I just found out about the chat leaks that led to former Puerto Rico Governor #RicardoRosselló stepping down. Does anyone know whether these leaked messages were obtained by compromising the OS on one (or more) of the devices involved in the chat, or #Telegram itself? All the articles I've found discuss the political results of the leaks, not the tech details.
@strypey there's also the low tech possibility that a participant leaked or left their phone unlocked to consider? (I'm also curious to find out how it happened, we'll probably not find out though )
@michel_slm true. Compromising the user is also a distinct possibility. But it just seems irresponsible for journalists to report that someone's #E2EE chat messages from Service X have been leaked without saying either a) that there is *no* evidence Service X was compromised, OR b) saying that it was compromised, what the evidence is, and where more information can be found.
Maybe via an attack on voicemail, as discussed here:
http://nakedsecurity.sophos.com/2019/07/30/hackers-target-telegram-accounts-through-voicemail-backdoor/
