This scam is not really new. You get an email along the lines of the one below:
a***********9 is your pass word. Lets get right to purpose. You may not know me and you’re probably thinking why you’re getting this email? Not one person has paid me to investigate you.
Let me tell you, I actually setup a malware on the xxx videos (sex sites) site and there’s more, you visited this site to experience fun (you know what I mean). When you were watching videos, your internet browser began working as a RDP with a keylogger which provided me with accessibility to your display as well as cam. Right after that, my software program collected your entire contacts from your Messenger, FB, and e-mail . After that I made a double-screen video. First part shows the video you were watching (you have a good taste hehe), and 2nd part displays the recording of your web camera, yea its you.
You do have two different choices. We are going to analyze each of these choices in particulars:
Very first solution is to ignore this e mail. As a result, I am going to send out your very own videotape to every single one of your contacts and imagine concerning the disgrace you experience. And consequently should you be in an intimate relationship, precisely how it can affect?
Number two solution will be to pay me $1000. We are going to regard it as a donation. Consequently, I most certainly will without delay discard your videotape. You can continue on your daily routine like this never occurred and you will never hear back again from me.
You will make the payment through Bitcoin (if you don’t know this, search “how to buy bitcoin” in Google search engine).
BTC Address: 1KgLDpXLU8wJJdmDFSMQgSNQm5ZE2QgPtM
[CASE sensitive, copy and paste it]
Should you are thinking about going to the law, look, this email can not be traced back to me. I have dealt with my actions. I am just not attempting to demand a whole lot, I simply want to be compensated. You now have one day in order to pay. I’ve a specific pixel within this email, and right now I know that you have read through this e-mail. If I don’t get the BitCoins, I will certainly send your video recording to all of your contacts including friends and family, co-workers, and so on. However, if I receive the payment, I’ll destroy the recording right away. It is a non-negotiable offer, and so please do not waste mine time and yours by responding to this e mail. If you need proof, reply with Yeah and I will certainly send out your video recording to your 15 friends.
To the unsuspecting person that is only a consumer of social media, and adult sites, this can sound extremely alarming and scary. However, as mentioned above, it is not new but what is new and should be concerning is the fact that it includes an actual email and password that you used to sign up somewhere for an account, like a forum or social media. That is the only thing that is unique about this email and is meant to make you think that the goods they have on you are true. But in reality that is not true and the rest of the email reads like a run-of-the-mill scam email. It has poor grammar, looks like the sender is from Iran or some other similar country that used a translation tool. Also, the rest of the email talks in general, cookie-cutter, terms and does not include a proof that they have what they say on you. It would be a simple thing to include a screenshot.
What you should and shouldn’t do
First the shouldn’t. Do not, I repeat, do not respond to the email, pay the scammer, or open any attachments that the email may contain. This particular email had no attachment but reports by other sites are that there is a version of this email with an attachment. If you open it, then malware can and probably will be installed on your computer.
What you should do, then? If the password you used in the past is included in the email then make sure you change that password on all sites where you have used it. And make sure you use strong passwords that are different for each site. How did the scammer get a hold of the password? Your password and email have been attained through a data breach at one or more of the sites you used them to signup. You can use the following website to check if your password is one of the ones that were breached: haveibeenpwned.com.
What else should you do? Run a virus/malware scan of your computer just to be sure no malicious files or programs exist on your system that might be recording keystrokes and/or controlling some other functions of your computers.