Risky Bulletin: Telegram’s Shift in Cooperation and the Expanding Cyber Scam Ecosystem

Episode: Srsly Risky Biz: Telegram is cooperating with authorities, for now
Release Date: May 22, 2025
Host: Patrick Bray
Guest: Tom Uren, Policy and Intelligence Editor

Introduction

In this episode of Risky Bulletin, Patrick Bray and Tom Uren delve into the evolving landscape of cybercrime, focusing on Telegram’s recent cooperation with authorities in shutting down massive criminal marketplaces. They also explore the critical role Meta plays in the scam economy and discuss alarming findings about the encryption practices of popular Chinese apps. This comprehensive discussion sheds light on the intricate challenges and responses within the cybersecurity realm.

Telegram's Cooperation with Authorities

Shutting Down Criminal Marketplaces

At the heart of this episode is the significant development surrounding Telegram, a platform previously notorious for hosting vast criminal marketplaces. Tom Uren explains, “Telegram shut down two huge guarantee markets,” referring to platforms where criminals trade services such as deep fakes and malware (“[01:15]”). These marketplaces, particularly thriving in Southeast Asia, have amassed staggering figures—one such marketplace facilitated over US$24 billion in cryptocurrency transactions within just three to four years, engaging nearly 900,000 users.

Trigger for Change: Pavel Durov’s Arrest

The turning point for Telegram’s cooperation with authorities stems from the arrest of its CEO, Pavel Durov, in France last August. Uren provides insight into the catalyst: “They realized that over something like nine or ten years, Telegram had just not cooperated with nearly two and a half thousand requests” (“[02:30]”). This persistent lack of cooperation led French prosecutors to charge Durov with facilitating widespread crime, compelling Telegram to alter its stance nearly overnight.

Future of Telegram’s Cooperation

Despite this shift, questions loom over the sustainability of Telegram's newfound cooperation. Uren muses, “Do those motivations continue for him over time, or does he revert back to type?” (“[05:28]”). The introduction of the EU’s Digital Services Act may serve as a regulatory lever to maintain accountability, but uncertainties remain about Telegram’s long-term compliance.

Pavel Durov’s Predicament and Alleged Ties to Russian Intelligence

Adding complexity to the situation, Durov finds himself navigating pressures from multiple fronts. He is reportedly “supporting efforts from the failed candidate to have the election annulled” and claims the French government sought to “silence conservative voices” through Telegram (“[07:08]”). Uren raises suspicions about Durov’s relationships, suggesting, “There’s lots of circumstantial evidence that he's more closely related to Russian intelligence than he portrays” (“[09:38]”). This dual pressure—from European authorities seeking compliance and alleged Russian interests pushing disinformation—puts Durov in a precarious position, threatening the platform’s continued collaboration with law enforcement.

Meta’s Central Role in the Scam Economy

Facilitation of Scam Advertisements

Shifting focus, the discussion turns to Meta (formerly Facebook) and its inadvertent role in sustaining the scam economy. Uren references a Wall Street Journal article highlighting how Meta prioritizes certain types of advertisements over others. Specifically, while Meta intensifies efforts against human trafficking ads, scam advertisements remain alarmingly prevalent (“[11:49]”). This imbalance stems from economic incentives: “The harder they make it, the less money they make,” notes Uren, pointing to the inherent conflict between profitability and stringent ad moderation (“[12:15]”).

Economic Incentives Versus Ethical Responsibility

The conversation underscores the perverse incentives within Meta’s advertising model. Bray adds, “The concern is that they're going to add friction to the process of buying advertisements, and that will just pull their revenue down across the board” (“[13:20]”). Both hosts agree that relying solely on corporate self-regulation is insufficient, emphasizing the necessity for government intervention to enforce due diligence and protect users from predatory scams.

The Need for Regulatory Oversight

Uren articulates, “What is the right balance for a company versus what is the right balance for society?” (“[13:53]”). This distinction highlights the fundamental role of government in setting standards that prioritize societal well-being over corporate profits, advocating for regulations that compel platforms like Meta to take more decisive actions against scam advertisements.

Vulnerable Encryption in Chinese Apps

Study on Encryption Practices

Another critical segment of the episode examines a collaborative study by Princeton University and the Citizen Lab, which analyzed nearly 1,700 Chinese apps available in Chinese app stores. The findings were disconcerting: most of these apps employed severely flawed encryption practices, rendering them vulnerable to exploitation. Uren explains, “They found that mostly there's like nine different families of cryptographic systems, and almost all of them had faults that you could exploit” (“[16:44]”).

Implications for Security and Surveillance

The study raises poignant questions about whether these encryption weaknesses are a result of deliberate government policy or technological shortcomings. With “nearly every app being exploitable in some way,” the potential for man-in-the-middle attacks is high, especially given China’s robust Great Firewall infrastructure. Bray muses on the possible motivations behind such practices, pondering if distrust of Western crypto algorithms plays a role (“[15:41]”).

Balancing Internal Security and Encryption Robustness

Uren posits that China’s priority on internal stability might drive these encryption flaws, stating, “If this is a policy decision, if this is the way that they want their Internet to be, I don't think they've got a choice” (“[18:03]”). This perspective suggests that the Chinese government prioritizes surveillance and control over the security of communications, potentially compromising the integrity of millions of app users.

Conclusion

In this episode, Patrick Bray and Tom Uren provide a thorough analysis of significant developments in the cybersecurity landscape. From Telegram’s reluctant cooperation with authorities following Pavel Durov’s legal troubles to Meta’s inadvertent support of the scam economy, and unsettling encryption practices within Chinese apps, the discussion underscores the complexities and interdependencies that shape cyber policy and intelligence today. The insights shared not only highlight ongoing challenges but also emphasize the critical need for robust regulatory frameworks to mitigate cyber threats and protect digital ecosystems.

Notable Quotes:

• Tom Uren: “Telegram shut down the two biggest of these marketplaces... [and] it was because the CEO Pavel Durov was arrested in France last year” ([01:15]).

• Patrick Bray: “When you've got nearly a million people participating in a thriving criminal marketplace, it's not like Telegram doesn't know about it” ([04:47]).

• Tom Uren: “There is a problem... it makes you realize there is a problem” ([14:34]).

• Tom Uren: “If this is a policy decision... I don't think they've got a choice” ([18:03]).

For more in-depth analyses and updates on cybersecurity news, subscribe to the Seriously Risky Business newsletter at Risky Biz.