As concerns about Telegram’s security continue to rise, the Kaspersky Digital Footprint Intelligence team has analyzed underground Telegram channels. The findings reveal a troubling trend, with an increasing number of cybercriminals using Telegram as a platform for buying, selling, and exchanging illegal goods and services.
These cybercriminals are actively creating specialized channels and groups on Telegram to facilitate scams, share stolen databases, and offer illegal services such as illegal withdrawals, fake documents, and DDoS attacks. According to Kaspersky’s Digital Footprint Intelligence, the period from May to June 2024 saw a 53% increase in posts related to these activities compared to the same period the previous year.
Mr. Alexey Bannikov, an analyst at Kaspersky Digital Footprint Intelligence, has pointed out several factors contributing to the growing activity of cybercriminals on Telegram. The platform’s popularity, with 900 million monthly users, and its promotion as a secure and independent messaging application that does not collect user data, make it an attractive space for cybercriminals to operate without fear of detection. The ease of finding or creating a community on Telegram further contributes to its appeal to cyber criminals.
It’s worth noting that cybercriminals operating on Telegram often have lower technical skills and experience compared to those on dark web forums. This is due to the ease of joining the underground community on Telegram and the absence of a reputational rating system found on other dark web forums, which leads to common fraudulent activities.
Additionally, Telegram has become a gathering platform for politically motivated hackers, or hacktivists, to express their views and incite DDoS attacks and other destructive methods against target infrastructure. This demonstrates the potential for misuse and exploitation of Telegram’s large user base.
To help businesses monitor and handle incidents related to illegal activities on Telegram, Kaspersky Digital Footprint Intelligence has released a comprehensive and free guide aimed at minimizing cyber risks associated with the illegal buying, selling, and trading of goods, as well as data-related incidents.
