Ddos 
The Telegram development team has responded to security researchers’ reports concerning a vulnerability that facilitates the exfiltration of authentic IP addresses via maliciously crafted hyperlinks. The messaging platform has pledged to implement a cautionary prompt that will manifest whenever a user engages with a proxy-related link.
The crux of the predicament resides in the idiosyncrasies of how the client processes proxy-server URLs. Upon interaction, the Telegram application unilaterally attempts to verify the reachability of the specified proxy. In that instant, a direct connection is established with the host, thereby disclosing the user’s genuine IP address to the server administrator—notwithstanding the user’s assumption of anonymity.
The peril of this stratagem lies in the ease with which such deleterious links can be camouflaged; they may masquerade as a benign username mention or a reputable website URL while secretly harboring an address in the form of t.me/proxy?server=... associated with an adversary’s infrastructure. No confirmation requests or warnings currently precede this automated verification. This methodology mirrors the classic NTLM hash exfiltration attacks in Windows, wherein the operating system initiates a network request clandestinely, devoid of user awareness.
‼️Telegram has a vulnerability that allows proxy bypass by sending a link disguised as a username
When the victim clicks the mentioned username, they connect to the specified proxy, exposing their IP address. pic.twitter.com/tLD662nQ0J
— International Cyber Digest (@IntCyberDigest) January 10, 2026
This vulnerability impacts Telegram clients on both Android and iOS. For individuals who rely on the platform for the sanctity of sensitive discourse, this represents a formidable risk, as a single inadvertent click suffices to compromise one’s geographic and network identity.
In an official communique, the platform emphasized that this phenomenon is not unique to their service. “Any website or proxy owner can see the IPs of those who access it regardless of platform,” the statement read. The developers further posited that “This is no more relevant to Telegram than WhatsApp or any other web service.” Nevertheless, the team has committed to introducing “a warning that will show when clicking proxy links so users can be aware of disguised links.”
Donate