Scam Sniffer： Scammers are using Telegram verification bots to inject cryptocurrency and steal malicious software

According to Cointelegraph, blockchain security company Scam Sniffer has warned that scammers are combining social engineering with fake Telegram verification bots to inject cryptocurrency theft malware into the system to attack cryptocurrency wallets. Scammers create fake X accounts, impersonate popular cryptocurrency influencers, and then invite users to join Telegram groups, promising to provide investment insights. Once in a Telegram group, users are required to verify through the "OfficiaiSSafeguardBot", a fake verification bot that creates an artificial sense of urgency through a brief verification window. Subsequently, the robot will inject malicious PowerShell code, which will download and run malicious software to disrupt computer systems and encrypted wallets. Scam Sniffer pointed out that "multiple" cases of private key theft caused by similar malicious software have been noticed; The recently known cases of such fraud are all caused by this false verification robot. According to Scam Sniffer, malicious software targeting ordinary users has been around for a long time, but the infrastructure behind this malware is rapidly developing and becoming quite complex. It explains that when scammers successfully carry out attacks and demand increases, they evolve into a scam-as-a-service model, similar to how cryptocurrency wallet squeeze software manufacturers rent out their tools to phishing scammers.