The Rise of Telegram Verification Bots Stealing Crypto Private Keys

According to Scam Sniffer, a blockchain security firm, these fraudsters are impersonating well-known crypto influencers on social media and using these fake profiles to lure victims into private Telegram groups under the guise of offering exclusive investment advice.

The scammers introduce a so-called verification bot named “OfficiaISafeguardBot” once someone joins the Telegram group. This bot creates a false sense of urgency, pressuring users to act quickly by completing a short verification process.

Did you know?

Want to get smarter & wealthier with crypto?

Subscribe - We publish new crypto explainer videos every week!

How to Avoid Rug Pulls in Crypto? (5 Ways Explained)

SUBSCRIBE

ON YOUTUBE

However, instead of safeguarding users, the bot executes malicious PowerShell scripts. These scripts are designed to install malware that infiltrates systems, stealing sensitive information such as private keys from crypto wallets.

The idea of using malware to target individuals is not new, Scam Sniffer points out. However, the tools and infrastructure supporting these scams have become much more advanced.

Although this specific Telegram bot is at the center of recent cases, Scam Sniffer warns that the method could easily be adapted to mimic other bots, making the threat difficult to contain.

Additionally, scammers have transitioned into a "scam-as-a-service" model, where they supply tools to other criminals. This model enables broader phishing attacks and wallet-draining exploits.

As crypto scams grow increasingly sophisticated, they are not just limited to Telegram. Just recently, a LinkedIn scam led to a $135,000 loss, with authorities shutting down dozens of NFT fraud sites. How did this scheme unfold? Read the full story.