A new fraud tactic has drawn attention in online security circles, focusing on Telegram users who face the threat of immediate account deletion. While initial reports came from Russia, experts say the scheme is spreading and could reach users in Canada and the United States as well. Hi-Tech Mail, citing State Duma deputy Anton Nemkin, describes the pattern in detail and notes that the attackers lean on social engineering to create a sense of urgency. Legitimate Telegram support does not ask for security codes via SMS to cancel an account, a fact that serves as a critical red flag for anyone who encounters such messages. The evolving nature of this fraud means even careful users can be pulled into a trap if they don’t verify the sender and the request. For residents of North America, awareness is essential because a successful phishing attempt can pivot into broader harm, feeding other scams that rely on sensitive personal data obtained in the moment of panic.
As the scam unfolds, a message appears that looks like it comes from Telegram technical support, insisting that the account must be deleted. The recipient is told that a verification code sent by SMS is required to stop the deletion. The attacker then provides a link to a counterfeit Telegram or Gosuslug site. On that page the user is asked to enter a phone number and complete an authentication step. Once the information is submitted, the attackers capture it, erase chat history, and lock the account. In the worst scenarios, the same data is then used to access online banking or payment apps, siphon funds, or request loans under the victim’s name. With control of the messaging account, attackers may solicit more information from contacts, fueling a chain of fraud. In Canada and the United States, researchers emphasize that never sharing an SMS code or clicking unfamiliar links is the best defense. Simple steps such as confirming the sender through official channels and avoiding impulse actions can stop the fraud before money changes hands.
Targeted individuals often include adults and seniors who are less familiar with how modern messaging apps work. Attackers comb public Telegram channels and groups to identify likely victims, crafting messages that feel urgent and credible. The data obtained through phishing can be used to break into banking apps, transfer funds, or apply for loans using the victim’s identity. Such breaches can lead to direct financial loss as well as the erosion of trust and long-term security. The effect is amplified when thieves destroy evidence in chats and compromise other accounts, making it harder to trace the intrusion. Security experts advise enabling two-factor authentication, creating strong, unique passwords for every service, and routinely reviewing devices and active sessions linked to critical accounts. By keeping an eye on connected services and keeping recovery options up to date, people can reduce exposure to this evolving threat.
Experts note that scammers often dress up their requests with authority, pretending to be government officials or platform administrators to gain trust. In the United States and Canada, victims are urged to end conversations immediately and report the incident through official channels. In the United States, agencies such as the Federal Trade Commission provide guidance on recognizing and reporting fraud, while in Canada the Canadian Anti-Fraud Centre and the Competition Bureau offer resources to stop scams and protect personal information. Banks and payment providers should be alerted if any financial data is exposed, and the most recent transactions should be checked for anomalies. The key defense remains the same: pause, verify the sender, and seek confirmation from the platform through its official apps rather than acting on the first alert that arrives in a message. Nemkin’s observations highlight how authority-based manipulation remains a central tactic for digital fraud and why ongoing awareness matters.
Earlier reports suggested that fraudsters also target dormant profiles on messaging platforms like WhatsApp to exploit existing connections. Nemkin notes these cases illustrate a broader tactic that leverages familiar relationships to mislead victims. As the playbook shifts across apps, new variants will appear, often concentrating on social engineering that leverages trust. For now, the recommended response is universal: never share verification codes, avoid unfamiliar links, and report suspicious activity to the platform and to law enforcement when necessary. By staying informed about these techniques and adopting strict security habits, residents of Canada and the United States can reduce exposure to this alarming form of online fraud.