Contact Us Today! 1-844-237-4300

Central Technology Solutions Blog

Want to Keep Your “Personal” Browsing a Secret? Scam Says: Pay Up!

Want to Keep Your “Personal” Browsing a Secret? Scam Says: Pay Up!

A new email scam is making its rounds and it has a lot of people concerned with just how much a hacker can peer into one’s private life. How would you react if a stranger emailed you saying they had inappropriate webcam footage of you?

This Scam is a Dirty Trick
This is going to be a taboo subject for many, but it’s a real scam that is quickly getting passed around to users and to some, the risk is so high they might be willing to fall for it. Essentially, an email comes in stating that a hacker got access to your passwords (likely pulled from a list on the dark web from any one of the dozens of web services and businesses that have been hacked over the years). They show off the password to you as proof, right in the email, and mention they have incriminating webcam footage of you, and they’ll share it to your contacts if you don’t pay up.

How It Works
The target of this scam will open their email to find a message that opens by identifying an actual password of the targeted user. The rest of the email reads as one would expect an email of this nature to:

“You don’t know me and you’re thinking why you received this email, right?

Well, I actually placed a malware on the porn website and guess what, you visited this web site to have fun (you know what I mean). While you were watching the video, your web browser acted as a RDP (Remote Desktop) and a keylogger which provided me access to your display screen and webcam. Right after that, my software gathered all your contacts from your Messenger, Facebook account, and email account.

What exactly did I do?

I made a split-screen video. First part recorded the video you were viewing (you’ve got a fine taste haha), and next part recorded your webcam (Yep! It’s you doing nasty things!).

What should you do?

Well, I believe, $1400 is a fair price for our little secret. You’ll make the payment via Bitcoin to the below address (if you don’t know this, search “how to buy bitcoin” in Google).”

The email then provides an address for the recipient to send their Bitcoin to, with the recommendation to copy-paste the case-sensitive alphanumeric sequence. The email ends with a warning:

“Important:

You have 24 hours in order to make the payment. (I have an unique pixel within this email message, and right now I know that you have read this email). If I don’t get the payment, I will send your video to all of your contacts including relatives, coworkers, and so forth. Nonetheless, if I do get paid, I will erase the video immidiately [sic]. If you want evidence, reply with “Yes!” and I will send your video recording to your 5 friends. This is a non-negotiable offer, so don’t waste my time and yours by replying to this email.”

This is not the only version of the email that is out there, but they all follow the same thread and end with the same threat - pay up, or everyone will see what you do behind closed doors.

Is This For Real?
For many people, this is a fair question - and fortunately for many, no, the threats are not legitimate. First of all, the passwords that these attacks are citing are often 10 years old, which means that the criminals likely got their information from an outdated database from some hack from a decade ago.

However, that doesn’t mean that this threat hasn’t been comfortably effective. As of July 19th, a mere 42 Bitcoin addresses had net over $50,000 from 30 victims. While these returns certainly aren’t breaking any records, they are enough to encourage more cybercriminals to leverage similar attacks.

How to Protect Yourself from the Real Deal
Even if this particular threat is little more than an underhanded bluff, that doesn’t mean a legitimate password scam isn’t still well within the realm of possibility. Therefore, the security lessons that can be learned from this particular trend are still extremely applicable.

First and foremost, passwords are like the underwear this probably automated scam claims to have seen its users potentially without - they need to be changed regularly. The fact that 30 people were willing to pay a combined $50,000 tells us two things: they had something they wanted to hide, and they hadn’t changed their passwords in years. Changing your passwords on a regular basis, without repeating them, means that you are safe if one of your past passwords is hacked. After all, the old key to a door won’t work anymore of you’ve changed the lock.

Secondly, and more personally, make sure your webcam is covered up while you aren’t actively using it.

For more best practices, including ones to help preserve your security, keep reading our blog. Reach out to us at 1-844-237-4300 to ask about the solutions we can provide to keep messages like these out of your business in the first place.

Security Threats and Defensive Measures You Can Ta...
Central Technology Solutions’ Technology Thwarts C...
 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Thursday, December 13 2018

Captcha Image

Join our mailing list!

  • Company Name *
  • First Name *
  • Last Name *

      Mobile? Grab this Article!

      QR-Code dieser Seite

      Tag Cloud

      Security Tip of the Week Technology Best Practices Cloud Business Computing Email Malware Privacy Hosted Solutions Hackers IT Services Internet Productivity Managed IT Services Network Security Data Software Outsourced IT IT Support Data Backup Business Mobile Devices Tech Term Productivity Microsoft Ransomware Innovation Computer Data Recovery Backup Hardware Smartphone Google Managed Service Provider Internet of Things Business Continuity Small Business Cloud Computing Windows 10 Data Management Android Remote Monitoring Social Media Disaster Recovery User Tips Communication Smartphones Efficiency Browser Encryption Artificial Intelligence Managed IT BYOD Windows VoIP Facebook IT Support Upgrade Paperless Office Phishing Save Money Business Management App Mobile Device Collaboration Cybersecurity Workplace Tips Mobile Device Management Risk Management Gmail Wi-Fi Government Unified Threat Management Network Robot Windows 10 Server Saving Money BDR Bandwidth Applications Firewall Recovery Content Filtering Vulnerability Passwords Holiday Money Data storage Bring Your Own Device Document Management Going Green Big Data Compliance Vendor Management Wireless Telephone Systems Password Chrome SaaS IT Management Managed IT Services Healthcare Tip of the week Hosted Solution Antivirus Project Management Website Office 365 Apps Infrastructure Virtualization Router Information Two-factor Authentication Data Security Files Data loss Help Desk Customer Service Computing Politics communications Virtual Reality Blockchain Work/Life Balance Miscellaneous Unified Communications Regulations Analytics Remote Computing Office IT Service Training Computers Storage Employer-Employee Relationship File Sharing Apple Automation Managed Service Customer Relationship Management IT solutions Virtual Private Network IoT Network Management Wireless Technology Legal Smart Technology Flexibility Maintenance Chromebook Avoiding Downtime Assessment Business Technology Sports Server Management How To Tech Support Budget Upgrades Uninterrupted Power Supply Internet Exlporer Information Technology HIPAA Twitter Digital Payment Websites Identity Theft Operating System Printing Mouse Word Licensing Outlook Mobile Security Users Spam End of Support Health Redundancy Google Drive YouTube WiFi Settings Downtime Remote Monitoring and Management Monitors Quick Tips Scam Business Growth Microsoft Office Alert Electronic Medical Records Machine Learning Mobility VPN Remote Workers Administration LiFi Patch Management Mobile Computing Education Hacker How To Samsung Tablet Social The Internet of Things Safety Servers Data Breach Geography Authorization Supercomputer Solid State Drive Data Warehousing Dark Data Personal Information Crowdsourcing Meetings Deep Learning Operations Mobile Favorites Tracking Technology Assurance Group ’s 18 Fleet Tracking G Suite History Current Events Computing Infrastructure Taxes Alt Codes Technology Tips Chatbots Notifications Disaster Trending Test Google Maps Net Neutrality Cache Electronic Health Records Wearable Technology Black Market Technology Laws High-Speed Internet Employees Private Cloud IT Budget Cryptocurrency Microsoft Excel Modem Mail Merge Star Wars Monitoring Multi-Factor Security Touchscreen Techology Company Culture Conferencing Distributed Denial of Service Annual Convention VoIP Sponsor Asset Tracking Cabling Printer Alerts Marketing Writing Emoji Recycling Cyberattacks Typing Comparison Identity Buisness MSP RMM Hacks Gadgets Network Congestion Consultation Lenovo Google Calendar Statistics Development Zero-Day Threat Bitcoin Cookies Computer Repair Address Utility Computing Consulting Point of Sale Best Practice Disaster Resistance Managing Stress Instant Messaging Managed IT Service San Diego Physical Security Digital Obstacle OneNote Access Control Cooperation Retail Cortana eWaste Read Only Telephony Specifications 3D Printing Search Proactive Tech Terms Sync Display Superfish Legislation IT Technicians Processors Bluetooth Cables Backup and Disaster Recovery Public Cloud Windows 8 Save Time Permissions Nanotechnology Managed Services Provider Law Enforcement Proactive IT Enterprise Content Management Finance Botnet Identities Break Fix Social Networking Office Tips Spyware Course Employee-Employer Relationship Travel SharePoint Staff Management Black Friday Roanoke — Central Technology Solutions Unsupported Software Virus Shortcut Mobile Device Managment Software Tips Unified Threat Management Hotspot Update Google Wallet Mirgation Wires Human Error Automobile Computer Care Fraud Screen Reader Firefox Cost Management E-Commerce Gadget Heating/Cooling IT Consulting Vulnerabilities Authentication Hard Drives Google Docs Dark Web Motherboard Connectivity Downloads Augmented Reality Social Engineering USB Networking Enterprise Resource Planning Bookmarks GPS Cyber Monday technology services provider Mobile Data WannaCry WPA3 User Error Humor Language Time Management Drones Software as a Service Migration Hacking Permission Backups Smart Tech Virtual Desktop Hard Drive Features Relocation CrashOverride Procurement Regulation Webcam IT Consultant Error Cybercrime Web Server Printers Hard Disk Drive Theft Cameras Motion Sickness Financial CCTV Administrator Emergency