Here’s a message I received today:
I am well aware Kh3t_Lpn!ZoP is your password. Lets get straight to the point. You don’t know me and you are most likely thinking why you’re getting this e-mail? There is no one who has paid me to check you.
Let me tell you, I actually placed a software on the X video clips (adult porn) web-site and there’s more, you visited this site to experience fun (you know what I mean). When you were watching video clips, your browser initiated working as a Remote control Desktop having a key logger which provided me accessibility to your display screen and web cam. after that, my software program gathered all your contacts from your Messenger, Facebook, and email . After that I created a double video. First part displays the video you were watching (you’ve got a nice taste ; )), and 2nd part shows the recording of your web cam, yea it is you.
You have two choices. We will study these options in particulars:
1st choice is to just ignore this email. In this case, I will send your actual video to every single one of your personal contacts and consider about the shame you will definitely get. Or if you are in a loving relationship, precisely how it will affect?
Next solution should be to compensate me $4000. We are going to describe it as a donation. Consequently, I will right away erase your videotape. You could keep on everyday life like this never occurred and you never will hear back again from me.
You will make the payment via Bitcoin (if you don’t know this, search for “how to buy bitcoin” in Google).
BTC Address to send to: **********************************
[case sensitive, copy and paste it]
If you are thinking of going to the cops, look, this email cannot be traced back to me. I have taken care of my actions. I am not attempting to charge you very much, I simply prefer to be paid.
You now have one day in order to pay. I’ve a unique pixel in this e-mail, and right now I know that you have read through this mail. If I do not get the BitCoins, I definitely will send your video to all of your contacts including members of your family, co-workers, and so forth. Nevertheless, if I do get paid, I’ll destroy the video right away. If you want to have proof, reply with Yea! then I definitely will send out your video to your 5 friends. It is a non:negotiable offer, and so don’t waste my personal time & yours by replying to this e-mail.
I’ve received several like this so far in the past few weeks, using two different passwords.
The first password was on a live website. I immediately changed that password and notified the website operator.
The second password was used on a site that appears defunct. So I can’t go in and change that password, obviously.
None of its true, of course. Even if you choose not to believe I don’t do the things described in the eMail, here’s a picture of my webcam:
That’s a sticker covering the camera. I don’t use my webcam, so I’ve kept it covered for years. So, even if someone were to gain access to my webcam, they aren’t going to be able to see anything.
And there are good reasons to cover your webcam even if you’re not doing things you wouldn’t want filmed. You don’t want potential thieves to see the contents of your room, for example. If they can access your computer and webcam, they might also be able to access your address. (That’s already happened to people even without being hacked; thieves see valuable things displayed in photos on people’s social media accounts and then break in and steal them when said people post photos revealing they aren’t at home. Isn’t social media wonderful?)
Regardless, the extortion eMail is done under the hopes you have done the things as described and will send them money so that they erase the video they don’t actually have. (Or erase the videotape. LOL. Did they record the video in 1985? Neat trick.)
Also, I don’t use Messenger so good luck getting any of my contacts from it.
Anyway, I just flag these messages as spam and forget about them.
The thing to be concerned about is the password. That means my eMail and that particular password combination were acquired and distributed online. Most likely, the website I used it on was hacked or otherwise had some kind of security flaw that exposed this data.
Had I used the same password on multiple sites, unscrupulous people would have access to whichever sites I had used that password on. Recently, for example, there were multiple login attempts to my eMail account. They all failed. Whether that was related or not, I don’t know. There’s the possibility that unsavory characters first tried my eMail and password on multiple sites to try to gain access, including my eMail account itself, and after failing to get anywhere, had to resort to a blackmail attempt. Or it could be different people accessing these stolen password lists and doing what they want with them.
You can’t know for sure.
This is why it is a good idea–a really, really good idea–to use a different password with every site you use a password on. No matter how secure you might keep your password, you don’t know how secure a particular website will keep your password. So use different passwords.
At the very least, keep your eMail account password different from every thing else. If anyone gets a hold of your eMail account, then they may be able to reset and change the password on various accounts.
Which is also a good reason to use two-factor authentication where available.
If you’ve received an eMail like I’ve shown above, you probably don’t need to worry about them releasing a video. They most likely don’t even have one. I cannot guarantee that in your case, of course, but it’s highly likely they’ve got nothing and are just hoping you pay up.
But, if you do receive an eMail like that, immediately change your password and each and every account that you’ve used that password on. And never ever reuse that password. Once it’s on the Internet, it’s pretty much out there forever. And someone several years from now might try it just to see if you’re using it again (or still).
Also, if people are sending eMails like this, it’s probably because it works and people send them money in response, which is a good reminder never to use someone else’s computer. Or, if you do, wash your hands really, really well afterwards. Like at least 60 seconds in hot, soapy water. You shouldn’t wash your hands with bleach but dang if it wouldn’t be tempting here. Seriously, ew.