Telegram app hosts ‘underground markets’ for Southeast Asian crime gangs, says UN | #cybercrime | #infosec

BANGKOK, Oct 7 (Reuters) – Powerful criminal networks in Southeast Asia are making widespread use of the messaging app Telegram, which has enabled a fundamental change in the way organized crime can carry out large-scale illegal activities, the United Nations said on Monday in a report.

Compromised data, including credit card details, passwords and browser history, is being openly traded on a large scale with little restraint through the app, which has vast channels, the United Nations Office for Drugs and Crime (UNODC) report said.

Tools used for cybercrime, including so-called deepfake software designed for fraud, and data-stealing malware are also being widely sold, while unlicensed cryptocurrency exchanges are offering money laundering services, the report said.

“We transport 3 million USDT stolen from abroad every day,” the report quoted an advertisement in Chinese as saying.

There is “strong evidence that underground data markets are moving to Telegram and that vendors are actively seeking out transnational organized crime groups in Southeast Asia,” the report said.

Southeast Asia has become a major hub for a multi-billion dollar industry that targets victims around the world with fraudulent schemes. Many are Chinese syndicates operating from fortified complexes staffed by trafficked workers. The industry generates between $27.4 billion and $36.5 billion annually, according to UNODC.

Russian-born Durov was arrested in Paris in August and charged with allowing criminal activity on the platform, including the distribution of sexual images of children. The move has put the criminal liability of app providers in the spotlight and has also sparked a debate about where freedom of expression ends and enforcement of the law begins.

Telegram, which has nearly 1 billion users, did not immediately respond to a request for comment.

Benedikt Hofmann, UNODC Deputy Representative for Southeast Asia and the Pacific, said the app provides an easily navigable environment for criminals.

“For consumers, this means their data is at greater risk of being caught in scams or other criminal activity than ever before,” he told Reuters.

The report said the sheer scale of profits criminal groups have earned in the region had forced them to innovate, adding that they had integrated new business models and technologies, including malware, generative artificial intelligence and deepfakes, into their operations.

UNODC said it has identified more than ten providers of deepfake software services “specifically targeting criminal groups involved in cyber fraud in Southeast Asia.”

Using the chatbots, Reuters was able to download policy and claim documents containing names, phone numbers, addresses, tax information, copies of ID cards, test results and medical diagnoses.

Sign up here.

Our Standards: Thomson Reuters Trust Principles.opens a new tab

Tom Wilson covers investigative stories from the financial and business worlds. He previously led Reuters’ coverage of cryptocurrencies and was the news agency’s 2022 Reporter of the Year for its series on the Binance exchange. During a decade at Reuters, he spent four years in Tokyo, exposing abuses in Japan’s immigration system and reporting on tobacco giant Philip Morris. His work has won awards from the Gerald Loeb Awards, the Overseas Press Club, and the Society for Advancing Business Editing and Writing.