Telegram сrypto malware scams surge 2,000%
Attackers are now using more complex tactics
Scam Sniffer, a prominent cybersecurity firm, has sounded the alarm on a massive uptick in crypto malware scams targeting Telegram users, reporting a staggering 2,000% surge in such attacks between November 2024 and January 2025.
Scam Sniffer warns that these attacks are becoming increasingly sophisticated, with cybercriminals shifting away from traditional phishing scams and deploying advanced malware to target crypto investors in trading and airdrop groups on the messaging platform.
It's worth noting that Telegram actively combats harmful content on its platform including scams. Moderators empowered with custom AI and machine learning tools proactively monitor public parts of the platform and accept reports in order to remove millions of pieces of harmful content each day.
In special comments to Traders Union, Telegram representatives explained, “A fake Safeguard bot was removed by Telegram moderators on January 3 as part of Telegram's standard moderation work. Another fake Safeguard bot was removed on January 16.”
Key takeaways
- Telegram actively combats harmful content on its platform including scams.
- According to Scam Sniffer, the number of malicious crypto software scams has increased by 2000% in two months.
- Access to Sensitive Information: Once malware is executed, attackers gain access to passwords, crypto wallets, and browser data, putting investors at risk.
A surge in sophisticated attacks
Scam Sniffer's findings highlight a worrying trend in the crypto space, where cybercriminals are increasingly targeting Telegram, a popular platform for crypto investors. These attackers now rely on more sophisticated malware that lures unsuspecting users into engaging with malicious groups.
Loading...
Telegram's moderators, equipped with tailored AI and machine learning tools, actively oversee the public sections of the platform and remove millions of harmful content pieces daily.
The malicious activity often begins with a fake verification process, which tricks users into copying and pasting malicious code into their clipboards. Upon execution, the malware is automatically downloaded, giving attackers access to sensitive information like passwords, crypto wallet details, and browsing history.
This shift toward more complex tactics marks a departure from traditional phishing scams, which have primarily used fake websites to steal users' data. While phishing remains a persistent issue, the rapid rise of Telegram-based malware scams signifies an escalation in the methods cybercriminals are using to exploit crypto investors.
In the past few hours, a surge in impersonation scams has been noted, with fake accounts of prominent figures and platforms being widely circulated. According to Scam Sniffer, the top impersonated projects include: @SolvProtocol, @JupiterExchange, @Phyrex_Ni, @0xcryptowizard, @GoPlusFdn, @lumolabsdotai.
Top impersonated accounts in the last few hours. Source: @realScamSniffer
Impact on the crypto community
As the crypto space continues to grow, these sophisticated malware attacks on platforms like Telegram could become more widespread. However, Telegram moderators are doing their best to protect users.
For crypto investors, this emphasizes the importance of heightened vigilance and strong cybersecurity practices, including the selection of reliable crypto exchanges. Scam Sniffer urges users to exercise caution, avoid sharing sensitive information in unknown groups, and verify all offers before engaging.
With the rise of increasingly sophisticated attacks, it’s clear that both users and platforms must remain proactive in strengthening security measures to protect digital assets. The battle between cybercriminals and investors is intensifying, and only through continued vigilance can the crypto community safeguard itself against these evolving threats.
Earlier we reported that Crypto scammers exploit Google ads to lure users to fake Pudgy Penguins page.
