Cybersecurity professional John Patrick Lita (Infosecdad) has discovered a scheme where threat actors compromise Telegram accounts and use them to target additional users.
Attackers initiate the scam by sending unsolicited private messages (PMs) to users, asking for a screenshot of their account, which can expose personal information such as the user's mobile number and Telegram name.
Threat actors may also send suspicious QR codes designed to bypass two-factor authentication (2FA) or malicious links that lead to harmful websites or trigger the downloading of malware onto users' devices.
Users should verify the authenticity of unexpected or unusual messages received from their Telegram contacts by contacting the sender directly using their mobile number to confirm the legitimacy of the message.
In the face of ever-evolving cybersecurity threats, staying informed and adopting best practices can help users minimize risks and maintain the security of their online presence.
Telegram accounts compromised, users warned to exercise caution
At a glance
Cybersecurity professional John Patrick Lita also known as Infosecdad has issued an urgent warning to Telegram users after discovering a scheme in which threat actors compromise accounts on the popular messaging platform. Lita observed that attackers are leveraging compromised accounts to target additional users, prompting the need for increased security measures.
According to Lita, the attackers initiate the scam by sending unsolicited private messages (PMs) to unsuspecting users, claiming that they have another account on Telegram. The perpetrators then request a screenshot of the user's account, which can expose personal information such as the user's mobile number and Telegram name. Users are urged not to share such screenshots with anyone.
In addition to this tactic, threat actors may also send suspicious QR codes designed to bypass two-factor authentication (2FA) or malicious links that lead to harmful websites or trigger the downloading of malware onto the users' devices. Telegram users are advised to avoid scanning these QR codes and refrain from clicking on any suspicious links.
To further protect themselves, users should verify the authenticity of any unexpected or unusual messages received from their Telegram contacts. It is recommended that users contact the sender directly using their mobile number to confirm the legitimacy of the message.
As the scheme unfolds, Telegram users must remain vigilant and take necessary precautions to safeguard their accounts and personal information from potential attacks. In the face of ever-evolving cybersecurity threats, staying informed and adopting best practices can help users minimize risks and maintain the security of their online presence.