Cybercriminals Misuse Telegram API to Create Malicious Domains to Harvest User Credentials
This particular phishing attack appeared active in mid-December 2020 and has since stopped. The targets of these malicious emails mainly worked in the U.K. financial services sector, Cofense notes.