Group-IB, a cybersecurity solutions company, announces a new scheme for gaining access to Telegram messenger message history.
The company has already recorded dozens of caseshacking correspondence of Russian businessmen in Telegram. At the same time, malware or hacking of user accounts on gadgets were not detected. Hackers gained access to messenger files via SMS codes sent to users.
Attackers initiate a request to send a code to enter from a new device and intercept it.
After authorizing the fraudster in the messenger, he gets the opportunity to download all the files and correspondence in a matter of minutes.
Experts have not yet identified methods usingwhich hackers intercept SMS. Perhaps we are talking about using special equipment or “insiders from mobile operators.” It is known that scammers used disposable SIM cards and mobile Internet with an IP address in Samara.
For protection, users are recommendedForce all sessions to end upon receipt of an activation code without a request. In addition, it is recommended to use multi-level authorization with a password and check all applications and services that use SMS messages for authorization.