Hacker News is a community-driven platform for sharing and discussing technology news, startups, and programming-related topics. Through user submissions and comments, Hacker News offers insights into emerging technology trends, industry developments, and entrepreneurial ventures. Readers can participate in discussions, share their insights, and stay informed about the latest advancements in technology and innovation.

Hacker News

Security researchers discovered a vulnerability in Telegram's MTProto2.0 encryption protocol that enables algorithm substitution attacks. The attack exploits flexibility in padding methodology to recover encryption keys with high probability and low latency, potentially enabling mass surveillance through compromised third-party clients. While official Telegram clients remain protected due to open-source code and reproducible builds, the researchers recommend revising MTProto2.0's padding approach and propose a minor change that would make the protocol subversion-resistant in most practical scenarios.

Subverting Telegram’s End-to-End Encryption