Michaela Alvez
Crypto scammers have shifted focus to Telegram malware scams, which reportedly surged by 2,000% since November, now outpacing traditional phishing attempts.
In a January 15 post on X, security firm Scam Sniffer revealed that these scams differ from the usual “connect wallet” tactics, where fraudsters trick users into linking their digital wallets to fake platforms to steal funds.
Scammers have shifted tactics, now spreading advanced malware through counterfeit verification bots found in fraudulent trading, airdrop, and alpha groups.
Scam Sniffer reports that once users run the malicious code or install the fake “verification” software, scammers gain access to sensitive data, including passwords, wallet files, clipboard contents, and browser information, leaving victims vulnerable to theft.
The firm identified at least two fraudulent verification bots, OfficiaISafeguardRobot and SafeguardsAuthenticationBot, used by scammers to distribute Telegram malware. Scam Sniffer said that attackers have adapted their strategies as users grow increasingly cautious of signature scams.
By utilizing malware, scammers can gain deeper access to victims’ systems, making it harder to trace losses and leaving users more exposed to financial harm.
Concerns over Telegram malware and scams began to surface in December 2024, when Scam Sniffer detected a rise in scammers impersonating well-known crypto influencers on X. These fraudsters would create fake accounts and lure users into Telegram groups, promising exclusive investment advice in exchange for engagement.
Another method being used by scammers involves creating fake Cloudflare verification pages. In this variant, users are prompted to copy and paste what appears to be verification text, unknowingly injecting malicious code into their clipboard.
In a January 4 update, Scam Sniffer explained that scammers are shifting to more sophisticated tactics using Telegram bots because malware attacks are harder to track, making it more difficult to measure losses.
To avoid falling victim to these scams, it recommends not running unfamiliar commands, refraining from installing unverified software, steering clear of clipboard-based verification, being cautious of urgent group invites, and using hardware wallets for added security.
Read More
- Telegram Wallet Suspends In-App Functionality for UK Residents
- Telegram Makes Controversial Change to Privacy Policy Following CEO’s Arrest
- Telegram CEO’s Legal Troubles Escalate as Indonesia Threatens Nationwide Telegram Ban
Michaela has no crypto positions and does not hold any crypto assets. This article is provided for informational purposes only and should not be construed as financial advice. The Shib Magazine and The Shib Daily are the official media and publications of the Shiba Inu cryptocurrency project. Readers are encouraged to conduct their own research and consult with a qualified financial adviser before making any investment decisions.
