Bleeping Computer

Malicious RubyGems pose as Fastlane to steal Telegram API data

Two malicious RubyGems packages posing as popular Fastlane CI/CD plugins redirect Telegram API requests to attacker-controlled servers to intercept and steal data. RubyGems is the official package ...
TechRadar

New Golang malware is hijacking Telegram to help itself spread

Netskope uncovers new Go-built backdoor spreading malware It uses Telegram as its C2 infrastructure to send commands The backdoor is most likely of Russian origin, experts warn A new backdoor threat ...