Many people are receiving an email from their own email address to their email address, this is referred to as email address spoofing.
On a correctly configured email server with authentication these spoofed emails are blocked and result in failed delivery report (because it has not successfully authenticated).
This is the first indication that this bad actor has NOT hacked or accessed your devices, they don’t know your email credentials and is simply just trying to fool you into sending them money.
Check the Bitcoin abuse site for details: https://www.bitcoinabuse.com/reports/1AyRZviUxoBaCU1pJM5m7C1V2LdhPYiRcB
The host that this hacker is using is based in Hong Kong
This want to be hacker is most likely obtained a list of email addresses from the widely reported Collections #1 breaches which may have one of your very old passwords which you have changed since the time of it being hacked. And is simply using your email address in the hope to scare you into parting with $1000.
The IP address that this hacker is using is listed on many blacklists.
This year we expect a significant increase in email spoofing due to millions of privacy breaches now made public.
You may not know me and you are probably wondering why you are getting this e mail, right?
I’m a hacker who cracked your devices a few months ago.
I sent you an email from YOUR hacked account.
I setup a malware on the adult vids (porno) web-site and guess what, you visited this site to have fun (you know what I mean).
While you were watching videos, your internet browser started out functioning as a RDP (Remote Control) having a keylogger which gave me accessibility to your screen and web cam.
after that, my software program obtained all of your contacts and files.
You entered a passwords on the websites you visited, and I intercepted it.
Of course you can will change it, or already changed it.
But it doesn’t matter, my malware updated it every time.
What did I do?
I created a double-screen video. 1st part shows the video you were watching (you’ve got a good taste haha . . .), and 2nd part shows the recording of your web cam.
Do not try to find and destroy my virus! (All your data is already uploaded to a remote server)
– Do not try to contact with me
– Various security services will not help you; formatting a disk or destroying a device will not help either, since your data is already on a remote server.
I guarantee you that I will not disturb you again after payment, as you are not my single victim. This is a hacker code of honor.
Don’t be mad at me, everyone has their own work.
exactly what should you do?
Well, in my opinion, $1000 (USD) is a fair price for our little secret. You’ll make the payment by Bitcoin (if you do not know this, search “how to buy bitcoin” in Google).
My Bitcoin wallet Address:
(It is cAsE sensitive, so copy and paste it)
You have 48 hour in order to make the payment. (I’ve a facebook pixel in this mail, and at this moment I know that you have read through this email message).
To track the reading of a message and the actions in it, I use the facebook pixel.
Thanks to them. (Everything that is used for the authorities can help us.)
If I do not get the BitCoins, I will certainly send out your video recording to all of your contacts including relatives, coworkers, and so on. Having said that, if I receive the payment, I’ll destroy the video immidiately.
If you need evidence, reply with “Yes!” and I will certainly send out your video recording to your 6 contacts. It is a non-negotiable offer, that being said don’t waste my personal time and yours by responding to this message.
Filing a complaint somewhere does not make sense because this email cannot be tracked like my bitcoin address. I do not make any mistakes. If I find that you have shared this message with someone else, the video will be immediately distributed. Bye!
To the trained eye this email is quite humorous.
The recipient of this scam message…
- Does not have web cameras.
- Has not visited porn sites.
- Contacts are not stored on their devices.
- A keylogger does not exist on any of their devices.
- RDP ports are blocked.
- I’ve a facebook pixel in this mail, sorry hacker you do not!
Scam: This account has been hacked! Change your password right now!
Email scam from: wironout3d.netvigator.com
Address type IPv4
ASN 4760 – HKTIMS-AP PCCW Limited
ISP Hong Kong Telecommunications (HKT) Limited Mass Internet
Organization Hong Kong Telecommunications (HKT) Limited
Actions: Block ASN CIDR 126.96.36.199/18
Always use a different STRONG password for each account. Keep a hardcopy list of sites and login details (including the date) in a safe place . This gives you a head start when trying to track which site has been breached.
Change your passwords on a planned schedule.
Contact an IT security professional if you are concerned about any threats received.