Telegram has become a prominent hub for cybercrime, democratizing the phishing landscape by enabling threat actors to conduct mass attacks for as little as $230. Guardio Labs researchers highlight the platform’s transformation into a bustling marketplace where cybercriminals exchange illicit tools, tutorials, and even offer hackers-for-hire, creating a well-organized supply chain for malicious activities. The report describes Telegram as a “scammers paradise” and a “breeding ground for modern phishing operations,” emphasizing its role in making cybercrime accessible to both experienced and novice criminals. With the availability of low-cost phishing kits on Telegram, individuals without prior knowledge or criminal connections can easily initiate significant phishing operations.
Telegram’s lenient moderation efforts have contributed to the platform’s notoriety in facilitating malicious activities, making what was once exclusive to dark web forums now accessible through public channels and groups. The report underscores the dual responsibility of site owners to protect their platforms from being unknowingly used for hosting phishing operations and other illicit activities. It also highlights the role of digital marketplaces on Telegram, providing expertly designed email templates and bulk datasets of valid email addresses and phone numbers to enhance the authenticity and effectiveness of phishing campaigns.
The researchers shed light on the monetization aspect of these phishing campaigns, emphasizing the sale of stolen credentials to other criminal groups. Social media account credentials can be sold for as little as a dollar, while banking accounts and credit cards fetch higher prices based on their validity and available funds. The report concludes by emphasizing the alarming ease with which anyone can initiate a significant phishing operation with just a small investment, emphasizing the urgency for increased cybersecurity measures to counter the growing threat posed by platforms like Telegram in facilitating cybercrime.
Reference:
