Kaspersky warns of phishing scams and malware disguised as Telegram Premium offers, targeting users globally to steal credentials or compromise devices. The company advises vigilance, enabling two-factor authentication, and using only official channels for subscriptions.
6 December 2024 – Cybersecurity firm Kaspersky has issued a global alert about an uptick in phishing scams and malware attacks exploiting the popularity of Telegram Premium. Fraudsters are using fake offers of Telegram Premium subscriptions to target users, often disguising their schemes as gifting features, phishing links, and malicious software downloads. These scams are designed to steal account credentials or infect devices with malware.
Telegram Premium, a subscription-based service offering features like faster downloads, ad-free browsing, and voice-to-text conversion, has become a target for cybercriminals. The scammers exploit the gifting feature, tricking users into believing they’ve received a Telegram Premium subscription. Often, the initial phishing message appears to come from a compromised contact, redirecting victims to fake login pages. By entering their credentials, users inadvertently give attackers access to their Telegram accounts.
Additional tactics include hosting fake giveaways or promoting malware-laden APK files that pose as modified versions of the app with built-in Premium features. Cybercriminals also use phishing links sent via email or other platforms, further broadening their reach.
Kaspersky advises heightened vigilance during the holiday season when scammers often intensify their efforts. To safeguard against these threats, the company recommends using robust security measures, enabling two-factor authentication, and purchasing subscriptions only through official Telegram channels.
Security expert Olga Svistunova from Kaspersky underscores the importance of staying skeptical of offers that seem too good to be true. “Phishing scams leveraging the Telegram Premium theme are observed worldwide. Even if they haven’t reached a specific region, the threat remains plausible,” she warned.
For comprehensive protection, Kaspersky urges users to regularly update their Telegram security settings, avoid unofficial app downloads, and verify suspicious links with the sender through alternate communication methods. The Kaspersky Daily blog offers detailed guidance on enhancing Telegram security and staying informed about emerging threats.