There is an email scam making the rounds that isn’t new, per se, but has a new twist to it.
Referred to as a ‘Sextortion’ scam, the email purports to have dirt on you, specifically a hacker having used your webcam to take footage of you watching porn, and threatens to release it if you do not pay up to a Bitcoin address provided in the email.
This isn’t a particularly new scam in and of itself. However, the twist comes in that the email comes with one of your passwords as proof that it’s real.
The email reads:
I’m aware that <substitute password formerly used by recipient here> is your password. You don’t know me and you’re thinking why you received this e mail, right?
Well, I actually placed a malware on the porn website and guess what, you visited this web site to have fun (you know what I mean). While you were watching the video, your web browser acted as a RDP (Remote Desktop) and a keylogger which provided me access to your display screen and webcam. Right after that, my software gathered all your contacts from your Messenger, Facebook account, and email account.
What exactly did I do?
I made a split-screen video. First part recorded the video you were viewing (you’ve got a fine taste haha), and next part recorded your webcam (Yep! It’s you doing nasty things!).
What should you do?
Well, I believe, $1400 is a fair price for our little secret. You’ll make the payment via Bitcoin to the below address (if you don’t know this, search “how to buy bitcoin” in Google).
BTC Address: 1Dvd7Wb72JBTbAcfTrxSJCZZuf4tsT8V72
(It is cAsE sensitive, so copy and paste it)
You have 24 hours in order to make the payment. (I have an unique pixel within this email message, and right now I know that you have read this email). If I don’t get the payment, I will send your video to all of your contacts including relatives, coworkers, and so forth. Nonetheless, if I do get paid, I will erase the video immidiately. If you want evidence, reply with “Yes!” and I will send your video recording to your 5 friends. This is a non-negotiable offer, so don’t waste my time and yours by replying to this email.
So, what do you do if you receive an email like this? Delete it.
Most sites reporting on this email scam are finding the recipients are being presented with a password that they haven’t used for many years. This leads experts to believe the email scam is an automated process that harvests data from one of many online databases containing user information from any number of web site breaches over the past decade. So, while the password may actually be tied to you, the threat is nothing more than a hoax hoping that you’ll be gullible enough to fall for it and send them money.
While this email scam may be nothing to worry about, you should still take some precautions to ensure that you don’t become a victim to an actual attack.
Here are a few things you can do to protect yourself from being the victim of an email scam:
- Never open attachments on an email from an unknown sender nor should you follow links.
- Be wary of attachments from users you do know. Follow up with them before opening it to make sure they really did send it.
- Never provide account information to an email request. Companies will never ask for your credentials, especially over email out of the blue.
- Install a good Antivirus solution and make sure you keep it up to date.
- Not using your webcam? Unplug it or cover it so can’t be used without your knowledge.
If you think your PC or other device may be compromised or you just want a check up, contact us. 910Geeks offers fast, reliable service and friendly advice to keep you safely using the Internet. Just give us a call or send us a message via our contact form.