FEMITBOT

Abuse of Telegram Mini Apps for Large-Scale Fraud Campaigns
hero background graphics
Cybercriminals exploiting Telegram Mini Apps to run scalable fraud campaigns across crypto and financial platforms

Overview

CTM360 has identified FEMITBOT, a malicious infrastructure abusing Telegram Mini Apps to scale global fraud campaigns. By leveraging Telegram’s native features, threat actors create highly convincing fake platforms across crypto, financial services, AI, and streaming sectors.

Built on a modular, template-driven architecture, FEMITBOT enables rapid deployment, brand impersonation, and campaign optimization using real-time tracking and analytics. This reflects a shift toward scalable, marketing-like fraud operations designed to maximize user conversion and financial gain.

Read the full report and explore CTM360’s latest insights and threat intelligence