TeleMessage, a messaging application based on the Signal framework and created by Smarsh, was recently the subject of a breach. In response, the company has moved quickly. Headquartered in Israel, TeleMessage provides clients with a platform to archive conversations—including voice memos—made on encrypted apps. In light of investigating what it is calling a “potential security incident,” Smarsh has put a suspension on all TeleMessage services.
Smarsh confirmed its decision to suspend the services and investigate the incident to TechCrunch. In a press release, the company doubled down on its quick reaction to the mess.
“Upon detection, we acted quickly to contain it and engaged an external cybersecurity firm to support our investigation,” – Smarsh
The nature of the potential breach is especially troubling given that TeleMessage has been used by U.S. government officials. As a precaution until the risk can be fully mitigated, Smarsh has paused all TeleMessage services. Despite this, all of its other products and services continue to function normally.
Meanwhile, Coinbase, the biggest cryptocurrency exchange in the U.S., is watching the development with a hawk eye and calculating the effects it might have on its business. A spokesperson from Coinbase insisted the company doesn’t use TeleMessage to exchange sensitive information.
“At this time, there is no evidence any sensitive Coinbase customer information was accessed or that any customer accounts are at risk, since Coinbase does not use this tool to share passwords, seed phrases, or other data needed to access accounts,” – Coinbase spokesperson
Despite fears over TeleMessage, Coinbase and Smarsh have made history possible. In essence, they further assure us there’s no evidence indicating sensitive customer data has been compromised, nor are customer accounts at risk from this incident.
We’ve submitted comments regarding the security breach to all of the following parties. This has included U.S. Customs and Border Protection and Scotiabank. So far, neither organization has made that response public.
As the investigation continues, Smarsh is working diligently to determine the extent of the breach and to implement necessary safeguards for its users. The company’s quick response and communication makes clear how integrated cybersecurity is in protecting sensitive communications. This is especially pertinent for elected officials and public agencies that handle sensitive, private data.
Leave a Reply