Hey everyone! I work for a small organization with about 100 users, and today, an end user received a sketchy email. There was a zip file that contained a "pdf" which turned out to be an HTML file, leading to a webpage asking for email credentials. I decided to dig a little deeper into the HTML, and I discovered that it contains information about a Telegram bot that may be stealing credentials. My question is, can I report this bot somewhere, even if it feels like a small issue in the grand scheme of hacking? Just to clarify, I don't have a Telegram account myself.
2 Answers
That kind of phishing technique is pretty common these days, it's alarming! If you've stumbled across a Telegram bot involved, you can report it to Telegram directly, though you'll need to explain your situation. Using tools like VirusTotal to analyze the files is a great idea! Remember to take extra precautions with security configurations in whatever email system you’re using.
You should definitely report it, even if it feels like just a drop in the ocean! If your organization has a security team, contact them right away. If not, make sure to document everything. Since you're a one-person IT team, it's crucial to have a process for tracking these incidents. Consider escalating it to your manager, too, so there's a record of your findings. Also, look into using security software to monitor and block malicious emails in the future.
I get that it's tough being a one-person show! Make sure you keep records of these incidents, it's really important. And definitely be cautious about opening suspicious attachments, even in a safe environment.
Yeah, I use VirusTotal too; it's super helpful for spotting threats! Just to clarify, the link opened a legitimate-looking site, which is why your anti-spam might've missed it. Lucky you were cautious!