Jump to content

FYI: Email Blackmail Scam still current


David H. Lipman

Recommended Posts

At one time you used that password with an account that was subsequently breached.  That's how they have said password.  If they did have your PC under their control, they would not need to send you an email.  They would make changes to said PC to make it apparent that they have control over it.  For example, instead of the text being in an email, it would be a text file placed on your Desktop or in a graphic used in a changed Background Picture and other more obvious methods that prove that malicious software is on your PC.

Link to post
Share on other sites

  • Root Admin

If at all possible one should never use the same password on other sites or devices. All sites and all devices should have their own unique strong passwords.

Passphrase and Password Generator
https://ae7.st/g/index.html

What is entropy?
https://ae7.st/g/what.html

 

Review your email and Office choices

Quit Gmail for free encrypted email - Tutanota
Why ProtonMail Is More Secure Than Gmail
LibreOffice - Free and open source office suite

Use Password Management software

Bitwarden
KeePass Password Safe

Make sure you use a strong master password
Then set the key transformation settings (the link below helps provide information on how to choose good settings)
https://pthree.org/2016/06/29/further-investigation-into-scrypt-and-argon2-password-hashing
KeePass Password Manager: Full Detailed Setup (good YouTube video on setup and using Keepass but choose the Argon2 method for Key transformation)

 

 

Link to post
Share on other sites

It was a scam.  They survive off people's fears.  It is a type of Social Engineering which is the Human Exploit. 
In this case, the threat actors are attempting to exploit those fears.

Edited by David H. Lipman
Edited for content, clarity, spelling and grammar
Link to post
Share on other sites

Yes.  You have indicated a change of Password.  As long as it us a Strong Password  and you secure it your email is "safe to use".

The  haveibeenpwned.com  web site data is static.  It shows that a Breach Event occurred and an email address was harvested associated ( and possibly its password ) with that event.  That static information will not change.  It happened.  It as Past Tense.  Based upon the information provided the affected individual changes their habits and associated Password(s).  After making note of the event and subsequently making changes to their habits and their associated Password(s), the affected individual is done.

With the information that the individual has gained from the experience, they will hopefully not fall for future Blackmail email scams and they will have a better understanding of current events. 

Edited by David H. Lipman
Edited for content, clarity, spelling and grammar
Link to post
Share on other sites

  • 2 weeks later...
Hackers know password from your account. Password must be changed now.


Fiona <info@aspirations.com.au>
Wed 10/23/2019 3:53 AM

Hello!

I am a hacker who has access to your operating system.
I also have full access to your account.

I've been watching you for a few months now.
The fact is that you were infected with malware through an adult site that you visited.

If you are not familiar with this, I will explain.
Trojan Virus gives me full access and control over a computer or other device.
This means that I can see everything on your screen, turn on the camera and microphone, but you do not know about it.

I also have access to all your contacts and all your correspondence.

Why your antivirus did not detect malware?
Answer: My malware uses the driver, I update its signatures every 4 hours so that your antivirus is silent.

I made a video showing how you satisfy yourself in the left half of the screen, and in the right half you see the video that you watched.
With one click of the mouse, I can send this video to all your emails and contacts on social networks.
I can also post access to all your e-mail correspondence and messengers that you use.

If you want to prevent this,
transfer the amount of $500 to my bitcoin address (if you do not know how to do this, write to Google: "Buy Bitcoin").

My bitcoin address (BTC Wallet) is:  35JaVdV7Ccq4nwTLky2dLEKycM3ZEMcHnn

After receiving the payment, I will delete the video and you will never hear me again.
I give you 50 hours (more than 2 days) to pay.
I have a notice reading this letter, and the timer will work when you see this letter.

Filing a complaint somewhere does not make sense because this email cannot be tracked like my bitcoin address.
I do not make any mistakes.

If I find that you have shared this message with someone else, the video will be immediately distributed.

Best regards!

 

Link to post
Share on other sites

  • 2 weeks later...
Hi, how you doing ? 

We think there is nothing bad in pleasing yourself from ever and again.
Some things should remain private, and if your relatives and friends find this out it, this will be something to worry about.
Something anyone would be terrifically embarrassed by.

This will have a significant impact on your personal life and wellbeing.
For a certain period of time, we have been tracking your PC activity by means of a trojan virus that had been installed by yourself and 
that had infected your PC. You had been infected after clicking on an poster on one of our virus-infected pornographic websites.

A trojan virus gives us access to your PC and any device that is connected to it, whether via wifi or bluetooth.
We have been monitoring your screen and everything you have been doing - through a live feed - and you had no idea of us doing this.
We also have access to your camera and microphone - we can switch them on/off at any time.
We have been privately storing all data and info that we have been considering worthwhile.
For example: contacts, social media, emails, etc.
We have recorded a video where you can be seen pleasing yourself. Moreover, we’ve made a split-screen footage and shown the 
video you had been watching.  By clicking a button, I can send this blackmail material to all your contacts.
If you want to avoid this dirt, just transfer 2500$ to the my bitcoin wallet.

Bitcoin address: "1FpqfJq6NSMB########2HnP77frBsYGQ"

Though verification is required, you can easily buy bitcoin. Google how to buy bitcoin. 


The next moment after receiving money, I will erase all your data.
You have only 5 days to send the money.
Otherwise, I will have to do what I have told you about hereinabove
We don’t make mistakes.

Reporting this is useless, it is impossible to track this email address and these emails have been sent via an 
external server abroad.  These accounts have been hacked.
If you make the stupid choice to do report this or contact anybody about this message we will 
directly release your footage and forward it. Besides, we will do anything we can to distribute any other harmful information.
Once this email is opened, we will be notified, and since then the clock will start ticking
You have only 5 days. Do not run out of time!

Kind Regards

 

 

Edited by David H. Lipman
Edited for content, clarity, spelling and grammar
Link to post
Share on other sites

  • 4 weeks later...
On 8/30/2019 at 2:53 PM, David H. Lipman said:

New email, still current


Hello!

I am a hacker who has access to your operating system.
I also have full access to your account.

I've been watching you for a few months now.
The fact is that you were infected with malware through an adult site that you visited.

If you are not familiar with this, I will explain.
Trojan Virus gives me full access and control over a computer or other device.
This means that I can see everything on your screen, turn on the camera and microphone, but you do not know about it.

I also have access to all your contacts and all your correspondence.

Why your antivirus did not detect malware?
Answer: My malware uses the driver, I update its signatures every 4 hours so that your antivirus is silent.

I made a video showing how you satisfy yourself in the left half of the screen, and in the right half you see the video that you watched.
With one click of the mouse, I can send this video to all your emails and contacts on social networks.
I can also post access to all your e-mail correspondence and messengers that you use.

If you want to prevent this,
transfer the amount of $528 to my bitcoin address (if you do not know how to do this, write to Google: "Buy Bitcoin").

My bitcoin address (BTC Wallet) is: 1ELKdWgfed################pKSqcCjM

After receiving the payment, I will delete the video and you will never hear me again.
I give you 50 hours (more than 2 days) to pay.
I have a notice reading this letter, and the timer will work when you see this letter.

Filing a complaint somewhere does not make sense because this email cannot be tracked like my bitcoin address.
I do not make any mistakes.

If I find that you have shared this message with someone else, the video will be immediately distributed.

Best regards!

 

Got this email yesterday, im in an awful way, havent slept last night being sick...is it def a scam...they didnt mentiom having my password though, im not great with technology. Ive got till this evening to pay 500dollars to a Bitcoin address

Link to post
Share on other sites

Just now, Sue2019 said:

Got this email yesterday, im in an awful way, havent slept last night being sick...is it def a scam...they didnt mentiom having my password though, im not great with technology. Ive got till this evening to pay 500dollars to a Bitcoin address

Im at present deleting all contact numbers from my phone just incase...please help 

Link to post
Share on other sites

@Sue2019 As David mentioned above, it is still worth checking here;

https://haveibeenpwned.com

If any account you have is listed, change the password asap (important: This is completely unrelated to the above, those sending the emails haven't "hacked" you or your email, they're just hoping to get people gullible enough to believe them and send whatever they ask for)

Link to post
Share on other sites

Just now, MysteryFCM said:

@Sue2019 As David mentioned above, it is still worth checking here;

https://haveibeenpwned.com

If any account you have is listed, change the password asap (important: This is completely unrelated to the above, those sending the emails haven't "hacked" you or your email, they're just hoping to get people gullible enough to believe them and send whatever they ask for)

Ive changed email password. I did put my email address in that site and came back that had been pwnd...there were 3sites/apps, 2 i didnt recognise and 1 app i did, it was an app i used to have myfitnesspal, but id say its at least a year since deleted that app

Link to post
Share on other sites

As long as the password has been changed, you've nothing to worry about (though I'd suggest you contact the 2 you don't recognize and find out how they got your details, and of course, get the account deleted if you didn't set it up).

Additional: NEVER use the same password for different accounts (email or otherwise) (if one is compromised, then they all are, when one password if used for them all)

Link to post
Share on other sites

Just now, MysteryFCM said:

As long as the password has been changed, you've nothing to worry about (though I'd suggest you contact the 2 you don't recognize and find out how they got your details, and of course, get the account deleted if you didn't set it up).

Additional: NEVER use the same password for different accounts (email or otherwise) (if one is compromised, then they all are, when one password if used for them all)

Thanks so much for your help 

Link to post
Share on other sites

  • 1 month later...

Sextortion Email Scammers Try New Tactics to Bypass Spam Filters

"extortion scammers have started to utilize new tactics to bypass spam filters and secure email gateways so that their scam emails are delivered to their intended recipients.  Sextortion scams are emails that pretend to be from an attacker who has hacked your PC and installed malware that can monitor what sites you visit and create videos using your webcam.  These emails go on to state that they have created a video of you while watching adult web sites and will send the video to all of your contacts unless you pay an extortion demand.  Sextortion scams have become so common that spam filters and secure mail gateways have been doing a good job at preventing them from being delivered to their recipients.

Using new evasion tactics

To bypass these filters, attackers have started to utilize new tactics such as sending sextortion emails in foreign languages and splitting bitcoin addresses into two parts.  This is illustrated in a new sextortion email shared with BleepingComputer where the scammers are sending these emails to English speaking users but with the content written in Russian.

As can be seen in the email below, the only text in English is the instructions to "Use google translator."

Sextortion EmailSextortion Email

"

Link to post
Share on other sites

  • 3 months later...
  • 6 months later...

These emails are still being generated.  In the following case, it was sent via SendGrid...

Quote


Your device have been infected with a trojan virus spy malware.Your information such as password,videos,camera ,Nudity,Pornographic materials,
photos,finacial info,contacts,documents and files have all been compromised.

Spy malware can do more than you could possibily imagine and can be infected in so many ways you could not imagine,
including full access to all the site you visited,access to webcam and microphone,full control of your device,ability to access,
store,save,erase any information on your device and many more.

Now that you know, WHAT YOU NEED TO DO is simple,you can choose to ignore this message and face the consequence
or you can comply to this instruction and we both have a good day.As a reasonable person that i am,exposing the wealth of
information i have about you does not serve any good to us.But to be fair, i am requesting that you send $580 to the Bitcoin
address below (if you don’t know “how to buy Bitcoin” search on Google or YouTube or buy it from CashApp and coinbase and paxful).

BITCOIN ADDRESS: ( 1CoAsA9imDQ#########ryHUfmqtvtym3 )

(It is cAsE sensitive, so copy and paste it)

Now you have limited time, Between (74 HRS) to transfer this fund to the Bitcoin account as above or be exposed.
I assured you that once the amount is received,Be rest assured that i will wiped out completely (errased) your dirty incriminating secrets
from my hard drive and will send you instruction on how you can safely remove the spyware from your device and prevent future exposure
to mailware and you will never hear from me anymore.But if you have doubt or fail to comply, i can post some of it to your social media account,
close associate and law enforcenent department just to prove my point. CHOOSE WISELY, TIME IS TICKING !!!!

 

Edited by David H. Lipman
Edited for content, clarity, spelling and grammar
Link to post
Share on other sites

  • 2 months later...

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.