In recent months, cybercriminal activity on the popular messaging platform Telegram has witnessed a significant increase.
According to Kaspersky’s Digital Footprint Intelligence data, incidents of cybercrime surged by 53% from May to June 2024 compared to the same period last year
Kaspersky is a well-known cybersecurity and anti-virus company.
Their findings reveal that malicious actors actively operate channels and groups on Telegram dedicated to discussing various fraudulent schemes.
These channels serve as hubs for distributing leaked databases and facilitating the trade of criminal services. These services include cashing out ill-gotten gains, forging documents, and even offering Distributed Denial-of-Service (DDoS) attacks as a service.
A DDoS attack disrupts the normal traffic of a targeted server, service, or network by overwhelming it with a flood of Internet traffic. It achieves this by using multiple compromised computer systems as sources of the attack.
Alexey Bannikov, an analyst at Kaspersky, says that Telegram’s widespread popularity contributes to its appeal among cybercriminals. With an audience of 900 million monthly users, the messenger platform provides a fertile ground for illicit activities.
Moreover, Telegram is marketed as a secure and independent messenger that does not collect user data, creating a false sense of security for threat actors.
Bannikov highlights that forming or joining communities on Telegram is extremely easy, which enables both legitimate and criminal channels to quickly gather audiences. Cybercriminals take advantage of this feature to promote their illicit services and interact with potential clients.
However, there’s another intriguing trend associated with Telegram. Hacktivists—individuals who use hacking techniques for political or social causes—have found the platform to be a powerful tool.
Telegram’s extensive user base and efficient content distribution through channels make it convenient for hacktivists to incite DDoS attacks and other disruptive methods against targeted infrastructures.
Additionally, they can release stolen data from attacked organisations into the public domain using shadow channels, further complicating the cybersecurity landscape.
Here’s how you can protect yourself from cybercriminals in Telegram:
- Be Skeptical of Messages and Links:
- Avoid responding to suspicious messages or clicking on unknown links. Cybercriminals often use phishing links, impersonation, and fake giveaways to deceive users.
- Verify information through official channels before taking any action.
- Enable Two-Factor Authentication (2FA):
- Set up 2FA for an extra layer of security. You can find instructions on how to enable it in the Telegram settings.
- Check Connected Devices:
- Regularly review the list of connected devices to ensure there are no unauthorised logins.
- Set a Passcode Lock:
- Use a passcode or Face ID verification to prevent unauthorised access to your account.
- Update Passwords:
- Regularly change your passwords and avoid using the same password across multiple platforms.
- Report Suspicious Activity:
- If you encounter a scammer or suspect fraudulent activity, block them and report it to Telegram.
- Contact your bank or financial institution if you’ve been scammed.
