Fake Telegram Accounts Exploit Corporate Hierarchy to Defraud in Russia
Fraud cases involving Telegram are rising in Russia. Criminals impersonate high‑level executives who communicate with their subordinates, pressuring them to reveal sensitive data or transfer funds. To avoid becoming a victim, IT security experts advise verifying the source of a message by contacting the supposed sender through an established channel and confirming the identity of the account.
Experts explain that attackers compromise the original phone number and then mirror the VIP profile. They may craft a similar nickname or use a photo with no identifying details, making the fake account harder to detect. When the forged account reaches an employee, the message appears to come from management and warns of an imminent call. The recipient is then urged to disclose information or complete a transfer, leveraging the trust placed in the apparent authority of the sender.
The risk is heightened by messaging apps that allow users to hide phone numbers. This creates a blind spot where a message can seem legitimate even when it originates from a different number. In contrast, some platforms display clear indicators of authenticity, making deception easier to spot. Security professionals emphasize cross‑checking the boss’s identity through a known associate and verifying unusual requests before acting.
One practical check is to verify the user ID via a Telegram bot such as @userinfobot. This tool can reveal whether an account is newly created or recently registered, which may suggest a scam. If the ID information appears dubious or fresh, caution is warranted and further verification is advised.
Recent incidents illustrate the real cost of this scam method. A Reutov employee in a municipal administration fell victim, losing a substantial sum after following instructions from a counterfeit executive profile. Bi.Zone security researchers have highlighted the growing trend of fake executive accounts that carry full names and photographs of real leaders, underscoring the need for careful verification at every step of the communication chain.
Security experts recommend a simple, effective response: when a message from a supposed executive arrives on Telegram, pause and confirm the message via a trusted colleague or through the company’s official channels. Do not share personal data or approve transfers based solely on a message that appears to come from leadership. The key is to treat such requests with skepticism and to verify authenticity before taking action.
As this fraud tactic evolves, organizations are urged to reinforce employee awareness and establish clear protocols for handling confidential information. Awareness training should cover the signs of spoofed profiles, the risks of instantly following directives from unfamiliar contacts, and the importance of a double‑check system that involves immediate supervisors or the IT security team. The cost of negligence can be high, but a vigilant workforce can prevent losses and protect sensitive company data.
Industry observers note that this trend is not isolated to a single city or sector. The attackers’ method relies on social engineering and identity theft, combining it with the convenience of messaging apps to reach targets quickly. Ongoing monitoring, verification procedures, and rapid reporting mechanisms are essential components of an effective defense against such schemes. At the same time, news outlets and industry researchers continue to document incidents to inform best practices and strengthen corporate resilience. In this evolving landscape, staying informed and cautious remains the best defense against increasingly sophisticated fraud schemes.
In summary, the emergence of fake accounts representing senior executives underscores the vulnerability of even trusted communication channels. By verifying identities, limiting exposing sensitive information, and enforcing firm verification processes, organizations can reduce the risk of impersonation and safeguard their operations against financially damaging scams.