admins will be able not only to ban users who leave reactions but also to delete reactions from such users, Pavel Durov announced. Moderator bots that use the Bot API will be able to do this too, the message clarifies:
“The problem with spam bots in reactions is understood. We have started working on solving it. Soon it will be possible to ban users from the reactions list and remove all existing reactions of this user in the chat.
The same will be available to automatic bot moderators in the Bot API”.
Just a few days ago, Durov mentioned on his channel that the messenger team is working on tools to detect inauthentic votes in polls and protect the results from manipulation.
❤53👍25🤡23🎉7👎6🌚2🤯1😱1
Telegram Info English
Telegram Might Get Tools for Fighting Poll Manipulation In his personal Telegram channel, Pavel Durov mentioned that the messenger is working on tools that will help channel owners detect rigging in polls and protect the results from manipulation. Telegram's…
New Limits on Poll Participation
In the source code for Telegram Desktop, there are lines of code that show the addition of tools to track and stop poll-rigging:
• The option to allow voting only for users who subscribed to the channel at least 24 hours ago.
• The ability to allow voting only to users from a selected country (or multiple countries).
• The ability to view poll statistics.
Let us remind you that in 2020, the Telegram team had already created polls in which the answer options were available only to users with Belarusian SIM cards.
It remains unclear, however, whether the platform will allow channel administrators to disable voting for subscribers who join the channel after a poll is posted or whether it will make the same mistake as with giveaways, where this option is also unavailable.
#Desktop #polls
In the source code for Telegram Desktop, there are lines of code that show the addition of tools to track and stop poll-rigging:
• The option to allow voting only for users who subscribed to the channel at least 24 hours ago.
• The ability to allow voting only to users from a selected country (or multiple countries).
• The ability to view poll statistics.
Let us remind you that in 2020, the Telegram team had already created polls in which the answer options were available only to users with Belarusian SIM cards.
It remains unclear, however, whether the platform will allow channel administrators to disable voting for subscribers who join the channel after a poll is posted or whether it will make the same mistake as with giveaways, where this option is also unavailable.
#Desktop #polls
👍44❤7🤡5🎉2👎1🌚1
British Regulator Ofcom Launches Investigation into Telegram
The British communications regulator Ofcom has launched an investigation into Telegram regarding its compliance with obligations to combat illegal content under the local Online Safety Act 2023.
According to Reuters, the investigation was prompted by data from the Canadian Centre for Child Protection regarding the spread of child sexual abuse material (CSAM) on the platform, as well as the regulator's own assessment.
If violations are found, platforms could face fines of up to £18 million or 10% of their global turnover.
Telegram's Position
• The messenger "categorically" denies Ofcom's accusations.
• The company claims that since 2018, the public distribution of CSAM on the platform has been "virtually eliminated" thanks to the work of automatic detection algorithms.
• Telegram stated they are surprised by the investigation and concerned that it might be "part of a broader attack on online platforms that defend freedom of speech and the right to privacy".
• A day earlier, Pavel Durov noted that "protecting children" has become a standard PR move for lawmakers to gain control over media narratives.
Context
This is not Telegram's first clash with regulators over CSAM. In February 2025, the Australian regulator eSafety fined the messenger $600,000 for delaying a response to a similar request. In response, the company abandoned its usual passive stance, moved to active legal defense, and sued Australia, challenging the legality of the fine.
At the end of 2024, Telegram officially agreed to cooperate with the Internet Watch Foundation (IWF) — one of the key organizations maintaining CSAM signature databases. Our team has also extensively analyzed Telegram's internal moderation processes based on reports for eSafety: the disclosed documents reveal that photos and videos in all private groups and channels on the platform are automatically scanned against known illegal materials.
Recently, the UK has been consistently ramping up pressure on social media. Earlier this year, to comply with local legislation, Telegram already had to launch an experimental facial age verification system for British users.
It is worth noting that in recent years, under the banner of child protection, European countries have been increasingly pushing requirements that could violate privacy of communications and live. For example, due to requirements from this same Ofcom, Apple was forced to disable E2E encryption for iCloud backups, and the European Union is developing the EU Chat Control law, which is similar to the British OSA in its invasiveness.
#UK #moderation #laws
The British communications regulator Ofcom has launched an investigation into Telegram regarding its compliance with obligations to combat illegal content under the local Online Safety Act 2023.
According to Reuters, the investigation was prompted by data from the Canadian Centre for Child Protection regarding the spread of child sexual abuse material (CSAM) on the platform, as well as the regulator's own assessment.
If violations are found, platforms could face fines of up to £18 million or 10% of their global turnover.
Telegram's Position
• The messenger "categorically" denies Ofcom's accusations.
• The company claims that since 2018, the public distribution of CSAM on the platform has been "virtually eliminated" thanks to the work of automatic detection algorithms.
• Telegram stated they are surprised by the investigation and concerned that it might be "part of a broader attack on online platforms that defend freedom of speech and the right to privacy".
• A day earlier, Pavel Durov noted that "protecting children" has become a standard PR move for lawmakers to gain control over media narratives.
Context
This is not Telegram's first clash with regulators over CSAM. In February 2025, the Australian regulator eSafety fined the messenger $600,000 for delaying a response to a similar request. In response, the company abandoned its usual passive stance, moved to active legal defense, and sued Australia, challenging the legality of the fine.
At the end of 2024, Telegram officially agreed to cooperate with the Internet Watch Foundation (IWF) — one of the key organizations maintaining CSAM signature databases. Our team has also extensively analyzed Telegram's internal moderation processes based on reports for eSafety: the disclosed documents reveal that photos and videos in all private groups and channels on the platform are automatically scanned against known illegal materials.
Recently, the UK has been consistently ramping up pressure on social media. Earlier this year, to comply with local legislation, Telegram already had to launch an experimental facial age verification system for British users.
It is worth noting that in recent years, under the banner of child protection, European countries have been increasingly pushing requirements that could violate privacy of communications and live. For example, due to requirements from this same Ofcom, Apple was forced to disable E2E encryption for iCloud backups, and the European Union is developing the EU Chat Control law, which is similar to the British OSA in its invasiveness.
#UK #moderation #laws
🤡30👎13👍12😡10🎉5❤3😱3
Telegram Info English
Telegram Launches Passkey Auth Worldwide Telegram added Passkeys as a login method, now rolling out globally. The key advantage of Passkeys is the ability to log into your account with a single touch, without entering your phone number and looking for an…
Passkeys in Third-Party Telegram Clients
Instructions describing how Passkey authorization works for third-party clients have appeared in the Telegram API documentation.
The main caveat of this new feature is that Passkeys will not be universal. You will not be able to log into the official Telegram app using a passkey created in a third-party client (and vice versa).
As a reminder, late last year Telegram added support for Passkeys — a convenient and secure way to log into your account using biometrics or a PIN code without needing SMS. In our FAQ at the time, we clarified that this option was only available in official Telegram clients.
How This Will Work
Now, developers of alternative clients have the opportunity to implement this feature, but with a significant limitation:
Why Is This Happening?
This kind of isolation is not an artificial restriction imposed by Telegram, but rather a limitation of the Passkeys technology itself, which prohibits using keys on third-party websites and apps to protect against phishing.
The @tginfo editors note that the introduction of Passkeys support for third-party apps is a positive sign. Despite the technically inevitable fragmentation of keys, Telegram is not leaving users of alternative clients without modern security methods, providing them with a reliable alternative to OTP over SMS, which is expensive and sometimes unavailable in countries where Telegram is banned.
#security #authorization #passkey
Instructions describing how Passkey authorization works for third-party clients have appeared in the Telegram API documentation.
The main caveat of this new feature is that Passkeys will not be universal. You will not be able to log into the official Telegram app using a passkey created in a third-party client (and vice versa).
As a reminder, late last year Telegram added support for Passkeys — a convenient and secure way to log into your account using biometrics or a PIN code without needing SMS. In our FAQ at the time, we clarified that this option was only available in official Telegram clients.
💬 You can only use Passkeys to log into an existing account. Creating a new account still requires receiving an SMS code.
How This Will Work
Now, developers of alternative clients have the opportunity to implement this feature, but with a significant limitation:
Passkeys only work in the app where they were created. A Passkey from the official Telegram app will not work for a third-party client, and a key from a third-party app cannot be used in either the official Telegram app or any other unofficial builds.
Why Is This Happening?
This kind of isolation is not an artificial restriction imposed by Telegram, but rather a limitation of the Passkeys technology itself, which prohibits using keys on third-party websites and apps to protect against phishing.
The @tginfo editors note that the introduction of Passkeys support for third-party apps is a positive sign. Despite the technically inevitable fragmentation of keys, Telegram is not leaving users of alternative clients without modern security methods, providing them with a reliable alternative to OTP over SMS, which is expensive and sometimes unavailable in countries where Telegram is banned.
#security #authorization #passkey
Please open Telegram to view this post
VIEW IN TELEGRAM
❤47👍17🎉9🌚3👎2🤡2
Telegram for Android and iOS updated to version 12.7
In the May update, the app received a number of useful tools aimed at combating vote manipulation in polls and reaction spammers in groups.
• Custom styles for the AI editor: Telegram now lets you create your own styles within the AI-powered editor. Simply come up with a name, pick an icon from custom emojis, and write a prompt for the language model.
Finished styles can be shared with other users — when opening the link, they'll see examples of how the style transforms text. Creators can also choose to display a link to their profile in the style preview window.
• New poll tools: Administrators can now restrict voting to subscribers who joined the channel at least 24 hours ago. They can also set geographic restrictions, allowing only users from specific countries to participate in a poll.
• Removing reactions in groups: Group admins with the "Delete messages" permission can now remove reactions to any message. To do so, open the full reactions list and long-press the user.
It is also possible to restrict reactions in group chats — either for all members or for a specific user.
• Business bots for all users: Telegram now allows any user to connect business bots to their account, even without Telegram Premium. These bots can automatically handle chats and interact with customers.
Since the launch of Telegram Business in 2024, this feature had been available exclusively to Premium subscribers.
Other changes
• An option to send scheduled messages silently has been added.
• Markdown files (.md) up to 64 KB now open in Instant View mode.
• Poll statistics are now available for polls with at least 100 votes.
• Bots that power automated tools and AI assistants in Telegram can now be invoked directly from the message input field (guest mode support for bots).
Article: telegram.org/blog/ai-bot-revolution-11-new-features/
Download the update
• Android: Google Play, APK from the official website or verified channel.
• iOS: App Store.
#update #Android #iOS
In the May update, the app received a number of useful tools aimed at combating vote manipulation in polls and reaction spammers in groups.
• Custom styles for the AI editor: Telegram now lets you create your own styles within the AI-powered editor. Simply come up with a name, pick an icon from custom emojis, and write a prompt for the language model.
Finished styles can be shared with other users — when opening the link, they'll see examples of how the style transforms text. Creators can also choose to display a link to their profile in the style preview window.
• New poll tools: Administrators can now restrict voting to subscribers who joined the channel at least 24 hours ago. They can also set geographic restrictions, allowing only users from specific countries to participate in a poll.
• Removing reactions in groups: Group admins with the "Delete messages" permission can now remove reactions to any message. To do so, open the full reactions list and long-press the user.
It is also possible to restrict reactions in group chats — either for all members or for a specific user.
• Business bots for all users: Telegram now allows any user to connect business bots to their account, even without Telegram Premium. These bots can automatically handle chats and interact with customers.
Since the launch of Telegram Business in 2024, this feature had been available exclusively to Premium subscribers.
Other changes
• An option to send scheduled messages silently has been added.
• Markdown files (.md) up to 64 KB now open in Instant View mode.
• Poll statistics are now available for polls with at least 100 votes.
• Bots that power automated tools and AI assistants in Telegram can now be invoked directly from the message input field (guest mode support for bots).
Article: telegram.org/blog/ai-bot-revolution-11-new-features/
Download the update
• Android: Google Play, APK from the official website or verified channel.
• iOS: App Store.
#update #Android #iOS
3👍37❤18🎉5💔5🤯4👎3