[WARNING] Emails to clients attempt to extort bitcoin

urcomputech

urcomputech

Active Member
Reaction score
71
Location
Los Angeles, CA, USA
For the third time now I've had clients forward me email attempt to extort bitcoin payments from them. In a nutshell, they claim to have infected some porn site, which you have purportedly visited. In addition, they claim to have captured footage from the webcam of you "entertaining" yourself to the porn from the infected site. Finally, they threatened to forward a link to the webcam footage to all your contacts, unless of course, you deposit thousands of dollars to some bitcoin account.
Question is, has anybody had any experience with these. In my experience, it is an empty threat. I believe if they actually had any real footage, it would at least include the actual name of site infected, plus a thumbnail of the purported video. Maybe even a sample of victim's contact list, at least if it was me preying on these people, this is what I would do. For this reason, my past advice had been to ignore, and in fact, nothing happened. I'm curious though if anyone has had any experience with these type of emails, and if so, were any threats actually followed through?

Below is a copy of an actual email a client received earlier today. Of course, I removed my client's email:

Subject: XXXXXXXXX
Date: Thu, 12 Jul 2018 16:46:24 +0000
From: xxxxxxxxxxxxxxxxxxxxxxxxx
To: XXXXXXXXXXXXXXXXXXX


I'm aware, XXXXXX, is your password. You may not know me and you are probably wondering why you're getting this mail, correct?

actually, I placed a malware on the adult videos (pornographic material) website and there's more, you visited this site to experience fun (you know what I mean). While you were watching videos, your browser started working as a RDP (Remote control Desktop) that has a key logger which provided me with accessibility to your display screen and also cam. after that, my software program collected your complete contacts from your Messenger, FB, as well as email.

What did I do?

I created a double-screen video. First part displays the video you were watching (you have a nice taste haha), and second part displays the recording of your web cam.

What should you do?

Well, I believe, $2900 is a reasonable price tag for our little secret. You'll make the payment through Bitcoin (if you do not know this, search "how to buy bitcoin" in Google).

BTC Address: xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
(It is cAsE sensitive, so copy and paste it)

Important:
You now have one day to make the payment. (I have a unique pixel within this message, and at this moment I know that you have read through this mail). If I do not get the BitCoins, I will definitely send your video to all of your contacts including friends and family, colleagues, and many others. Having said that, if I receive the payment, I'll destroy the video immidiately. If you need proof, reply with "Yes!" and I will certainly send your video to your 5 contacts. It's a non-negotiable offer, and thus don't waste my personal time and yours by replying to this mail.
 
It's making quite a comeback in the past two weeks, my wife even got one and called me in a big panic. It had her password accurate so she believed it. It was a fairly old password, not one we use on important accounts...so any remaining accounts she used that PW at I had her change those.

The phishers sending these emails likely got their hands on a blackmarket/underground list of usernames/passwords sold on the black market. So...yeah, many recipients will get this email and believe it because it shows one of their passwords.

There are lists of usernames/passwords for sale on the black market, for "bad guys" to do various things with. This guys business plan banks on him receiving more bitcoin payments than he paid for the list.
 
What surprises me about this email is how well it is written. Usually it's half broken English that makes no sense what so ever.

Sent from my SM-G870W using Tapatalk
 
urcomputech said:
For the third time now I've had clients forward me email attempt to extort bitcoin payments from them. In a nutshell, they claim to have infected some porn site, which you have purportedly visited. In addition, they claim to have captured footage from the webcam of you "entertaining" yourself to the porn from the infected site. Finally, they threatened to forward a link to the webcam footage to all your contacts, unless of course, you deposit thousands of dollars to some bitcoin account.
Question is, has anybody had any experience with these. In my experience, it is an empty threat. I believe if they actually had any real footage, it would at least include the actual name of site infected, plus a thumbnail of the purported video. Maybe even a sample of victim's contact list, at least if it was me preying on these people, this is what I would do. For this reason, my past advice had been to ignore, and in fact, nothing happened. I'm curious though if anyone has had any experience with these type of emails, and if so, were any threats actually followed through?

Below is a copy of an actual email a client received earlier today. Of course, I removed my client's email:

Subject: XXXXXXXXX
Date: Thu, 12 Jul 2018 16:46:24 +0000
From: xxxxxxxxxxxxxxxxxxxxxxxxx
To: XXXXXXXXXXXXXXXXXXX


I'm aware, XXXXXX, is your password. You may not know me and you are probably wondering why you're getting this mail, correct?

actually, I placed a malware on the adult videos (pornographic material) website and there's more, you visited this site to experience fun (you know what I mean). While you were watching videos, your browser started working as a RDP (Remote control Desktop) that has a key logger which provided me with accessibility to your display screen and also cam. after that, my software program collected your complete contacts from your Messenger, FB, as well as email.

What did I do?

I created a double-screen video. First part displays the video you were watching (you have a nice taste haha), and second part displays the recording of your web cam.

What should you do?

Well, I believe, $2900 is a reasonable price tag for our little secret. You'll make the payment through Bitcoin (if you do not know this, search "how to buy bitcoin" in Google).

BTC Address: xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
(It is cAsE sensitive, so copy and paste it)

Important:
You now have one day to make the payment. (I have a unique pixel within this message, and at this moment I know that you have read through this mail). If I do not get the BitCoins, I will definitely send your video to all of your contacts including friends and family, colleagues, and many others. Having said that, if I receive the payment, I'll destroy the video immidiately. If you need proof, reply with "Yes!" and I will certainly send your video to your 5 contacts. It's a non-negotiable offer, and thus don't waste my personal time and yours by replying to this mail.
Click to expand...

About 2 weeks ago I got one of these emails. It does tend to unsettle you a bit when you first read it. I mean, Its pretty darn straight forward - Caught you on your cam doing things and now I want money.

Now, Normally you can just bin the email. Its an idle threat. However, I could not resist firing back at them. I posted something like this:

"WOW! So, Can you post it to you tube? I mean, I would be famous! It really sounds like a great opportunity for both of us to make some quick cash. I mean, All the girls tell me Iam quite a handsome guy. Maybe one of those porn sites we can submit it too and really clean up on this!"

"Im really excited about this! Of course we need to edit the footage for any bad video and such. If you need extra footage or need me to redue anything then let me know. I will see what I can do. Im really sensing a great opportunity here!"

"Count me in!!"
 
One of my clients got a different one. It didn't have a password and the text was hard to read because of the broken English but it did claim that one of your devices was hacked and they had all of your passwords. The email came in via the company's contact us email link so it was probably just a spam bot working the websites. They are getting a new website soon that I assume will have captcha.
 
coffee said:
"WOW! So, Can you post it to you tube? I mean, I would be famous! It really sounds like a great opportunity for both of us to make some quick cash. I mean, All the girls tell me Iam quite a handsome guy. Maybe one of those porn sites we can submit it too and really clean up on this!"

"Im really excited about this! Of course we need to edit the footage for any bad video and such. If you need extra footage or need me to redue anything then let me know. I will see what I can do. Im really sensing a great opportunity here!"

"Count me in!!"
Click to expand...

LOL..well played! Will have to play that game next time one roll into my inbox.."Hey, I'm hung like a horse, just find me a woman that can withstand the size and we'll make some videos that will dominate the XXX world!"
 
Got such emails in the past. The passwords inside such emails never accorded with my at that moment actual passwords. Ah, and the important facts are: I do not own a webcam for my desktop and also my notebook does not have a built-in cam. I do not have a facebook account and do not use any software that might store my contacts' data.

Long story short: Nothing happened to me ignoring such mails.
 
LordIntruder said:
Got such emails in the past. The passwords inside such emails never accorded with my at that moment actual passwords. Ah, and the important facts are: I do not own a webcam for my desktop and also my notebook does not have a built-in cam. I do not have a facebook account and do not use any software that might store my contacts' data.

Long story short: Nothing happened to me ignoring such mails.
Click to expand...

Yes, you're right. I've actually seen more of those types of emails since my original post - not to mention a report about it on NPR radio. Clearly there was an upsurge of this type of scam. I wonder how much $ these crooks make from this ... pretty sad this is the kind of world we live in.
 
You must log in or register to reply here.

Similar threads

britechguy
Comcast.net (Xfinity) email and auto setup in various email clients . . .
Replies
9
Views
392
britechguy
britechguy
GTP
iinet closing email services.
2
Replies
21
Views
2K
frecklesnoot
frecklesnoot
thecomputerguy
Wide-Spread Yahoo/AOL/SBCGlobal issue? (O365)
Replies
10
Views
331
YeOldeStonecat
YeOldeStonecat
thecomputerguy
[O365] You don't often get email from XXX (Learn why this is important).
Replies
10
Views
388
thecomputerguy
thecomputerguy
thecomputerguy
Will this work properly as a forwarding rule in O365?
Replies
5
Views
217
britechguy
britechguy
Back
Top