Dismiss Notice
Guest, I have a big favor to ask you. We've been working very hard to establish ourselves on social media. If you like/follow our pages it would be a HUGE help to us. SoSH on Facebook and Inside the Pylon Thanks! Nip

Spam email or real?

Discussion in 'BYTE ME: Technology discussion' started by cutman1000, Oct 19, 2018.

  1. cutman1000

    cutman1000 Member SoSH Member

    Messages:
    3,231
    I have friends from New Zealand staying with me, and one of them just received the following email (from his own email address):

    *********************

    Hello!

    My nickname in darknet is ramon96.
    I hacked this mailbox more than six months ago,
    through it I infected your operating system with a virus (trojan) created by me and have been monitoring you for a long time.

    So, your password from md.am.***********@xtra.co.nz is ************

    Even if you changed the password after that - it does not matter, my virus intercepted all the caching data on your computer
    and automatically saved access for me.

    I have access to all your accounts, social networks, email, browsing history.
    Accordingly, I have the data of all your contacts, files from your computer, photos and videos.

    I was most struck by the intimate content sites that you occasionally visit.
    You have a very wild imagination, I tell you!

    During your pastime and entertainment there, I took screenshot through the camera of your device, synchronizing with what you are watching.
    Oh my god! You are so funny and excited!

    I think that you do not want all your contacts to get these files, right?
    If you are of the same opinion, then I think that $860 is quite a fair price to destroy the dirt I created.

    Send the above amount on my BTC wallet (bitcoin): 1FHPbKHcSx9CaXJzDpLoXG733ipQ77UNx9
    As soon as the above amount is received, I guarantee that the data will be deleted, I do not need it.

    Otherwise, these files and history of visiting sites will get all your contacts from your device.
    Also, I'll send to everyone your contact access to your email and access logs, I have carefully saved it!

    Since reading this letter you have 48 hours!
    After your reading this message, I'll receive an automatic notification that you have seen the letter.

    I hope I taught you a good lesson.
    Do not be so nonchalant, please visit only to proven resources, and don't enter your passwords anywhere!
    Good luck!

    *************

    So, I’m not sure if he has been looking at weird porn sites, but I gather that the sender does have his login and password.

    He has asked me for advice and I have no clue what to tell him. My gut feeling is to ignore it...

    Any advice?
     
  2. Dernells Casket n Flagon

    Dernells Casket n Flagon Member SoSH Member

    Messages:
    3,030
    This is a pretty common e-mail/blackmail recent tactic.

    https://krebsonsecurity.com/2018/07/sextortion-scam-uses-recipients-hacked-passwords/

    Generally it's a result of scraping leaks from high profile password breaches that have been posted publicly and to paste bin and such, they then send those usernames and passwords to victim to try and make them thing they have more than they really do. If you google sextortion scam, you'll see a lot of hits on this, but he should almost certainly ignore it. If they really had screenshots they would have sent them with it.
     
  3. E5 Yaz

    E5 Yaz Transcends message boarding Lifetime Member SoSH Member

    Messages:
    57,050
    If you have to ask ...
     
  4. Bergs

    Bergs Member SoSH Member

    Messages:
    11,771
    Seriously.
     
  5. drbretto

    drbretto guidence counselor SoSH Member

    Messages:
    8,706
    With the exception of the email address and passwords, every line in that has no idea who the recipient is. If it was remotely real, they'd have more specifics. They're relying on the email and password info to get you to believe the rest.

    I just got a credit alert saying my email and password was breached myself (as a credit alert, not a scam). They have my email address and password from hacking sites that I've been to that use them. AFAIK, that's all they have, and that's probably all they have on you, too. Change those passwords and you will be ok.
     
  6. cutman1000

    cutman1000 Member SoSH Member

    Messages:
    3,231
    Thank you. I thought it was a scam, but he was prepared to call the police. Y’all have calmed him down.
     
  7. johnmd20

    johnmd20 literally like ebola Lifetime Member Gold Supporter SoSH Member

    Messages:
    34,824
    "You have a wild imagination, I tell you," really gives this entire thing away.

    If they did have compromising info on intimate sites, they would undoubtedly be like, "And those German shizer videos are really fucked up, dude, and you do not want anyone knowing about them. I will send screenshots to your boss and wife unless you pay me."
     
  8. Noseminer

    Noseminer lurker

    Messages:
    75
    "Even if you changed the password after that - it does not matter, my virus intercepted all the caching data on your computer
    and automatically saved access for me."

    Another giveaway. If he knew you had changed the password, he most certainly would say "On such and such a date at such and such time you changed them to whatever and whatever" He only has those passwords and nothing else. If i was going to blackmail somebody, I certainly wouldn't leave ANY doubt as to how much info I really had. It's a scare tactic that unfortunately a lot of people fall for. As drbretto above stated, just change the passwords and ignore it.
     
  9. Papelbon's Poutine

    Papelbon's Poutine Homeland Security SoSH Member

    Messages:
    16,431
    It’s coming from inside the house!!!!
     
  10. Hendu for Kutch

    Hendu for Kutch Member SoSH Member

    Messages:
    5,486
    The first time I got one of those, with a password I sometimes use in the subject line it freaked me the hell out. Just seeing that password right in my face from someone with obvious ill intent spooked the shit out of me. So I get why your friend would initially be worked up about it.

    Even though googling confirmed it was bullshit, I still took the liberty of sharing the email on Facebook and letting people know that if they didn't want to get the video, they'd better pay the guy.
     
  11. Saints Rest

    Saints Rest Well-Known Member Lifetime Member SoSH Member

    Messages:
    6,629
    +1. Pretty much exactly my response.
     
  12. Noseminer

    Noseminer lurker

    Messages:
    75
    And you also better let them know to expect more scams. Once an easy target, ALWAYS an easy target. He will let his circle know that such and such pays up. They will also target the same person with other scams. Do you know why I never "unsubscribe" to unsolicited emails and why i tell others to also never respond? That's exactly what they want you to do. Sure. They will unsubscribe you from their own list, but they will also sell your email address to everyone else. Why? Because now they know it's a valid, working email address. Same thing applies here. NEVER pay. Ever. Don't want the whole world to know you snap your carrot watching porn? Uh. Pretty much everyone knows that because pretty much everyone has or does the same thing. And if you have a lot to lose by people finding out certain things, maybe be careful what you do on the internet. There is no such thing as privacy on the internet. People can get info easily from the net. Sometimes a LOT of info. I never use facebook or twitter or anything.. It amazes me how much info people are giving others on social media without even knowing it. Don't post pictures of yourself ever. I worked as a skip tracer for a while. With nothing more than a screen name sometimes, in two days, give or take, I had their names, address, email, etc. With only a screen name. Tell your friend to ignore it, and to let his local law enforcement know about it.
     
  13. Hendu for Kutch

    Hendu for Kutch Member SoSH Member

    Messages:
    5,486
    I may be misreading you, but I think you misread me. I sent it as a joke to my Facebook list that if they didn't pay up, they were going to get sent my video. I never responded or acknowledged the people who sent it.
     
  14. Noseminer

    Noseminer lurker

    Messages:
    75
    You are correct. I indeed misread you. My apologies.
     
    #14 Noseminer, Oct 20, 2018
    Last edited: Oct 26, 2018
  15. Lose Remerswaal

    Lose Remerswaal Leaves after the 8th inning Lifetime Member SoSH Member

    Messages:
    32,358
    Not unsubscribing is a good move when talking about spam email, but if it is from a legit site that you once did business with and don’t want more mail from, unsubscribing is the right move
     
  16. Noseminer

    Noseminer lurker

    Messages:
    75
    I agree. Which is why I specifically said "unsolicited" emails.
     
  17. InsideTheParker

    InsideTheParker Member SoSH Member

    Messages:
    23,001
    I have now gotten this twice in my spam folder, along with a handy introduction to bitcoin. The funny part is that I haven't gone to the kinds of sites mentioned, so I don't feel the shame requisite to making this scam work. It is helpful to find this thread and feel less alone.
    Still, I find it annoying. But I guess it's far from the worst thing that this technology has wrought.
     

Share This Page