Crypto Wallet Hacking through Telegram - page 3.

milewilda

legendary

Activity: 3094

Merit: 1127

Quote from: Fortify on February 03, 2022, 02:37:21 PM

Quote from: JohnBitCo on December 27, 2021, 12:41:53 PM

Recently i was reading an article where Hackers target crypto wallets through Telegram using Echelon malware is explained.
I have followed the instructions and disabled the Automatic download of media option in telegram. But i fear that many people will keep the auto download option enable because of unaware of this threat.
I wonder how this virus will work and how can they reach to our wallets / exchanges?

Anyone with a substantial holding of Bitcoin should definitely keep their main wallet away from any devices that are likely to be attacked - phones are a prime target and pretty insecure in that regard. Phones are constantly being attacked with exploits, through rogue apps, backdoors and unintended glitches. That's besides all the social engineering trickery that can take place, people losing big sums of money after being craftily encouraged to install or download certain things which gives other people access to their keys. It's dangerous to use any software that has an auto download option by default and it might go on to steal all sorts of personal information.

When you do hold significant amount then you wouldnt really be that dumped on using up a device which is mostly been connected to internet.The best thing would be that it should really be
airgapped on the first place or do make use of some hardware wallet.Its not bad on being paranoid when it comes to the safety of your coins and even myself do always think or mind
off in advance when it comes to hacking probabilities which you should really be that careful on downloading apps and if you dont really need at all then its just right that
you wouldnt really download at all or really fan on clicking up some links on random basis.

Fortify

legendary

Activity: 2688

Merit: 1192

Quote from: JohnBitCo on December 27, 2021, 12:41:53 PM

Recently i was reading an article where Hackers target crypto wallets through Telegram using Echelon malware is explained.
I have followed the instructions and disabled the Automatic download of media option in telegram. But i fear that many people will keep the auto download option enable because of unaware of this threat.
I wonder how this virus will work and how can they reach to our wallets / exchanges?

Anyone with a substantial holding of Bitcoin should definitely keep their main wallet away from any devices that are likely to be attacked - phones are a prime target and pretty insecure in that regard. Phones are constantly being attacked with exploits, through rogue apps, backdoors and unintended glitches. That's besides all the social engineering trickery that can take place, people losing big sums of money after being craftily encouraged to install or download certain things which gives other people access to their keys. It's dangerous to use any software that has an auto download option by default and it might go on to steal all sorts of personal information.

virasog

legendary

Activity: 3136

Merit: 1172

Leading Crypto Sports Betting & Casino Platform

Quote from: Oceat on December 28, 2021, 05:42:32 PM

Luckily, I don't have telegram for now since I am done using it in the past so I just uninstalled it and probably it has already been updated to disable that "auto download" part. Scammers nowadays are really trying their best to get their hands onto your wallet to steal in the process. What app would they be going to manipulate next?

Telegram is not bad in itself, but its only the few people who trying to misuse the application so that they could hack people's money. This does not mean that we stop using the telegram app. Infact, we should be careful in using apps, apply the recommended setting and hopefully we will remain safe.
Usually those who are careless, mostly are the ones who become easy victims of the hackers.

kryptqnick

legendary

Activity: 3248

Merit: 1402

Join the world-leading crypto sportsbook NOW!

I heard of it and got a bit scared, but then I remembered that my solution is following exactly zero crypto-related channels in Telegram. Still, I was surprised by the news, as somehow I didn't think about the way messengers download media immediately as being a security risk. Still, though, after reading this thread, I decided to go ahead and stop the auto-download feature right now because it's a simple yet life-saving solution to this problem. Should have done it a long time ago anyway because, to be honest, it's annoying on its own, even without the malware threat. It would have been better if they made it turned off by default, though, given the malware spread.

davis196

hero member

Activity: 3150

Merit: 937

Why does Telegram have an auto-download feature?What's the point of downloading files without the user's permission?
I remember that Telegram was being praised as the texting/social app,where you have complete privacy and your text messages are encrypted.This claim was proven wrong and Telegram messages aren't that encrypted and safe.Telegram is nothing but a slightly better alternative to Skype,if you ask me.
I've had a Telegram account,but I deleted that account.It seems to me that apps like Discord and Slack are better than Telegram.However,crypto scams and malware can be found on every texting/social media app.

DaveF

legendary

Activity: 3500

Merit: 6320

Crypto Swap Exchange

There are things missing form this story.

1) It's an old piece of malware and every AV should detect it.
2) As others have said, it's a windows EXE so it should not matter to mobile

So there is something else going on.

The other issue is with phones there are soooooo many cheap android phones that have some form of backdoors installed. And with iPhones there are so many people with old un-updated / un-patched ones that still have vulnerabilities that have been fixed for months, if not years at this point.

So can things spread through telegram, yeah probably, but if you are up to date, running AV and are not using a $40 knock off phone, it's a lot harder.

-Dave

Lanatsa

hero member

Activity: 2968

Merit: 687

Quote from: DdmrDdmr on December 27, 2021, 01:46:00 PM

The auto download feature should probably be disabled for safety per se, and thus allow the user for a more granular and attention based approach. Since the file is a .rar, and then you require executing the enclosed .exe, I don’t believe that happens on its own as an automatic corollary to the download process. Rather more, I figure, It should be the user that initiates this latter procedure, although the OP’s article does argue for the whole sequence to be automatic, which I find odd:

If this one is on auto download mode then its just right that Telegram would do something about this? Most of the time or basing up on experience on where executing downloads should really require that

command or action for a user to make before it do executes which I do also find odd if ever it was on auto download on that case.This is why im really hesitant on making out app downloads on my
phone or even on my desktop and then hearing this one out makes me check out my TG. lol

Hacking do becomes more and more enhanced and cant really be detected out.These hackers/scammers are getting wiser each day.

wayne_kenoff

jr. member

Activity: 45

Merit: 4

Quote from: haasanjui on December 27, 2021, 01:35:32 PM

Hackers use malware files for attack device. They creta malwares and share on Telegram and when anyone download it then hacker got all information about device and then he control device easily and hack wallets and personal information.

The method is actually very easy and it only takes few seconds to carry out. The hacker will send a message with a fake URL to the victim and once they click on this link, the hacker gets access to their wallet and steals all of their funds. This could be very dangerous for anyone who handles large sums of money in cryptocurrency wallets.

pawanjain

hero member

Activity: 2702

Merit: 716

Nothing lasts forever

Quote from: JohnBitCo on December 27, 2021, 12:41:53 PM

Recently i was reading an article where Hackers target crypto wallets through Telegram using Echelon malware is explained.
I have followed the instructions and disabled the Automatic download of media option in telegram. But i fear that many people will keep the auto download option enable because of unaware of this threat.
I wonder how this virus will work and how can they reach to our wallets / exchanges?

That's actually a good tip for everyone to follow not only on telegram but also on other messaging apps.
I always have the habit of disabling the auto media download and hence I am on the safer side anyway but as safety measure I cross checked this on all the messaging apps.
Downloading a file with malware automatically puts our device on risk. No wonder hackers could use this functionality for their benefits.
Thanks for posting this thread as it creates a good awareness among all the people reading it.

RichardM

newbie

Activity: 10

Merit: 12

Quote from: JohnBitCo on December 27, 2021, 12:41:53 PM

Recently i was reading an article where Hackers target crypto wallets through Telegram using Echelon malware is explained.
I have followed the instructions and disabled the Automatic download of media option in telegram. But i fear that many people will keep the auto download option enable because of unaware of this threat.
I wonder how this virus will work and how can they reach to our wallets / exchanges?

A recent study reveals that hackers can hack crypto wallets through Telegram. Hackers use the public keys of the victim’s wallet, and once they get it, they can send crypto coins to their own wallet.

Alanaz

member

Activity: 980

Merit: 10

Of course this should get more attention because it is very disturbing and makes almost everyone anxious and including myself.
this becomes very uncontrollable because indeed things like this sometimes in my own telegram always activate automatic downloads.
I feel this is something very dangerous threat.
one possible alternative at the moment is maybe having to disable the auto feature to narrow this down

BitcoinAccepted

legendary

Activity: 2660

Merit: 1009

Quote from: pealr12 on December 29, 2021, 07:50:36 AM

I think the best bet is to avoid downloading anything from Telegram, I also saw the warning post in one Telegram channel and I have disabled all auto download but I will still apply additional caution and avoid manually downloading anything from Telegram, aside from too many scammers already crawling in that platform now hackers want to create more havoc! unbelievable. Angry

Indeed. Having a layer of software for security protection is a good thing, but being cautious is another best thing to do to prevent such. Scammers will try and improvise their schemes so that they could push through their intentions, they are getting smarter day by day in making ways to proceed such deeds, so we must be one step ahead of them in protecting ourselves and assets.

pealr12

hero member

Activity: 1946

Merit: 502

I think the best bet is to avoid downloading anything from Telegram, I also saw the warning post in one Telegram channel and I have disabled all auto download but I will still apply additional caution and avoid manually downloading anything from Telegram, aside from too many scammers already crawling in that platform now hackers want to create more havoc! unbelievable. Angry

Leviathan.007

hero member

Activity: 1778

Merit: 722

Leading Crypto Sports Betting & Casino Platform

This can be new when you consider this situation in cryptocurrencies but that's nothing new to me and many other people, the hackers, and scammers can easily bind the malware in some media which can be a picture or a video. So whenever you open the media and download it, this will be executed on your phone or your computer and usually no anti-malware can detect it easily. This malware can stay running on your devices and monitor whatever you do anonymously and then send your personal information to the hacker, or this malware can collect your saved passwords keys and send all of the information. in order to stay safe from this malware you can turn off the auto-download in telegram also have some tools to monitor your network status and device's active connections.

DapanasFruit

member

Activity: 1218

Merit: 49

Binance #Smart World Global Token

I am always alarmed whenever I heard that a common program like Telegram can be used to victimized people out of the digital assets they are holding. As someone who had been one of the many in the victim statistics, I dread the feeling of being a helpless victim and i will never allow to undergo the same kind of experience again. Now, to a very non-techie person like me, just open your Telegram account then look for Settings and from there look for Data and Storage and you can see Automatic media download...make sure that you click the three buttons off. That's it...better be safe than sorry, guys!

yazher

hero member

Activity: 2268

Merit: 588

You own the pen

That's scary because most users have the default setting of downloading any files on their telegram group automatically. By disabling those setting will help a lot. That's why I keep ignoring everything when something pops out every time I browsed the internet because of such kinds of malicious files. anyway, installing Adblock on browsers will help a lot, you just need to download it from their official website.

adzino

copper member

Activity: 2968

Merit: 575

www.Crypto.Games: Multiple coins, multiple games

Quote from: JohnBitCo on December 27, 2021, 12:41:53 PM

Recently i was reading an article where Hackers target crypto wallets through Telegram using Echelon malware is explained.
I have followed the instructions and disabled the Automatic download of media option in telegram. But i fear that many people will keep the auto download option enable because of unaware of this threat.
I wonder how this virus will work and how can they reach to our wallets / exchanges?

This whole Telegram is filled with bunch of hackers and scammers. But I doubt a "virus" can be spread automatically without having to do anything. Like another user mentioned, it's a rar file. So the user has to extract the file to infect his/her phone. So even if auto download is turned on, it's not possible to mess up your phone unless you carelessly open a random file. It also has a .exe file, so your phone can't even run it. You will have to send it to your computer and then run it. So unless you are a dimwit, I guess they can't "automatically" hack your wallet through telegram.

coupable

hero member

Activity: 2338

Merit: 757

Quote from: blockman on December 28, 2021, 05:20:05 PM

Quote from: rhomelmabini on December 28, 2021, 10:02:57 AM

I think this is somewhat similar to the discord malware that was announced for a warning from one of the developer server that I'm into. Can't remember it clearly but it does the same as a "loading image" as they put it. I think to combat this is really having 2FA on all accounts especially if it contains money or important informations. These scammers and hackers are really that adept.

2FA is really needed for our wallets and activate it as always. And to counter this possible threat for everyone using telegram, we can just simply turn off the automatic download.
Good thing that I've read this thread and read the replies of others of turning off the automatic download of file which includes the videos, images and other file types.

The 2FA won't help in this case because the malware will start taking screeshots from your screen without you get a notice about this then send them to the hacker(s). The possibility that he took a screenshot for the file where you store your private codes is quite high. So if he can get your seed for instence he won't be in need for additional security steps. Note also that Non-Custudial wallets doesn't run with an additional security measure because it's not controlled by any entity and the data are encrypted within the device itself.

Thank you OP for pointing out the issue. I am sure many users use Telegram without even knowing that media files are downloadable by default in the app settings .

hosseinimr93

legendary

Activity: 2380

Merit: 5213

To those who are recommending 2FA for securing their fund:

Bitcoin purpose is to have full control over your money. Note that with using a custodial wallet with 2FA feature, you actually give the control of your money to the service provider.
You may decrease the chance of getting hacked (if you have the 2FA application in a separate device), but you are in the danger of being scammed.

vv181

legendary

Activity: 1932

Merit: 1273

Quote from: noormcs5 on December 28, 2021, 08:12:26 AM

i do believe that the default setting of telegram should be to disable the auto download. I hope telegram may explorer this option in their later releases.

I think one of the few reasons they enable the default auto-download settings is to make user experiences more intuitive, so the user won't have to manually click the media to show what it is. Aside from the UX settings, specifically about security, I do think it is approachable to let the user particularly choose how the auto-download feature behave on the first run, not just straightly enable it. So yea, Telegram should address this issue from their side.

Quote from: rhomelmabini on December 28, 2021, 10:02:57 AM

~I think to combat this is really having 2FA on all accounts especially if it contains money or important informations. These scammers and hackers are really that adept.

According to the malware report, they are also stealing wallets data instead of only credentials. So in addition of activating 2FA, anyone should really take into consideration of how they store and use any cryptocurrencies wallets.

Topic: Crypto Wallet Hacking through Telegram - page 3. (Read 966 times)