In recent weeks there have been a number of emails going around trying to exploit people’s fears by sending an email threatening to have been watching their online movement and that they have evidence that they will release to the person’s contacts if the appropriate amount of Bitcoins are not paid. The emails will include the name or username of the person and a password that they may have used at some point in the past or still use. This can be very disconcerting and alarming!
I’m aware, XXXXXX is your password. You don’t know me and you’re probably thinking why you are getting this mail, right?
Well, I actually placed a malware on the adult video clips (porno) web site and guess what, you visited this website to experience fun (you know what I mean). While you were watching video clips, your internet browser started out working as a RDP (Remote Desktop) with a key logger which gave me access to your display screen as well as web camera. Just after that, my software program gathered every one of your contacts from your Messenger, Facebook, and email.
What did I do?
I made a double-screen video. First part shows the video you were watching (you have a nice taste omg), and 2nd part displays the recording of your webcam.
Exactly what should you do?
Well, I believe, $2900 is a fair price tag for our little secret. You’ll make the payment by Bitcoin (if you do not know this, search “how to buy bitcoin” in Google).
BTC Address: 1HpXtDRumKRhaFTXXXXXXXXXX
(It is cAsE sensitive, so copy and paste it)
Most likely not. Over the past 10 years numerous large sites such as LinkedIn, Facebook and many others have been the subject of huge data breaches.
The user names and passwords are compiled in data bases on the Dark Web which hackers buy on the Black Web market to try and scam people. In most cases the passwords have already been changed by the user and/or those accounts no longer exist.
If you are using the implied password change it right away. Make sure that you have secure long passwords that contain numbers, upper and lowercase letters and are 8 characters or more. Do not use the same password for multiple services!!
Changing passwords often and using strong passwords is one of the best ways to stay safe. Make sure you have all the latest security updates and patches installed on your computer.
If you are receiving the emails at all, it means that your spam management system may not be up to par or is misconfigured. Speak to your IT provider to get this fixed or contact us for assistance at 647.426.1004. In particular:
DO NOT pay the ransom.
DO NOT click on any links.
DO NOT reply to the email even to let them know you are on to them.
Delete the email and make sure that it is deleted from your recycle bin.
For more information on such scams click here.
Tammy Malone is a Client Support Specialist at Triella. We are a technology consulting company specializing in providing technology audits, planning advice, project management and other CIO-related services to small and medium-sized firms. Tammy can be reached at 647.426.1004. For additional articles, go to our blog page. Triella is a VMware Professional Partner, Microsoft Certified Partner, Citrix Solution Advisor – Silver, Dell Preferred Partner, Authorized Worldox Reseller and a Webroot Reseller.
© 2018 by Triella Corp. All rights reserved. Reproduction with credit is permitted.