Sexploitation blackmail scam demands bitcoin ransom

/, Security, Tips and advice/Sexploitation blackmail scam demands bitcoin ransom

Sexploitation blackmail scam demands bitcoin ransom

Using a genuine stolen password to get a victim’s attention, a new sexploitation scam threatens victims with exposing them watching pornography.  In an emailed threat, the scammer claims to have downloaded spyware on the victim’s computer that enabled them to take over the victim’s webcam.

There are many variations of this email, however the scammer usually claims to have grabbed your email and social media contacts and to have a recording of you, filmed using your own webcam, watching porn. Demanding a ransom in bitcoin, the scammer then states that if you don’t send $1,000 to $2,000 within 24 hours, the scammer will share compromising images of  you with all your family and friends.

“I think $1,400 is a fair price for our little secret,” the con artist’s email usually says.

In reality, the scammer doesn’t have your contacts or access to your webcam, however, they will provide ‘proof’ that they have done this by providing a genuine password  that you once used, or may still use — with one or more websites.

These passwords are generally sourced from hacker lists based on the series of massive data breaches that have exposed password information on hundreds of millions of consumers (Adobe and LinkedIn being prime sources). These passwords are now floating around the dark web, available to purchase for scammers like this one.

What should you do if you receive this threat?

Firstly, do not panic, your friends and family are not going to receive a video of you despite the very convincing email.

Secondly, take this email as a warning, it likely contains a genuine password that you have used, or even still use. Therefore it is imperative that you change any accounts you have that may use this password or  a version of it.

We have repeatedly provided tips and advice on best practices for passwords, so please visit https://www.cloudspark.co.uk/email-security-tips/  to ensure you are protected.

Those who want to find out whether their passwords have been compromised can go to the security website Have I Been Pwned, which has collected data on the email addresses and passwords that were involved in data breaches.

Frequently, many will find that their email has been subject to multiple breaches, which means that multiple passwords may be at risk.

Below are three real life examples that we have received (variations on these have also appeared on our clients systems).

We are posting the full texts as it will ensure search engines such as google lead people to this article if they are trying to verify the authenticity of emails they have received.

Example 1

I am aware * Password removed* is your passphrase. Lets get right to the purpose. You do not know me and you are probably thinking why you are getting this mail? No-one has compensated me to investigate about you.

Well, I actually setup a malware on the X videos (sexually graphic) web-site and there’s more, you visited this site to have fun (you know what I mean). When you were viewing video clips, your browser began working as a Remote Desktop with a key logger which provided me accessibility to your screen as well as web camera. Just after that, my software program collected your complete contacts from your Messenger, FB, as well as e-mail . After that I made a double video. First part shows the video you were watching (you have a good taste : )), and second part shows the recording of your webcam, & it is you.

You do have not one but two alternatives. Let us check out the solutions in particulars:

1st solution is to neglect this email message. In such a case, I most certainly will send your very own video clip to all of your contacts and also just consider about the shame you experience. Furthermore in case you are in a committed relationship, exactly how it is going to affect?

Next option is to compensate me $5000. We are going to describe it as a donation. In this scenario, I most certainly will without delay delete your video footage. You can resume your way of life like this never took place and you surely will never hear back again from me.

You will make the payment via Bitcoin (if you don’t know this, search for “how to buy bitcoin” in Google).

BTC Address: * Address Removed*
[CASE sensitive, copy and paste it]

If you may be curious about going to the law enforcement officials, okay, this message cannot be traced back to me. I have covered my steps. I am also not attempting to ask you for money a whole lot, I just want to be paid.

You have one day in order to pay. I’ve a unique pixel in this e-mail, and now I know that you have read through this e mail. If I don’t get the BitCoins, I definitely will send out your video recording to all of your contacts including relatives, co-workers, and so on. However, if I do get paid, I will destroy the recording right away. If you want proof, reply with Yes! then I will certainly send your video recording to your 13 friends. It’s a nonnegotiable offer, and thus don’t waste my personal time & yours by replying to this e mail.

Example 2

Hi, dear user
We have installed one RAT software into you device

Your password for * Password Removed*

I have downloaded all confidential information from your system and I got some more evidence.
The most interesting moment that I have discovered are videos records where you masturbating.

I posted my virus on porn site, and then you installed it on your operation system.
When you clicked the button Play on porn video, at that moment my trojan was downloaded to your device.
After installation, your front camera shoots video every time you masturbate, in addition, the software is synchronized with the video you choose.

For the moment, the software has collected all your contact information from social networks and email addresses.
If you need to erase all of your collected data, send me $800 in BTC (crypto currency).
This is my Bitcoin wallet:* Address Removed*
You have 48 hours after reading this letter.

After your transaction I will erase all your data.
Otherwise, I will send video with your pranks to all your colleagues and friends!!!

And henceforth be more careful!
Please visit only secure sites!
Bye!

Example 3

Hello!
I’m a member of an international hacker group.

As you could probably have guessed, your account  * Address removed *was hacked

Now I have access to you accounts!
For example, your password for * Removed*

Within a period from July 7, 2018 to September 23, 2018, you were infected by the virus we’ve created, through an adult website you’ve visited.
So far, we have access to your messages, social media accounts, and messengers.
Moreover, we’ve gotten full damps of these data.

We are aware of your little and big secrets…yeah, you do have them. We saw and recorded your doings on porn websites. Your tastes are so weird, you know..

But the key thing is that sometimes we recorded you with your webcam, syncing the recordings with what you watched!
I think you are not interested show this video to your friends, relatives, and your intimate one…

Transfer $800 to our Bitcoin wallet:
If you don’t know about Bitcoin please input in Google “buy BTC”. It’s really easy.

I guarantee that after that, we’ll erase all your “data” 🙂

A timer will start once you read this message. You have 48 hours to pay the above-mentioned amount.

Your data will be erased once the money are transferred.
If they are not, all your messages and videos recorded will be automatically sent to all your contacts found on your devices at the moment of infection.

You should always think about your security.
We hope this case will teach you to keep secrets.
Take care of yourself.

By |2018-10-03T11:11:51+00:00October 3rd, 2018|Categories: Cyber Crime, Security, Tips and advice|Tags: , |0 Comments
This website uses cookies and third party services. Ok