Contact Us Today! 1-844-237-4300

Central Technology Solutions Blog

Want to Keep Your “Personal” Browsing a Secret? Scam Says: Pay Up!

Want to Keep Your “Personal” Browsing a Secret? Scam Says: Pay Up!

A new email scam is making its rounds and it has a lot of people concerned with just how much a hacker can peer into one’s private life. How would you react if a stranger emailed you saying they had inappropriate webcam footage of you?

This Scam is a Dirty Trick
This is going to be a taboo subject for many, but it’s a real scam that is quickly getting passed around to users and to some, the risk is so high they might be willing to fall for it. Essentially, an email comes in stating that a hacker got access to your passwords (likely pulled from a list on the dark web from any one of the dozens of web services and businesses that have been hacked over the years). They show off the password to you as proof, right in the email, and mention they have incriminating webcam footage of you, and they’ll share it to your contacts if you don’t pay up.

How It Works
The target of this scam will open their email to find a message that opens by identifying an actual password of the targeted user. The rest of the email reads as one would expect an email of this nature to:

“You don’t know me and you’re thinking why you received this email, right?

Well, I actually placed a malware on the porn website and guess what, you visited this web site to have fun (you know what I mean). While you were watching the video, your web browser acted as a RDP (Remote Desktop) and a keylogger which provided me access to your display screen and webcam. Right after that, my software gathered all your contacts from your Messenger, Facebook account, and email account.

What exactly did I do?

I made a split-screen video. First part recorded the video you were viewing (you’ve got a fine taste haha), and next part recorded your webcam (Yep! It’s you doing nasty things!).

What should you do?

Well, I believe, $1400 is a fair price for our little secret. You’ll make the payment via Bitcoin to the below address (if you don’t know this, search “how to buy bitcoin” in Google).”

The email then provides an address for the recipient to send their Bitcoin to, with the recommendation to copy-paste the case-sensitive alphanumeric sequence. The email ends with a warning:

“Important:

You have 24 hours in order to make the payment. (I have an unique pixel within this email message, and right now I know that you have read this email). If I don’t get the payment, I will send your video to all of your contacts including relatives, coworkers, and so forth. Nonetheless, if I do get paid, I will erase the video immidiately [sic]. If you want evidence, reply with “Yes!” and I will send your video recording to your 5 friends. This is a non-negotiable offer, so don’t waste my time and yours by replying to this email.”

This is not the only version of the email that is out there, but they all follow the same thread and end with the same threat - pay up, or everyone will see what you do behind closed doors.

Is This For Real?
For many people, this is a fair question - and fortunately for many, no, the threats are not legitimate. First of all, the passwords that these attacks are citing are often 10 years old, which means that the criminals likely got their information from an outdated database from some hack from a decade ago.

However, that doesn’t mean that this threat hasn’t been comfortably effective. As of July 19th, a mere 42 Bitcoin addresses had net over $50,000 from 30 victims. While these returns certainly aren’t breaking any records, they are enough to encourage more cybercriminals to leverage similar attacks.

How to Protect Yourself from the Real Deal
Even if this particular threat is little more than an underhanded bluff, that doesn’t mean a legitimate password scam isn’t still well within the realm of possibility. Therefore, the security lessons that can be learned from this particular trend are still extremely applicable.

First and foremost, passwords are like the underwear this probably automated scam claims to have seen its users potentially without - they need to be changed regularly. The fact that 30 people were willing to pay a combined $50,000 tells us two things: they had something they wanted to hide, and they hadn’t changed their passwords in years. Changing your passwords on a regular basis, without repeating them, means that you are safe if one of your past passwords is hacked. After all, the old key to a door won’t work anymore of you’ve changed the lock.

Secondly, and more personally, make sure your webcam is covered up while you aren’t actively using it.

For more best practices, including ones to help preserve your security, keep reading our blog. Reach out to us at 1-844-237-4300 to ask about the solutions we can provide to keep messages like these out of your business in the first place.

Security Threats and Defensive Measures You Can Ta...
Central Technology Solutions’ Technology Thwarts C...
 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Tuesday, July 23 2019

Captcha Image

Join our mailing list!

  • Company Name *
  • First Name *
  • Last Name *

      Mobile? Grab this Article!

      QR-Code dieser Seite

      Tag Cloud

      Security Tip of the Week Technology Best Practices Cloud Business Computing Productivity Hosted Solutions Email Malware Privacy IT Services Network Security Hackers Internet Data Software Data Backup Productivity Outsourced IT Managed IT Services Business Computer Microsoft IT Support Innovation Ransomware Mobile Devices Data Recovery Hardware Tech Term Cloud Computing Google Small Business Efficiency Business Continuity Backup IT Support Collaboration Managed Service Provider Upgrade Internet of Things User Tips Smartphone Android Communication Business Management VoIP Phishing Smartphones Remote Monitoring Paperless Office Disaster Recovery Save Money Data Management Windows 10 Windows Encryption Artificial Intelligence Social Media Windows 10 Server communications Cybersecurity Workplace Tips Browser Managed IT Managed IT Services BYOD Mobile Device Facebook Risk Management Quick Tips Passwords App Mobile Device Management Office 365 Automation Saving Money Holiday Government Apps Unified Threat Management Wi-Fi Document Management Bring Your Own Device Employer-Employee Relationship Gmail Robot Compliance Vendor Management Managed Service Password BDR Business Technology Network Analytics Chrome Recovery Firewall Virtualization Bandwidth Applications Laptops Tip of the week Help Desk Healthcare Scam Antivirus Money Project Management Content Filtering Data storage Going Green Infrastructure Miscellaneous Telephone Systems SaaS Vulnerability Wireless Information Training Big Data Blockchain Microsoft Office File Sharing Processor Hosted Solution IT Management Website Customer Service Two-factor Authentication Politics Router Work/Life Balance Computing VPN Virtual Reality Customer Relationship Management Printing Data loss Operating System Data Security Regulations Office IT Service Unified Communications Remote Computing Computers Users Storage Settings Tablet Downtime Files Apple Social LiFi Avoiding Downtime Education Private Cloud Proactive The Internet of Things Current Events Software as a Service Tech Support Wireless Technology Legal IT solutions Upgrades Maintenance Management Smart Technology Digital Payment Remote Monitoring and Management Net Neutrality Patch Management Websites Identity Theft Networking Twitter Licensing Remote Workers Budget Sports Information Technology Virtual Private Network Display Bitcoin Internet Exlporer End of Support Health Gadgets Network Management IoT Outlook HIPAA Mouse Assessment Server Management Access Control Cooperation How To Monitors Alert Mobile Security Electronic Medical Records Machine Learning Mobility Google Drive Uninterrupted Power Supply Windows 7 Employees Consultation Spam YouTube Business Growth Company Culture WiFi How To Samsung RMM Mobile Computing Word Flexibility Hacker Redundancy Chromebook Administration Proactive IT Notifications Remote Worker User Error Language Deep Learning eWaste Read Only Spyware Course Hard Disk Drives Cyber Monday technology services provider IT Budget Solid State Drive Tech Terms Smart Tech Cabling Managed Services Provider Shortcut Virtual Desktop Migration Cables Backup and Disaster Recovery Black Market Projects Employee-Employer Relationship Wasting Time Operations Alt Codes Enterprise Content Management Finance Firefox Writing Emoji Proactive Maintenance Data Warehousing Heating/Cooling IT Consulting ROI Computing Infrastructure Point of Sale Network Congestion Solid State Drives Technology Assurance Group ’s 18 Cryptocurrency Theft Return on Investment Cybercrime Cost Management E-Commerce WannaCry Computer Repair Teamwork Technology Tips Chatbots Wires Human Error Time Management Sync Hacks Connectivity Hacking Physical Security Database Multi-Factor Security Wearable Technology Telephony Typing Vulnerabilities Authentication Retail Cortana Database Management Microsoft Excel Modem Financial Servers Data Breach 3D Printing Notes Printer Alerts Law Enforcement Best Practice Enterprise Resource Planning Bookmarks Options Marketing Distributed Denial of Service Annual Convention Public Cloud WPA3 Buisness Travel Hard Drive Features Shared resources Comparison Identity Botnet Permission Processors Mobile Device Managment Software Tips Disaster Trending Office Tips Voice over Internet Protocol Google Calendar Geography Authorization GDPR Cookies Save Time Fleet Tracking Procurement Technology Laws Unsupported Software Virus PowerPoint Gadget Mobile Favorites Mail Merge Update 5G Managed IT Service San Diego Automobile Computer Care Windows 8 Cache Electronic Health Records VoIP Sponsor OneDrive Specifications Identities Test Touchscreen Techology Nanotechnology Star Wars Monitoring Legislation IT Technicians GPS High-Speed Internet Lenovo Social Engineering USB Permissions Asset Tracking Statistics Mobile Data Professional Services SharePoint Staff Google Wallet Conferencing Address Wireless Internet Break Fix Social Networking Security Cameras Unified Threat Management Hotspot Crowdsourcing Meetings Recycling Cyberattacks Digital Obstacle Manufacturing Black Friday Roanoke — Central Technology Solutions Supercomputer Hard Drives Google Docs MSP Disaster Resistance Fraud Screen Reader G Suite History Utility Computing Humor Consulting Search Dark Data Personal Information Transportation Mirgation Tracking Development Zero-Day Threat Superfish Safety Backups OneNote Bluetooth Virtual Assistant Downloads Augmented Reality Taxes Drones Managing Stress Instant Messaging Employer/Employee Relationships Dark Web Motherboard Google Maps Webcam Hard Disk Drive Students IT Consultant Printers Error Emergency Web Server CrashOverride Cameras Motion Sickness Regulation CCTV Administrator Relocation