Hackers have exploited a vulnerability in Telemessage, which provides modified versions of encrypted messaging applications such as Signals, Telegrams, and WhatsApp to extract archived messages and other data related to U.S. government officials using the tool and companies using the tool, 404 Media reports.

Former U.S. National Security Adviser Mike Waltz is reportedly using the modified version of Telemessage. Telemessage, which is owned by Smarsh, offers customers a way to archive messages (including voice descriptions) from encrypted applications.

404 media said that the information of cabinet members and the Waltzers was not compromised, but the hacker's data contained the content of the message. Contact information for government officials; backend login credentials for TV connections; and more. Data related to U.S. Customs and Border Protection, crypto exchange co-cases, and financial service providers like Scotiabank were extracted by hackers, the report said.

404 media reported that the hacker revealed that the archived chat logs were not end-to-end encryption between the signal provided by Telemessage and the final location of the stored message.

Smarsh, a company that owns Telemessage, told TechCrunch in a statement that it suspended Telemessage's services and is investigating "potential security incidents."

“After discovery, we acted quickly to control it and worked with external cybersecurity companies to support our investigation,” the statement said. “All remote service services have been temporarily suspended out of prudence. All other Smarsh products and services remain in full operation.”

A Coinbase spokesperson said the company "watches these reports closely and evaluates their impact on Coinbase. Currently, there is no evidence to access any sensitive Coinbase customer information, or any customer account, at risk because CoinBase does not use this tool to share passwords, seed phrass or other other data needed to access the account."

Signals, U.S. Customs and Border Protection and Scotiabank did not immediately return a request for comment.

This story has been updated, including comments from Smarsh and Coinbase.