What should I do if I already connected a suspicious bot to my wallet?

If you connected via TON Connect (DApp connection), disconnect the bot immediately in your wallet's Connected Apps or DApps section. This revokes the connection permission. If you shared your seed phrase, treat that wallet as compromised — create a new wallet immediately and transfer funds before the attacker does. Do not use the compromised wallet again.

Can a Telegram bot steal my funds without my seed phrase?

A bot connected via TON Connect can request transaction approvals, which you must manually confirm in your wallet. It cannot initiate transactions autonomously without your confirmation. However, phishing bots can trick you into approving malicious transactions. Always read transaction details carefully before confirming — especially the recipient address and amount.

How to Verify a Telegram Bot Before Using It (2026 Security Guide)

Q: What is the #1 sign a Telegram bot is a scam?

A request for your seed phrase or private key is the definitive scam signal — 100% of the time, no exceptions. No legitimate wallet, app, or bot needs your 12 or 24-word seed phrase to process a withdrawal or verify your identity. If any bot or person in a Telegram chat asks for your seed phrase, block and report immediately without further interaction.

Q: How can I verify a Telegram bot is legitimate?

Run a 5-point check: (1) Search the bot name + 'scam' or 'not paying' online. (2) Check if the team is publicly identified with verifiable history. (3) Test a small withdrawal as soon as you reach the minimum — before accumulating more. (4) Verify any claimed smart contracts on tonscan.org. (5) Check community engagement quality — authentic projects have responsive support, not just large follower counts.

Q: Are admin DMs in Telegram support chats legitimate?

No — legitimate project admins never initiate DMs offering help with payments, deposits, or recovery. This is universally a scammer impersonating staff. Real support in legitimate projects operates through official public channels or ticketing systems. If an 'admin' messages you first, block them immediately.

Updated: February 2026 • Security guide • Related: Telegram scam types guide • Bot rating methodology

Rule #1 — no exceptions: No legitimate wallet, app, or earning bot will ever ask for your 12 or 24-word seed phrase. Not for "verification", not for "recovery", not to "unlock" your earnings. Anyone asking is a scammer. Block and report immediately.

Hub Aggregator Scam Monitoring: Scam pattern detection, phishing technique tracking, and bot verification methodology in this guide draw from Hub Aggregator's review and monitoring of 1,200+ Telegram mini apps since 2024, including direct documentation of security incidents, wallet connection abuse patterns, and user-reported scam cases.

The Telegram earning ecosystem grows alongside its scam ecosystem. For every legitimate Stars-earning app, there are imitations designed to steal your time, your funds, or your wallet keys. Most scams share recognizable patterns — knowing them lets you eliminate 95% of risk in under 5 minutes per bot.

Scam Type Breakdown: What You're Actually Facing

Scam Type	How It Works	Key Red Flag	Risk Level
Seed phrase harvester	Bot or chat asks for your 12/24 words to "verify" or "connect" your wallet	Any seed phrase request	Critical — instant wallet drain
Fake withdrawal fee	Bot lets you "earn" but requires a "tax" or "fee" payment before you can withdraw	Pay-to-withdraw requirement	High — upfront money lost
Off-chain balance trap	Bot shows growing balance but has no actual blockchain connection — balance is imaginary	No on-chain transaction history	High — time wasted, no funds exist
Admin impersonation DM	Scammer DMs you pretending to be project admin, offers "special help" with a payment link	Unsolicited admin DM	High — leads to seed phrase or payment
Fake KYC in chat	Bot asks you to send ID documents directly in chat to "verify your account"	Document request inside Telegram	Medium — identity theft
Guaranteed ROI scheme	Bot promises fixed daily returns (e.g., "2%/day") — Ponzi until it exits	Fixed guaranteed returns	Medium — funds lost at exit
Malicious TON Connect	Bot connects via TON Connect then pushes deceptive transaction approvals	Suspicious transaction requests	Medium — requires your confirmation

The 7 Red Flags: Spot Them Instantly

Seed phrase request: Any format, any reason. Block immediately. This one is binary — there are no legitimate exceptions.
Pay-before-withdraw: Requiring a "fee", "tax", "activation payment", or "insurance deposit" before you can withdraw earnings is an advance-fee scam. The earnings don't exist.
No on-chain verification: If you can see your growing balance inside the bot but there's no transaction history on tonscan.org tied to your wallet, the funds are imaginary. Check the blockchain.
Admin DMs offering help: Real admins never message users first in private about payments, deposits, or account issues. Immediately block any "admin" who DMs you unsolicited.
Documents in chat: Legitimate KYC is handled by external encrypted services (Sumsub, Jumio, etc.) via a verification link — never by sending photos directly into a Telegram chat.
Fixed guaranteed returns: "2% daily guaranteed", "150% in 7 days", "risk-free profit" — these are either Ponzi schemes or outright fraud. Real earnings fluctuate based on activity.
Anonymous team, no digital footprint: A Telegram channel with no website, no named founders, no GitHub, no prior project history, and a single support contact is the highest-risk profile.

5-Minute Verification Process

Before using any bot outside the Hub Aggregator verified catalog, run through this sequence:

Minute 1 — Search: Google "[bot name] scam" and "[bot name] not paying". Check Telegram scam databases and subreddits like r/Telegram or r/CryptoCurrency.
Minute 2 — Team check: Does the team have public LinkedIn profiles, a project website, or a GitHub? "We are an anonymous team" is not automatically disqualifying, but it raises the minimum due diligence required.
Minute 3 — On-chain verification: If the bot claims to use TON smart contracts, look up the contract address on tonscan.org. Unverified contracts with no audit are medium risk. No contract at all means all balances are off-chain.
Minute 4 — Community quality check: Visit the bot's Telegram group. Is support active and helpful? Do members discuss actual payouts with transaction screenshots, or are posts mostly referral links and vague hype?
Minute 5 — Early withdrawal test: After your first session, as soon as you reach the minimum withdrawal, attempt a small withdrawal. Legitimate bots process this. Scam bots often allow "earning" indefinitely but create barriers when you try to take funds out.

If You've Already Connected a Suspicious Bot

Immediate action steps if you suspect a bot you've connected is malicious:

Via TON Connect: Open Tonkeeper or TON Space → go to Connected Apps / DApps → find and disconnect the suspicious app. This revokes its ability to request transactions from your wallet.
If you shared your seed phrase: Your wallet is compromised. Create a new wallet immediately. Transfer all remaining funds to the new wallet before the attacker does. Do not use the old wallet again.
If you sent payment: Crypto transactions are irreversible. File a report with Telegram (@notoscam), document the bot username, addresses used, and transaction IDs. Recovery is unlikely but documentation helps future victims.

How Hub Aggregator Screens Bots

Before any bot appears in the Hub Aggregator catalog:

Smart contract audits checked (when published)
Team background research conducted
Withdrawal tested directly — actual funds sent and received
Community complaint pattern reviewed over 30+ days
Permission request scope assessed (does the app ask for more access than needed?)
Re-evaluated quarterly or when significant changes are reported

Find verified bots and mini apps → Browse Hub Aggregator's catalog of 1,200+ verified Telegram earning apps, filtered by security score, payout type, and category.

Frequently Asked Questions

What is the #1 sign a Telegram bot is a scam?

A request for your seed phrase or private key — 100% of the time, no exceptions. No legitimate bot needs your 12 or 24-word seed phrase. Block and report immediately without further interaction.

How can I verify a Telegram bot is legitimate?

5-point check: (1) Search the bot name + 'scam' online. (2) Check if the team has verifiable public history. (3) Test a small withdrawal before accumulating balance. (4) Verify smart contracts on tonscan.org. (5) Check community engagement quality.

What should I do if I already connected a suspicious bot?

If connected via TON Connect, disconnect immediately in your wallet's Connected Apps section. If you shared your seed phrase, create a new wallet and transfer funds immediately — treat the old wallet as permanently compromised.

Can a Telegram bot steal funds without my seed phrase?

A TON Connect-connected bot can request transaction approvals that you must manually confirm. It cannot transact autonomously. However, phishing bots trick users into approving malicious transactions. Always read transaction details — especially recipient address and amount — before confirming.

Are admin DMs in Telegram support chats legitimate?

No. Legitimate project admins never initiate DMs offering help with payments or recovery. This is universally a scammer impersonating staff. Real support operates through official public channels or ticketing systems. Block any "admin" who DMs you first.