Ok, lil heads up here for Telegram users:
Sounds like a 9.8 CVSS vulnerability in Telegram that may allows for zero-click remote code execution was discovered yesterday.
Very little info, but until we know more, disable automatic downloads on all your devices with TG installed.
