Telegram Messenger
Company Details
Linkedin ID:
telegram-messenger
Website:
Employees number:
2,158
Number of followers:
48,408
NAICS:
None
Industry Type:
Homepage:
telegram.org
IP Addresses:
0
Company ID:
TEL_7684797
Scan Status:
In-progress
Telegram Messenger Company CyberSecurity Posture
telegram.org
Pure instant messaging — simple, fast, secure, and synced across all your devices.
Telegram Messenger A.I CyberSecurity Scoring
Telegram Messenger Risk Score (AI oriented)Between 750 and 799
Telegram Messenger
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
Telegram Messenger Global Score (TPRM)XXXX
Telegram Messenger
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
Telegram Messenger Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
Telegram
Vulnerability
Rankiteo Explanation
Attack with significant impact with customers data leaks
Description: A resurgence of the CVE-2024-7014 vulnerability termed 'Evilloader,' exploiting Telegram's Android client through a revised tactic involving disguised .htm files, led to unauthorized JavaScript execution. The attackers leveraged Telegram's multimedia framework and manipulated metadata headers to distribute the malicious files. Victims, deceived into playing a pseudo-video file, inadvertently trigger JavaScript execution in their browsers when redirected by a content:// URI scheme. This exploit, primarily targeting unpatched versions of Telegram (≤10.14.4), facilitated data exfiltration and malware activities such as phishing and banking Trojans. Telegram's delayed response in enforcing robust file validation has instigated significant risks to user data integrity and privacy.
Telegram Messenger Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for Telegram Messenger
Incidents vs Technology, Information and Internet Industry Average (This Year)
No incidents recorded for Telegram Messenger in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Telegram Messenger in 2025.
Incident Types Telegram Messenger vs Technology, Information and Internet Industry Avg (This Year)
No incidents recorded for Telegram Messenger in 2025.
Incident History — Telegram Messenger (X = Date, Y = Severity)
Telegram Messenger cyber incidents detection timeline including parent company and subsidiaries
Telegram Messenger Company Subsidiaries
Pure instant messaging — simple, fast, secure, and synced across all your devices.
Loading...
Telegram Messenger Similar Companies
Mynet
Türk internet kullanıcılarının en çok tercih ettiği dijital platform olan Mynet, 1999 yılından bugüne liderliğini koruyor. Kendi alanında sayısız ilki gerçekleştiren öncü internet devi Mynet, Türkiye'nin dijital ekosisteminin kalkınmasına ve gelişmesine destek olmayı sürdürüyor. Her ay ortalama 4
Thirteen-time Webby award-winning Freelancer is the world’s largest freelancing and crowdsourcing marketplace by total number of users and projects posted. More than 80 million registered users have posted over 25 million projects and contests to date in over 3,000 areas as diverse as website develo
OYO is a global platform that aims to empower entrepreneurs and small businesses with hotels and homes by providing full-stack technology products and services that aims to increase revenue and ease operations; bringing easy-to-book, affordable, and trusted accommodation to customers around the worl
Peraton
Do the can't be done. At Peraton, we're at the forefront of delivering the next big thing every day. We're the partner of choice to help solve some of the world's most daunting challenges, delivering bold, new solutions to keep people around the world safer and more secure. How do we do it? By thi
The Death Star
The mission of the Death Star is to keep the local systems "in line". As we have recently dissolved our Board of Directors, there is little resistance to our larger goal of universal domination. Our Stormtroopers are excellent shots and operate with our Navy, and are fielded like marines - sep
Cimpress plc (Nasdaq: CMPR) invests in and builds customer-focused, entrepreneurial, mass-customization businesses for the long term. Mass customization is a competitive strategy which seeks to produce goods and services to meet individual customer needs with near mass production efficiency. Cimpr
Myntra
At Myntra, we don’t just follow fashion - we define it. As India's leading fashion, lifestyle, and beauty destination, we bring together the best of style, technology, and innovation to create a seamless shopping experience for our customers. With a commitment to empowering self-expression, we cura
Avnet
Avnet is a global electronic components distributor with extensive design, product, marketing and supply chain expertise for customers and suppliers at every stage of the product lifecycle. For the past 100 years, Avnet has helped its customers and suppliers around the world realize the transformati
Flipkart
At Flipkart, we're driven by our purpose of empowering every Indian's dream by delivering value through innovation in technology and commerce. With a customer base of over 350 million, product coverage of over 150 million across 80+ categories, a focus on generating direct and indirect employment an
.png)
Telegram Messenger CyberSecurity News
November 25, 2025 08:00 AM
Hackers Bypass Signal, Telegram And WhatsApp Encryption To Read Messages
How private and secure are your end-to-end encrypted instant messages? Not so much when Sturnus attacks.
November 25, 2025 08:00 AM
CISA urges mobile security as it warns of sophisticated spyware attacks
The agency's rare warning about spyware activity comes as it updated mobile security guidance to reflect evolving threats.
November 19, 2025 02:49 PM
Cybersecurity experts warn of rising fraud linked to APK files on Telegram
In Uzbekistan, around 40 percent of Telegram users are encountering incidents in which funds are withdrawn from their bank cards or their...
November 12, 2025 08:00 AM
Telegram bots exploited in European credential phishing campaign
Manufacturing, government, telecommunications, energy, automotive, and professional services organizations in Germany, Hungary, Slovakia,...
November 07, 2025 11:10 AM
11 Dark Web Telegram Groups Cybersecurity Teams Should Monitor
"Dark Web Telegram Groups aren't quite the Wild West for hacktivists and cybercriminals that they were a little over a year ago, but it's still an important...
October 27, 2025 07:00 AM
⚡ Weekly Recap: WSUS Exploited, LockBit 5.0 Returns, Telegram Backdoor, F5 Breach Widens
Active WSUS exploits, LockBit 5.0's comeback, a Telegram backdoor, and F5's hidden breach — this week's biggest cyber threats.
October 25, 2025 07:00 AM
Hackers Weaponizing Telegram Messenger with Dangerous Android Malware to Gain Full System Control
A sophisticated backdoor named Android.Backdoor.Baohuo.1.origin has been discovered in maliciously modified versions of Telegram X messenger...
October 24, 2025 07:00 AM
Baohuo Android Malware Hijacks Telegram Accounts via Fake Telegram X
A new Android threat is spreading fast through fake versions of Telegram X, giving attackers complete control over users' accounts.
October 24, 2025 07:00 AM
Telegram Messenger Abused by Android Malware to Seize Full Device Control
Security researchers at Doctor Web have uncovered a sophisticated Android backdoor disguised as Telegram X that grants cybercriminals...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
Telegram Messenger CyberSecurity History Information
Official Website of Telegram Messenger
The official website of Telegram Messenger is https://www.telegram.org.
Telegram Messenger’s AI-Generated Cybersecurity Score
According to Rankiteo, Telegram Messenger’s AI-generated cybersecurity score is 761, reflecting their Fair security posture.
How many security badges does Telegram Messenger’ have ?
According to Rankiteo, Telegram Messenger currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Telegram Messenger have SOC 2 Type 1 certification ?
According to Rankiteo, Telegram Messenger is not certified under SOC 2 Type 1.
Does Telegram Messenger have SOC 2 Type 2 certification ?
According to Rankiteo, Telegram Messenger does not hold a SOC 2 Type 2 certification.
Does Telegram Messenger comply with GDPR ?
According to Rankiteo, Telegram Messenger is not listed as GDPR compliant.
Does Telegram Messenger have PCI DSS certification ?
According to Rankiteo, Telegram Messenger does not currently maintain PCI DSS compliance.
Does Telegram Messenger comply with HIPAA ?
According to Rankiteo, Telegram Messenger is not compliant with HIPAA regulations.
Does Telegram Messenger have ISO 27001 certification ?
According to Rankiteo,Telegram Messenger is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Telegram Messenger
Telegram Messenger operates primarily in the Technology, Information and Internet industry.
Number of Employees at Telegram Messenger
Telegram Messenger employs approximately 2,158 people worldwide.
Subsidiaries Owned by Telegram Messenger
Telegram Messenger presently has no subsidiaries across any sectors.
Telegram Messenger’s LinkedIn Followers
Telegram Messenger’s official LinkedIn profile has approximately 48,408 followers.
Telegram Messenger’s Presence on Crunchbase
Yes, Telegram Messenger has an official profile on Crunchbase, which can be accessed here: https://www.crunchbase.com/organization/telegram-messenger.
Telegram Messenger’s Presence on LinkedIn
Yes, Telegram Messenger maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/telegram-messenger.
Cybersecurity Incidents Involving Telegram Messenger
As of December 22, 2025, Rankiteo reports that Telegram Messenger has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
Telegram Messenger has an estimated 13,273 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at Telegram Messenger ?
Incident Types: The types of cybersecurity incidents that have occurred include Vulnerability.
Incident Details
Can you provide details on each incident ?
Title: Evilloader Exploit on Telegram Android Client
Description: A resurgence of the CVE-2024-7014 vulnerability termed 'Evilloader,' exploiting Telegram's Android client through a revised tactic involving disguised .htm files, led to unauthorized JavaScript execution. The attackers leveraged Telegram's multimedia framework and manipulated metadata headers to distribute the malicious files. Victims, deceived into playing a pseudo-video file, inadvertently trigger JavaScript execution in their browsers when redirected by a content:// URI scheme. This exploit, primarily targeting unpatched versions of Telegram (≤10.14.4), facilitated data exfiltration and malware activities such as phishing and banking Trojans. Telegram's delayed response in enforcing robust file validation has instigated significant risks to user data integrity and privacy.
Type: Vulnerability Exploit
Attack Vector: Disguised .htm files leading to unauthorized JavaScript execution
Vulnerability Exploited: CVE-2024-7014
Motivation: Data ExfiltrationPhishingBanking Trojans
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Vulnerability.
How does the company identify the attack vectors used in incidents ?
Identification of Attack Vectors: The company identifies the attack vectors used in incidents through Disguised .htm files.
Impact of the Incidents
What was the impact of each incident ?
Incident : Vulnerability Exploit TEL906030525
Systems Affected: Telegram Android Client
Brand Reputation Impact: Significant risks to user data integrity and privacy
Which entities were affected by each incident ?
Incident : Vulnerability Exploit TEL906030525
Entity Name: Telegram
Entity Type: Messaging Application
Industry: Technology
Data Breach Information
What type of data was compromised in each breach ?
Incident : Vulnerability Exploit TEL906030525
Data Exfiltration: Yes
Initial Access Broker
How did the initial access broker gain entry for each incident ?
Incident : Vulnerability Exploit TEL906030525
Entry Point: Disguised .htm files
Post-Incident Analysis
What were the root causes and corrective actions taken for each incident ?
Incident : Vulnerability Exploit TEL906030525
Root Causes: Delayed response in enforcing robust file validation
Additional Questions
Impact of the Incidents
Initial Access Broker
What was the most recent entry point used by an initial access broker ?
Most Recent Entry Point: The most recent entry point used by an initial access broker was an Disguised .htm files.
.png)
Latest Global CVEs (Not Company-Specific)
Description
A vulnerability has been found in SeaCMS up to 13.3. The affected element is an unknown function of the file js/player/dmplayer/dmku/class/mysqli.class.php. Such manipulation of the argument page/limit leads to sql injection. The attack can be executed remotely. The exploit has been disclosed to the public and may be used.
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in HappyDevs TempTool allows Stored XSS.This issue affects TempTool: from n/a through 1.3.1.
Risk Information
cvss3
Base: 6.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L
Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Tormorten WP Microdata allows Stored XSS.This issue affects WP Microdata: from n/a through 1.0.
Risk Information
cvss3
Base: 6.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L
Description
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in HappyDevs TempTool allows Retrieve Embedded Sensitive Data.This issue affects TempTool: from n/a through 1.3.1.
Risk Information
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Description
A vulnerability has been found in Tenda FH1201 1.2.0.14(408). Affected is the function sprintf of the file /goform/SetIpBind. Such manipulation of the argument page leads to stack-based buffer overflow. The attack may be performed from remote. The exploit has been disclosed to the public and may be used.
Risk Information
cvss2
Base: 9.0
Severity: LOW
AV:N/AC:L/Au:S/C:C/I:C/A:C
cvss3
Base: 8.8
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
cvss4
Base: 7.4
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
- https://github.com/z472421519/BinaryAudit/blob/main/PoC/BOF/Tenda_FH1201/SetIpBind/SetIpBind.md
- https://github.com/z472421519/BinaryAudit/blob/main/PoC/BOF/Tenda_FH1201/SetIpBind/SetIpBind.md#reproduce
- https://vuldb.com/?ctiid.337689
- https://vuldb.com/?id.337689
- https://vuldb.com/?submit.719154
- https://www.tenda.com.cn/
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=telegram-messenger' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
