Telegram users in Canada and the United States have begun receiving personal messages that carry files designed to deliver malware. The warning comes from the Directorate of the Ministry of Internal Affairs of Russia for countering illegal use of information and communication technologies, which has published guidance on how to combat information crime and protect users online.
These messages arrive with attachments that appear to be signed and personalized, urging recipients to open them. At first glance the documents resemble ordinary image files in labeling, but they conceal an APK extension that signals hidden software rather than photos.
The ministry stressed that photos do not carry such an extension and advised that any file with an APK extension should be treated with extreme caution. Recipients are urged not to download or open these files under any circumstances.
Security researchers noted that fraudsters have begun stealing Telegram accounts by bombarding users with verification codes to gain access to Messenger. The pattern relies on overwhelming the user with codes before attempting to take control of the account.
Attackers operate using a counterfeit Telegram Security Messenger account after the codes are sent. With this fake identity, they direct victims to a link that supposedly enhances account security, a claim that turns out to be dangerous when followed.
In these campaigns scammers impersonate legitimate channels and deploy prompts designed to lure users into clicking. The tactic often combines requests for codes, fake security advice, and links that aim to compromise devices or accounts.
Earlier warnings have emphasized cloud data safety, reminding people to vet sources, avoid dubious files, and follow basic online hygiene to reduce risk and protect personal information.
For readers in Canada and the United States, practical steps include verifying the sender, avoiding unsolicited attachments, and using Telegram security features such as two-step verification and regular review of active sessions.
If a message arrives with a link after sharing codes, the safest course is not to click and to report the message while reviewing security settings. The overall goal is to reduce malware risks and protect personal data.
This evolving misuse of file attachments and verification code schemes highlights the need for cautious behavior in messaging apps. By staying vigilant and following official security guidance, users can lower the chances of malware infections and account compromises.