Jump to content
BANGKOK 19 April 2019 13:34
Bangkok Barry

Have I really Been Hacked?

Recommended Posts

Posted (edited)

 

I have received the following in my spam folder three times recently. It purports to come from my own email address, and when I tried to block the sender I received the message that I cannot block my own email address. I know the content of it is nonsense as it says it has tracked me accessing porn sites, and I have not done so. This person has also given me two days to pay a ransom by bitcoin before 'releasing' videos of me watching porn, but this has been threatened three times over the last couple of weeks or so and so is also clearly nonsense, I'd like to stop these spam emails and have the reassurance that this person does not have access to my email. Any advice would be much appreciated.

The email supposedly sent from my own email address associated with Yahoo, is as follows:

 

Hello!
 
I hacked your device, because I sent you this message from your account.
If you have already changed your password, my malware will be intercepts it every time.
 
You may not know me, and you are most likely wondering why you are receiving this email, right?
In fact, I posted a malicious program on adults (pornography) of some websites, and you know that you visited these websites to enjoy 
(you know what I mean).
 
While you were watching video clips,
my trojan started working as a RDP (remote desktop) with a keylogger that gave me access to your screen as well as a webcam.
 
Immediately after this, my program gathered all your contacts from messenger, social networks, and also by e-mail.
 
What I've done?
I made a double screen video.
The first part shows the video you watched (you have good taste, yes ... but strange for me and other normal people),
and the second part shows the recording of your webcam.
 
What should you do?
 
Well, I think $740 (USD dollars) is a fair price for our little secret.
You will make a bitcoin payment (if you don't know, look for "how to buy bitcoins" on Google).
 
BTC Address: 14DvFghvkzQujf5Kd5AL2VKjxaYm5KidxR
(This is CASE sensitive, please copy and paste it)
 
Remarks:
You have 2 days (48 hours) to pay. (I have a special code, and at the moment I know that you have read this email).
 
If I don't get bitcoins, I will send your video to all your contacts, including family members, colleagues, etc.
However, if I am paid, I will immediately destroy the video, and my trojan will be destruct someself.
 
If you want to get proof, answer "Yes!" and resend this letter to youself. 
And I will definitely send your video to your any 10 contacts.
 
This is a non-negotiable offer, so please do not waste my personal and other people's time by replying to this email.
 
Bye!
Edited by Bangkok Barry

Share this post


Link to post
Share on other sites

Yep, a popular spam item.

  • Like 2

Share this post


Link to post
Share on other sites

But how is he able to send an email from my email address? I'll also contact Yahoo about it and see how that's been done.

Share this post


Link to post
Share on other sites
7 hours ago, topt said:

This is TVF............

 

As others have said it is a total scam - there was even a thread posted by Nancy l or Sheryl a while ago when they received a similar mail. The scammers spoof your email address which they get from one of the data breaches possibly along with a password. 

 

You can check if your email has ever been in a known hack from here  https://haveibeenpwned.com/

 

If you haven't changed the password in a while maybe also worth doing.

 

That site looks like an advert to me. I'd bet it never ever comes up with a negative result so it can encourage you to pay to use its service - like some rogue antivirus sites have been known to do.

 

The email I received said that it can trace a change of password.

Share this post


Link to post
Share on other sites
19 minutes ago, Bangkok Barry said:

 

That site looks like an advert to me. I'd bet it never ever comes up with a negative result so it can encourage you to pay to use its service - like some rogue antivirus sites have been known to do.

 

The email I received said that it can trace a change of password.

There is no payment to use this website

 

Collection 1: More Than 770M People Pwned In Biggest Stolen Data Dump Yet

Troy Hunt, a regional director at Microsoft, is highly respected in the world of cybersecurity research. Not least as he is the driving force behind the popular 'have i been pwned?' (HIBP) site

https://www.forbes.com/sites/daveywinder/2019/01/17/collection-1-more-than-770m-people-pwned-in-biggest-stolen-data-dump-yet/#40009cea509f

Share this post


Link to post
Share on other sites
Posted (edited)
1 hour ago, vinny41 said:

There is no payment to use this website

 

Collection 1: More Than 770M People Pwned In Biggest Stolen Data Dump Yet

Troy Hunt, a regional director at Microsoft, is highly respected in the world of cybersecurity research. Not least as he is the driving force behind the popular 'have i been pwned?' (HIBP) site

https://www.forbes.com/sites/daveywinder/2019/01/17/collection-1-more-than-770m-people-pwned-in-biggest-stolen-data-dump-yet/#40009cea509f

 

I appreciate your help. and it might well have a prominent name behind it. But it IS a commercial site and leads you on to pay for a service they provide. I have checked several emails of both myself and people that I know, and they ALL come up positive for having been hacked. Quite a coincidence, hmm? And then it offers a free trial, which means they do then charge for their service. The link from CharlieH above has provided peace of mind.

5aa64c1f-678d-482b-85bc-2de78ebe51e7.png

Edited by Bangkok Barry

Share this post


Link to post
Share on other sites
Posted (edited)
22 minutes ago, Bangkok Barry said:

 

I appreciate your help. but it leads you on to pay for a service they provide. I have checked several emails via this site, and they ALL come up positive for having been hacked. And then it offers a free trial, which means they do then charge for their service. The link from CharlieH above has provided peace of mind.

5aa64c1f-678d-482b-85bc-2de78ebe51e7.png

The 1password is optional I have have checked an old email address that I used for registering with LinkedIn

LinkedIn: In May 2016, LinkedIn had 164 million email addresses and passwords exposed. Originally hacked in 2012, the data remained out of sight until being offered for sale on a dark market site 4 years later. The passwords in the breach were stored as SHA1 hashes without salt, the vast majority of which were quickly cracked in the days following the release of the data.

Compromised data: Email addresses, Passwords

This email address come up as a postive

I have a different email address now and that one comes up as a negative

to test simply create a new gmail or another email provider and check that email address against the site

If you received a huge amount of spam emails on a daily basis is a good indication that your email address has been sold on

I just made this address up and it come back as a negative

0mK400ai5GMmPaP@gmail.com

 

Edited by vinny41
added txt
  • Thanks 1

Share this post


Link to post
Share on other sites

I work with computers and from time to time I also get these questions of this and that mail is real or not.

And that's fair enough. For some people it's not so easy to recognize them.

But then, if someone ask me if a mail like the following is correct, I wonder if they recognize themselves in that description

 

13 hours ago, Bangkok Barry said:
What I've done?
I made a double screen video.
The first part shows the video you watched (you have good taste, yes ... but strange for me and other normal people),
and the second part shows the recording of your webcam.

 

But then there must be those "strange for me and other normal people" 😉

  • Like 1

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

  • Recently Browsing   0 members

    No registered users viewing this page.

×
×
  • Create New...