Post #661

❗️Misleading Information: A new post by the engineering group @exploitorg states that a possible RCE or "breach" of sorts, was found in Telegram for Desktop, causing users to worry. Although this is indeed a "flaw", a fundamental fact was left unmentioned. When a message of this kind is sent to an unsuspecting user on TDesktop, there is a prompt that is displayed before the program is allowed to run at all, which specifically states "This file has the extension .exe. It may harm the computer." wherein the user is told if they are certain they wish to run the program, followed by an option to either allow or prevent the computer from executing the unknown exe. This means that the program is not run without the users intent. The program will only run if the user accepts the prompt. Additionally, this prompt will always display every time the file is loaded; it will only disappear if the user specifically chooses to select "Don't ask me again", which is what the engineering group did in the video.