28 Suggestions found
0:07
Added
Request 2FA for important actions
Right now, anyone who accesses your account can delete it, change phone number, or close all of your sessions. Solution: request 2FA for these actions.
2FA via TOTP or hardware token
2FA via TOTP/Hardware token
FIDO2 compatibility. Make Telegram accounts more secure against unauthorised access by allowing security key 2FA for the strongest security, and by allowing app based TOTP for medium security. SMS TOTP is not enough.
FIDO2 compatibility. Make Telegram accounts more secure against unauthorised access by allowing security key FIDO2 2FA for the strongest security, and by allowing non-SMS TOTP for medium security. SMS…
Deleting a chat history or an entire chat should require 2fa password if it has been set up
In my sleep I managed to nuke the entire conversation I had with my best friend, no way to bring it back. An "Are you sure" just isn't enough. If 2FA is enabled, it could perfectly act as a fail safe…
Ask a 2FA password when log out devices
That regardless of the platform, everytime you need to logout a device (or all devices) that the app asks the 2FA password. It avoids that an unauthorized user access a device and logs you out of all…
View the 2FA Recovery Email set
An option to view the recovery email set for two-step verification password recovery.
Security feature (Replace login method after registration) (2FA)
An option to export two-factor key. If all session broken, but key exist, you can enter code same sms code to login. Also an option to change that key. Or block. (Default is locked).
Setting up 2FA password, all the device should be logged out
… device not applying the 2FA still hacker can use my account ,if we creating 2FA if should sign out from all device and it has ask for 2fA password instead of that if you are already logged in another…
If 2FA enabled, require password before allowing chat deletion or clear chat history
An option to enable 2FA password to be required before deleting a chat or clearing chat history. On Android, it is possible to accidentally delete chat history with an accidental swipe and a tap in the…
2FA need For secret chat
Need A 2FA For secret Chat .. like in facebook and instagram they are providing the otp in Authenticator for 30 so that the OTP will change and the numbers can be change it will be the best for the secret…
After each update, please do not display a reminder of the 2fa password in the app' settings
I'm talking about the message "Your password. Your account is protected by 2-Step Verification. Do you still remember your password? Yes, definitely / Not sure".
Added
Tmail - Telegram Email Service
… code to SMS/Telegram and then 2FA password You can also access mails by Telegram Messenger itself as an integrated part of it. All you need to enter is your 2FA password in this form. So for the inbox…
0:03
Added
Redesign the signup (onboarding) page with Utya Duck animated stickers & switch to the new Telegram logo
Utya Duck animated stickers found on telegram.org & switch to the new Telegram logo and optionally prompt for [2FA / Proxy] setup if needed.
Allow usual bots use 'requires_password' in inline butttons.
… a two-factor authentication (2FA) password within Telegram. For instance, if a user's account is compromised, implementing 2FA would prevent a hacker from causing any damage to the user's finances…
Added
Don't use Telegram Security Notifications for bug platform posts
… (the same one that sends you 2FA-codes and login attempts!) B) The (user)name was clickable and transferred users to a channel. This is possible thanks to the following security flaws: 1. Using Telegram…
0:10
Added
Sign In by QR code using system camera
… You still have to enter your 2FA code This poses no threat to the user who is scanning Even if you have to show a modal with a confirmation, the app should take you to the scanner instead of telling…
@dotvhs add an email login way on Telegram. :( It will help if you lost your number but can't acess receive the code from another Telegram Client
Add an email login way on Telegram. :( It will help if you lost your number but can't receive the code from another Telegram Client And PWEASE add an 2FA to acess the EMAIL (Google Auth, Microsoft Auth…
Login with Telegram ID and cloud password
… enable my cloud password (2fa) and it and my phone number or Telegram ID to login without verify code. It's very useful so I wont lose my account even if I lost my sim card or if I want to login into…
Transfer owner of sticker/emoji packs
… owner of that sticker pack. 2FA will be required. Emoji packs are the same.
Parental Control (self, with password / location) for Premium
… order to buypass block) 5. 2FA unlock (buy auth app code)
Add a way to recovery account if telegram terminate all your sessions and your account phone number is not updated
… use the email connected with 2fa as a way to update the account's phone number or something else but now users are alone with bugs. I've lost an account two weeks ago and no help from the support…
Feature Request: Password/PIN Confirmation for Saved Messages Deletion
Please add an extra confirmation step (like password, PIN, or 2FA) before deleting messages from Saved Messages. These messages often contain very valuable information, and it’s too easy to delete them…
Telegram Security Overhaul
… deleted texts) 2. More 2FA options. Users should be allowed to use the 2FA app of their choosing. 3. Encrypted chats… while implementing full E2EE could harm convenience, telegram could allow you to…
An per-session option to control access to takeout(data export) feature.
… toggles. While toggled, a 2FA password is requested, and the current session(invoking the method to change settings) should be authorized for more than 24 hours ago to make modifications.
Accound security notifications for trusted contact (friend)
… (by check): new session, 2FA passed, entered wrong local passcode on any device (after X seconds if not entered correct), It feature can be used as notification, that I have problems.
Ability to enable two-factor authentication in Bot API.
… authentication or ask to turn 2fa on. Such features will increase security. There is not such ability in Bot API Now, an attacker could steal an unlimited amount of such values from stolen accounts.…
Added
mfa
… a time-based token as 2FA. For example using the Microsoft Authenticator. I know tg uses SMS login which is ‘what people have’, Token is also ‘what people have’ but the difference is very obvious:…
global chat password
… then spam others. Qrcode and 2fa are easily overcome when you give them these credentials. (for example i thought that i was asked to log in with telegram to authenticate like log in with google /…