There’s a new phishing scam doing the rounds using blackmail techniques to make susceptible users hand over their hard earned cash. Known as sextortion phishing, criminals are targeting users by threatening to expose porn viewing by claiming to have webcam footage of the victim using porn. Even more simsiter is the fact the hackers often have users’ passwords.
Typical sextortion phishing email
One example, shared on Twitter by programmer Can Duruk , says:
I’m aware that XXXXXXX is your password.
You don’t know me and you’re thinking why you received this e mail, right?
Well, I actually placed a malware on the porn website and guess what, you visited this web site to have fun (you know what I mean). While you were watching the video, your web browser acted as a RDP (Remote Desktop) and a keylogger which provided me access to your display screen and webcam. Right after that, my software gathered all your contacts from your Messenger, Facebook account, and email account.
What exactly did I do?
I made a split-screen video. First part recorded the video you were viewing (you’ve got a fine taste haha), and next part recorded your webcam (Yep! It’s you doing nasty things!).
What should you do?
Well, I believe, $1400 is a fair price for our little secret. You’ll make the payment via Bitcoin to the below address (if you don’t know this, search “how to buy bitcoin” in Google) .
BTC Address: 1Dvd7Wb72JBTbAcfTrxSJCZZuf4tsT8V72
(It is cAsE sensitive, so copy and paste it)
Important:
You have 24 hours in order to make the payment. (I have an unique pixel within this email message, and right now I know that you have read this email). If I don’t get the payment, I will send your video to all of your contacts including relatives, coworkers, and so forth. Nonetheless, if I do get paid, I will erase the video immidiately. If you want evidence, reply with “Yes!” and I will send your video recording to your 5 friends. This is a non-negotiable offer, so don’t waste my time and yours by replying to this email
Hacked password
The scary part is that they actually use a password that the user recognises. It has been suggested that these may have come from any of the recent large data breaches, such as Uber, Carphone Warehouse, and so on.
While your spam filter will probably stop you receiving these phishing emails, there is still a chance of them getting through and hitting your inbox. It’s important that you and any employees know about the scam, recognise it for what it is, and do feel ashamed or pressured into paying the scammer.
How to deal with this phishing scam
- Do not pay the scammer. Paying shows that you’re vulnerable and you may be targeted again. The police advise that you do not pay criminals.
- Change your password immediately and reset it on any accounts you’ve used the same one for. Always use a strong and separate password. Whenever possible, enable Two-Factor Authentication (2FA).
- Do not reply to the email
- Always keep your anti-virus software and operating systems up to date
- Cover your webcam when you’re not using it
- Report the crime to Action Fraud
Action Fraud reports that over 110 victims have reported receiving emails like the one above in July – adding that having their passwords shown to them is a “nasty twist” on the traditional phishing scam.
Globalnet works with businesses throughout London, Essex, Kent and Herts to ensure their data and networks are secure from all antivirus, malware and ransomware threats. Call us on 0203 005 9650 today to find out how we can provide the right protection for you.
Globalnet aims to be an integral part of your success, providing the best business advice, superior IT support and technology to help you reach your goals.
Find out more about Globalnet’s cyber security plans