Game Account Takeover Scams on Telegram
Fraudsters use Telegram bots and channels to trade in stolen game credentials and sell account-hijacking services, targeting players whose account details have been exposed through other breaches.
Part of: Game Account Takeover Scams
Last reviewed: 1 June 2026
Telegram's encrypted messaging and bot infrastructure make it a convenient distribution channel for stolen game account credentials. Channels advertising databases of compromised game accounts operate openly in some communities, while other operators offer account hijacking as a paid service — exploiting credential-stuffing techniques against game platforms using login details sourced from unrelated data breaches.
Players who reuse passwords across gaming and other accounts are particularly vulnerable, as a breach in any service they use can expose their game credentials to automated attacks that are coordinated and distributed through Telegram.
How this scam works on Telegram
A Telegram channel posts bulk lists of game account credentials obtained through data breaches or phishing operations. Buyers purchase access to specific accounts by tier — ranked accounts, accounts with rare items, or accounts in specific regions. The original account holder receives no warning until they attempt to log in and find their email or password has been changed.
Service-based takeover operations accept requests: a buyer provides a target username and pays via cryptocurrency; the operator attempts credential-stuffing or phishing against the account and transfers access once successful. These services are advertised in gaming-adjacent communities using coded language.
Telegram bots also facilitate credential validation — automated systems that test purchased credential lists against game platforms, identifying still-active accounts that can be sold or exploited.
Common red flags
- Sudden inability to log in to your game account despite using the correct credentials
- Email notification of a password change or new device login you did not initiate
- Your game username appears in a leaked credential list posted to a security monitoring service
- Purchases or in-game activity on your account that you did not make
- Promotional offers for game accounts at suspiciously low prices in gaming communities you participate in
How to protect yourself
- Use a unique password for every game account — a password manager makes this practical
- Enable two-factor authentication using an authenticator app rather than SMS for all game platforms
- Monitor your email address through breach-notification services to identify when credentials are exposed
- Change your game account passwords immediately if a service you used the same password for announces a breach
- Report gaming community channels that advertise account sales or credential databases to Telegram
How to report it
- Report the Telegram channel or bot to Telegram via @notoscam or the in-app report function
- Contact the game platform's account security team immediately if your account has been compromised
- File a report with your national cybercrime authority if financial loss occurred through account theft
Frequently asked questions
How do attackers obtain game account credentials through Telegram?
Most game account credentials traded on Telegram were obtained through phishing campaigns, data breaches of unrelated services where the same password was reused, or malware that logged keystrokes on gaming PCs. Using unique passwords and an authenticator app removes most of this risk.