Announcement

Collapse
No announcement yet.

WARNING: Possible ransonware in forum

Collapse
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

  • WARNING: Possible ransonware in forum

    Yesterday I received an email trying to blackmail me, and it included my password. I use this password in only 2 sites, this being one of them, I am warning both sites that there might be something here that might have caused this. My coumputer is clean, and I received no other email with information from other places.

  • #2
    jlvfr,

    Can you post snapshots?

    All should use different passwords for different sites, else all go kaput in case of a hijack.

    I doubt it's a ransomware. Might be a backdoor that stole passwords. Might be from the other site that you visit too.

    And, thanks for letting us know.
    Last edited by Oracle; 26 Jul 18,, 11:42.
    Politicians are elected to serve...far too many don't see it that way - Albany Rifles! || Loyalty to country always. Loyalty to government, when it deserves it - Mark Twain! || I am a far left millennial!

    Comment


    • #3
      Originally posted by Oracle View Post
      jlvfr,

      Can you post snapshots?

      All should use different passwords for different sites, else all go kaput in case of a hijack.

      I doubt it's a ransomware. Might be a backdoor that stole passwords. Might be from the other site that you visit too.

      And, thanks for letting us know.
      Can do better, here are the headers of the mail:

      Return-Path: <[email protected]>
      Delivered-To: [email protected]
      Received: (qmail 13081 invoked from network); 26 Jul 2018 01:33:48 -0000
      Received: from unknown ([195.23.133.213])
      by mailfrt13.isp.novis.pt with compressed QMQP; 26 Jul 2018 01:33:48 -0000
      Delivered-To: CLUSTERHOST mailrly03.isp.novis.pt [email protected]
      Received: (qmail 4727 invoked from network); 26 Jul 2018 01:33:48 -0000
      Received: from unknown (HELO mail0.commarysmith.com) ([46.161.42.76]) (envelope-sender <[email protected]>)
      by mailrly03.isp.novis.pt with SMTP; 26 Jul 2018 01:33:48 -0000
      Received-SPF: pass (mailrly03.isp.novis.pt: SPF record at commarysmith.com
      designates 46.161.42.76 as permitted sender)
      Date: Wed, 25 Jul 2018 18:33:44 -0700
      Subject: [email protected]:XXXXXXXXX
      Message-ID: <7f7gxz066j48dtdorq5shjrc.1728346655437@>
      From: Sophia <sender>
      To: [email protected]
      X-MSTD-Info: clean
      X-IPG-AntiSpam: hits=4.9, required=5.0 (d) - not spam
      MIME-Version: 1.0
      Content-Transfer-Encoding: 7bit
      Content-Type: text/plain; charset=UTF-8


      And this is the email text:


      It appears that, (XXXXXXXX), 's your password. May very well not know me and you are most likely wondering why you're getting this e mail, right?

      in fact, I setup a malware over the adult videos (adult) website and guess what happens, you visited this site to have fun (you know what I am talking about). Whilst you were watching videos, your internet browser started out operating as a RDP (Team Viewer) which provided accessibility of your screen and web cam. from then on, my software program obtained all your contacts out of your Messenger, Outlook, Facebook, along with emails.

      What did I actually do?

      I made a double-screen video. 1st part shows the recording you're watching (you have a good taste haha . . .), and 2nd part shows the recording of your web cam.

      exactly what should you do?

      Well, in my opinion, $1000 is a reasonable price for your little hidden secret. You'll make the payment by Bitcoin (if you do not know this, search "how to purchase bitcoin" search engines like google).

      Bitcoin Address: 15Pn9bfnoYuSW2f7AZoYkZ6TgKKb1dYYBB
      (It is case sensitive, so copy and paste it)

      Important:
      You've got 1 day in order to make the payment. (I've a unique pixel within this e-mail, and at this moment I know that you have read through this email message). If I do not get the BitCoins, I will certainly send your video recording to all of your contacts including family members, coworkers, and so forth. Having said that, if I get the payment, I'll destroy the recording immidiately. If you need evidence, reply with "Yes!" and i'll certainly mail out your videos to your 6 contacts. It is a non-negotiable offer, that being said don't waste my personal time and yours by answering this message.





      I replaced my email with "[email protected]" and XXXXXX is where my password was.

      Parts of it are boilerplate, others are plain wrong. I don't have a webcam, and the number of contacts is wrong. But the password was correct, hence my post.

      Comment


      • #4
        Cover up your laptop's webcam with a tape, or any webcam at all. It's considered general practice nowadays.
        Last edited by Oracle; 26 Jul 18,, 13:36.
        Politicians are elected to serve...far too many don't see it that way - Albany Rifles! || Loyalty to country always. Loyalty to government, when it deserves it - Mark Twain! || I am a far left millennial!

        Comment


        • #5
          Originally posted by jlvfr View Post
          Can do better, here are the headers of the mail:

          And this is the email text:


          It appears that, (XXXXXXXX), 's your password. May very well not know me and you are most likely wondering why you're getting this e mail, right?
          Could have got this by hacking the board or some other way. Taking the board out hasn't happened in a long while if memory serves.

          in fact, I setup a malware over the adult videos (adult) website and guess what happens, you visited this site to have fun (you know what I am talking about). Whilst you were watching videos, your internet browser started out operating as a RDP (Team Viewer) which provided accessibility of your screen and web cam. from then on, my software program obtained all your contacts out of your Messenger, Outlook, Facebook, along with emails.

          What did I actually do?

          I made a double-screen video. 1st part shows the recording you're watching (you have a good taste haha . . .), and 2nd part shows the recording of your web cam.

          exactly what should you do?

          Well, in my opinion, $1000 is a reasonable price for your little hidden secret. You'll make the payment by Bitcoin (if you do not know this, search "how to purchase bitcoin" search engines like google).

          Bitcoin Address: 15Pn9bfnoYuSW2f7AZoYkZ6TgKKb1dYYBB
          (It is case sensitive, so copy and paste it)

          Important:
          You've got 1 day in order to make the payment. (I've a unique pixel within this e-mail, and at this moment I know that you have read through this email message). If I do not get the BitCoins, I will certainly send your video recording to all of your contacts including family members, coworkers, and so forth. Having said that, if I get the payment, I'll destroy the recording immidiately. If you need evidence, reply with "Yes!" and i'll certainly mail out your videos to your 6 contacts. It is a non-negotiable offer, that being said don't waste my personal time and yours by answering this message.

          I replaced my email with "[email protected]" and XXXXXX is where my password was.

          Parts of it are boilerplate, others are plain wrong. I don't have a webcam, and the number of contacts is wrong. But the password was correct, hence my post.
          I suspect this bit is a ruse. He's betting you won't call his bluff

          Comment


          • #6
            Originally posted by Oracle View Post
            Cover up your laptop's webcam with a tape, or any webcam at all. It's considered general practice nowadays.
            I don't have one. :D

            Comment


            • #7
              Originally posted by Double Edge View Post
              Could have got this by hacking the board or some other way. Taking the board out hasn't happened in a long while if memory serves.

              I suspect this bit is a ruse. He's betting you won't call his bluff
              *One gets a million email addresses (hacked or bought from darknet)*
              *One composes just one email*
              *Subject can be nude pics/porn sites etc etc*
              *One mails it to those million email addresses*
              *Even if 10K people fall for it, one earn in millions*
              *That's how scammers work, they take their chances*
              Politicians are elected to serve...far too many don't see it that way - Albany Rifles! || Loyalty to country always. Loyalty to government, when it deserves it - Mark Twain! || I am a far left millennial!

              Comment


              • #8
                Originally posted by jlvfr View Post
                I don't have one. :D
                You're missing on camdolls dancing naked. :D
                Politicians are elected to serve...far too many don't see it that way - Albany Rifles! || Loyalty to country always. Loyalty to government, when it deserves it - Mark Twain! || I am a far left millennial!

                Comment


                • #9
                  Looks like a phishing attack on your email to me. Reformat, change passwords and ignore. If you have no webcam it is clearly a bluff.
                  Last edited by snapper; 26 Jul 18,, 16:14.

                  Comment


                  • #10
                    Originally posted by snapper View Post
                    Looks like a phishing attack on your email to me. Reformat, change passwords and ignore. If you have no webcam it is clearly a bluff.
                    Could be. Then his email is up for sale in the darknet. Reformat???
                    Politicians are elected to serve...far too many don't see it that way - Albany Rifles! || Loyalty to country always. Loyalty to government, when it deserves it - Mark Twain! || I am a far left millennial!

                    Comment


                    • #11
                      Originally posted by Oracle View Post
                      Could be. Then his email is up for sale in the darknet. Reformat???
                      If my email is compromised, formating is useless, since that wouldn't change it.

                      Comment


                      • #12
                        Originally posted by Double Edge View Post
                        I suspect this bit is a ruse. He's betting you won't call his bluff
                        I agree, it's likely a ruse
                        Last edited by TopHatter; 06 Aug 18,, 14:28.
                        “He was the most prodigious personification of all human inferiorities. He was an utterly incapable, unadapted, irresponsible, psychopathic personality, full of empty, infantile fantasies, but cursed with the keen intuition of a rat or a guttersnipe. He represented the shadow, the inferior part of everybody’s personality, in an overwhelming degree, and this was another reason why they fell for him.”

                        Comment


                        • #13
                          Originally posted by jlvfr View Post
                          If my email is compromised, formating is useless, since that wouldn't change it.
                          If you have been phished your system is compromised - they have possibly planted a virus on it that allows them see your passwords. Reformatting should clear most of it. As I said change passwords also which should renew your security on your email.

                          Comment


                          • #14
                            Originally posted by snapper View Post
                            If you have been phished your system is compromised - they have possibly planted a virus on it that allows them see your passwords. Reformatting should clear most of it. As I said change passwords also which should renew your security on your email.
                            If I had beehn phished via my PC, they'd have all my passwords, the correct number of contacts and would know that I don't have a webcam. Since that wasn't the case...

                            Comment


                            • #15
                              I got the same E-mail 2 days ago.

                              I don't have a webcam either.

                              (edt) sent jlvfr a PM to compare other sites I have used this password to maybe narrow it down

                              My e-mail was a little different and they asked for 2 Grand in bitcoins
                              Last edited by Gun Grape; 26 Jul 18,, 23:25.

                              Comment

                              Working...
                              X