Telegram’s MTProto protocol leaks persistent identifiers enabling user tracking

📅 22 May 2026 at 18:45 UTC📰 Cyber InsiderView original source ↗

A newly published technical review of Telegram’s MTProto protocol warns that the messaging platform exposes persistent device identifiers to passive network observers, potentially allowing users to be tracked across networks, locations, and sessions without breaking Telegram’s encryption. The researchers say the issue remains unresolved because Telegram still does not mandate transport-layer encryption for MTProto traffic. … The post Telegram’s MTProto protocol leaks persistent identifiers enabling user tracking appeared first on CyberInsider.

🤖 AI BriefingAuto-generated threat analysis

🔍Threat Overview

Telegram's MTProto protocol leaks persistent identifiers, allowing users to be tracked across networks and sessions without breaking encryption. This vulnerability remains unresolved due to lack of transport-layer encryption for MTProto traffic.

⚙️Technical Details

Affected Systems

Telegram clients on AndroidTelegram Desktop on macOS

Attack Vectors

MTProto traffic over raw TCP connectionsPassive monitoring of traffic between users and Telegram servers

💥Impact Assessment

Severity: high

Who Is at Risk

Users of Telegram, particularly those using Android or desktop platforms

🛡️Recommended Actions

1Use alternative messaging platforms with end-to-end encryption

2Disable MTProto traffic for sensitive communications

3Monitor network activity for potential tracking attempts

📦Affected Products

Telegram clients on AndroidTelegram Desktop on macOS

Read the full article

This is a curated summary. The complete article is available at Cyber Insider.

Read on Cyber Insider ↗

← Back to feed