Is Telegram the new hunting ground for hackers? Crypto users are facing an invisible threat

Security risks sound the alarm once again. Senior security researcher Taylor Monahan recently disclosed that a wave of targeted scam activities against Telegram users is spreading globally. Criminals are exploiting the trust in this communication app to launch attacks, resulting in over $300 million in asset losses.

How hackers carry out scams through familiar identities

The cleverness of this attack lies in its highly social engineering design. Hackers first impersonate the victim’s acquaintances or industry insiders to initiate contact on Telegram. Once initial trust is established, scammers invite the target to a seemingly normal online meeting—usually conducted via Zoom.

After the victim joins the meeting, hackers use technical difficulties as an excuse, claiming there are audio issues and proactively offer a “solution.” This so-called patch file appears harmless but secretly contains malicious software. Once the victim downloads and executes it, hackers gain full control of the computer, enabling them to steal sensitive information such as crypto wallet private keys, exchange login credentials, and more.

Why Telegram has become a new target

The crypto community heavily relies on Telegram for information exchange, and this trait also makes the platform a hacker’s paradise. Compared to traditional scams, these attacks are more covert—they combine identity impersonation, software attacks, and social manipulation, lowering victims’ alertness on multiple levels.

Prevention tips

• Be cautious of invitations from strangers, even if they claim to know you—always verify again
• Do not download files from unknown sources, especially so-called “patches” or “updates”
• Use multi-factor authentication to protect crypto assets
• Regularly check if unauthorized software has been installed on your device