Estimated time: 10 minutes

Although it’s less secure than an actual E2EE messaging app (use Signal!), it seems like everyone in crypto is using Telegram. Here’s 4 simple steps to harden your Telegram account against hackers.

Configure 2FA

Telegram might require you to sign up using a phone number, but you can also set up 2FA in the form of an additional password. This is probably the most important thing you could do, and is the only thing that will keep your Telegram account safe if you get SIM swapped. Just make sure you don’t reuse your password!

Logging in with 2FA enabled

1. Go to Settings > Privacy and Security > Two-Step Verification
2. Select a password and recovery email (and save it in your password manager)

Hide your phone number

Don’t make it easy for hackers to collect personal information on you! There’s almost no good reason to set your phone number to be publicly visible.

1. Go to Settings > Privacy and Security > Phone Number
2. Under “Who can see my phone number”, select “Nobody”
3. Under “Who can find me by my number”, select “My contacts”

Disable P2P calling

Telegram allows for peer-to-peer calls, which means that calls will connect you directly with the other user instead of via Telegram’s servers. If you’re not using E2EE for your chats, then Telegram can already see your messages, so you would probably prefer hiding your IP from the other user over Telegram potentially recording your calls too.

1. Go to Settings > Privacy and Security > Calls
2. Under “Use peer-to-peer with”, select “Nobody”

Manage inactive sessions