FEMITBOT Exploits Telegram Mini App, Targets DeFi Users with Malware

A sophisticated scam network, identified as FEMITBOT, has been utilizing Telegram's Mini App feature to create fake crypto platforms, impersonate well-known brands, and distribute malware.

The campaign primarily targets users engaged in DeFi activities, DEX/CEX transactions, and token launches, exposing them to significant risks of fund theft and compromised wallets.

Unless platform mitigations and user security practices are improved, the attack may undermine trust in Telegram-based onboarding processes and slow down token launches and fundraising initiatives.