No. Information Downloaded from CDN caching nodes is always verified via the receiving Telegram application by way of a hash: attackers won’t manage to replace any files with their own versions. Customer-Server conversation is shielded from MiTM-attacks through DH vital technology by way of a server RSA general public essential https://www.mtpoto.com/