Skip to content


The Telekopye toolkit, discovered by cyber security experts ESET, operates within the popular messaging app Telegram, making it a potential risk for unsuspecting users. In this article, we’ll explore the nuances of the Telekopye threat, from its origins to practical prevention tactics, tailored for individuals seeking to secure their online presence.

Understanding Telekopye:

Telekopye is not just another run-of-the-mill cyber threat; it is a toolkit that operates within the Telegram ecosystem, leveraging the platform’s features for malicious activities. According to reports from reputable sources like HackRead [1], TechRadar [2], and TechBuzzIreland [3], Telekopye poses a significant risk due to its ability to facilitate phishing scams on a massive scale.

Currently, the main targets are online markets popular in Russia, however, security researchers have identified scammers targeting marketplaces native to other countries such as eBay.  The diagram below shows how the scam unfolds. 


Source: (NB Neanderthals = Scammer & Mammoth = Victim)

The Method of Operation:

Telekopye’s primary weapon is a deceptive Telegram bot that lures unsuspecting users into a false sense of security. Once a user interacts with the malicious bot, it can execute various harmful actions, from extracting sensitive information to deploying phishing attacks. TechBuzzIreland [3] sheds light on how this toolkit onboards aspiring fraudsters, making it crucial for users to stay informed and vigilant.

Prevention Tactics:

  • Stay Informed: Keep yourself updated on the latest cybersecurity threats. Regularly check reputable cybersecurity news sources for information on emerging threats, like the ones mentioned in this article.
  • Be Wary of Unknown Links: Avoid clicking on links from unknown or unverified sources, especially those sent via messaging apps. Verify the sender’s identity before interacting with any links, even if they seem harmless.
  • Use Reliable Security Software: Invest in reputable antivirus and anti-malware software. Ensure that it is up-to-date and performs regular scans on your devices to detect and eliminate potential threats.
  • Enable Two-Factor Authentication (2FA): Enhance your account security by enabling 2FA wherever possible. This adds an extra layer of protection, making it more challenging for attackers to gain unauthorised access.
  • Educate Yourself and Others: Cyber security is a shared responsibility. Educate yourself and those around you about the potential risks of interacting with unknown entities online. Awareness is a powerful tool in preventing cyber threats.


The Telekopye threat serves as a stark reminder of the ever-present dangers in the digital world. By staying informed and adopting proactive cyber security measures, we can mitigate these risks and create a safer online environment for everyone. Remember, your digital security is in your hands, and with the right precautions, you can navigate the online landscape with confidence.