• TeleMessage, an app used by Trump officials, suspends services after a hacker claims to have stolen files, including archived messages.
• The hack raises concerns about the security of the app's archiving feature and potential vulnerabilities in storing sensitive government communications.
• Customs and Border Protection has paused its use of TeleMessage, and the incident highlights ongoing debates regarding secure communication and compliance with record-keeping laws.

TeleMessage, a modified version of Signal used by some government agencies and companies to archive chats for compliance, has suspended all services following claims of a data breach. The company, Smarsh, is investigating the incident and has engaged a cybersecurity firm. The suspension comes after reports that a hacker stole files from TeleMessage, potentially exposing archived messages and raising concerns about the security of sensitive government communications. The app's use had previously come under scrutiny after Mike Waltz was photographed using it during a cabinet meeting, reigniting concerns about secure communication methods within the administration.

• What: TeleMessage, a messaging app used by government officials for archiving communications, experienced a data breach, leading to the suspension of its services.
• Who: Mike Waltz, former Trump administration officials, Smarsh (the company that owns TeleMessage), hackers, Customs and Border Protection, Coinbase, government agencies, Thomas Richards (security expert).
• When: The hack was reported on a Sunday, leading to the service suspension on Monday, May 5, 2025. Waltz was photographed using the app in a Cabinet meeting the previous week.
• Where: TeleMessage is an Israeli-founded company. Affected parties include US government agencies and companies.

The TeleMessage hack underscores the inherent risks in archiving encrypted communications, particularly for government officials subject to record-keeping laws. While apps like Signal offer secure, end-to-end encrypted messaging, modified versions that archive messages for compliance introduce vulnerabilities. The incident highlights the tension between the need for secure communication and the legal requirement to preserve government records. The long-term impact could include increased scrutiny of government communication practices and a reevaluation of the tools used to balance security and compliance.

"Out of an abundance of caution, all TeleMessage services have been temporarily suspended."

"Taking a secure messaging application and changing a core functionality such as backing up messages essentially breaks the security model."

"At this time, there is no evidence any sensitive Coinbase customer information was accessed or that any customer accounts are at risk, since Coinbase does not use this tool to share passwords, seed phrases, or other data needed to access accounts."

TeleMessage's suspension of services following the reported hack reflects the severity of the security breach and the potential compromise of archived messages. While the investigation is ongoing, the incident raises serious questions about the security of messaging apps used by government officials and highlights the ongoing challenge of balancing secure communication with compliance requirements. Further developments are expected as investigations proceed and the full scope of the breach is determined.