DDoSecrets publishes 410 GB of heap dumps, hacked from TeleMessage’s archive server

This morning, Distributed Denial of Secrets published 410 GB of data hacked from TeleMessage, the Israeli firm that makes modified versions of Signal, WhatsApp, Telegram, and WeChat that centrally archive messages. Because the data is sensitive and full of PII, DDoSecrets is only sharing it with journalists and researchers.

There’s a lot of background, so here’s a quick timeline of events with relevant links:

• March: Then-national security advisor Mike Waltz invited a journalist into a Signal group where they planned war crimes. This led to Congressional hearings about Trump officials using Signal groups to discuss classified information.
• May 1: Waltz (the day he was demoted from position of national security advisor) was photographed using TM SGNL, a modified version of Signal made by TeleMessage. He had texts up with Tusli Gabbard, JD Vance, and Marco Rubio.
• May 3: I published the source code of the TM SGNL to GitHub.
• May 4: TeleMessage got hacked, which I reported in 404 Media with Joseph Cox.
• May 5: TeleMessage got hacked again by someone else, as NBC News reported.
• May 6: I published analysis of the TM SGNL source code, along with some of the hacked data, that prove the TeleMessage lied about its products supporting end-to-end encryption.
• May 18: I published details about the TeleMessage server’s vulnerability in WIRED. TLDR: if anyone on the internet loaded the URL archive.telemessage.com/management/heapdump, they would download a Java heap dump from TeleMessage’s archive server, containing plaintext chat logs, among other things.

Now, DDoSecrets has published 410 GB of these TeleMessage heap dumps. Here’s the DDoSecrets description of the release:

Thousands of heap dumps taken May 4, 2025 from TeleMessage, which produces software used to archive encrypted messaging apps such as Signal and WhatsApp. The service came to public notice in 2025 when it was reported that former national security adviser Mike Waltz used TeleMessage while communicating with members of the Trump administration, including Vice President JD Vance and Director of National Intelligence Tulsi Gabbard. TeleMessage has been used by the federal government since at least February 2023.

Some of the archived data includes plaintext messages while other portions only include metadata, including sender and recipient information, timestamps, and group names. To facilitate research, Distributed Denial of Secrets has extracted the text from the original heap dumps.

It seems that the SignalGate saga of staggering incompetence is not yet complete. I’m digging into this data right now. It’s bonkers.

Note: I’m a member of the DDoSecrets collective. If you can, donate! DDoSecrets operates on a shoestring budget and does incredibly impactful work.

Keep your files stored safely and securely with the SanDisk 2TB Extreme Portable SSD. With over 69,505 ratings and an impressive 4.6 out of 5 stars, this product has been purchased over 8K+ times in the past month. At only $129.99, this Amazon’s Choice product is a must-have for secure file storage.

Help keep private content private with the included password protection featuring 256-bit AES hardware encryption. Order now for just $129.99 on Amazon!

Help Power Techcratic’s Future – Scan To Support

If Techcratic’s content and insights have helped you, consider giving back by supporting the platform with crypto. Every contribution makes a difference, whether it’s for high-quality content, server maintenance, or future updates. Techcratic is constantly evolving, and your support helps drive that progress.

As a solo operator who wears all the hats, creating content, managing the tech, and running the site, your support allows me to stay focused on delivering valuable resources. Your support keeps everything running smoothly and enables me to continue creating the content you love. I’m deeply grateful for your support, it truly means the world to me! Thank you!