Jump to content
Why become a member? ×

Have I been hacked? What do I do?


Recommended Posts

I had this a couple of months ago

What worried me was that they had a password that I did use at one stage. 

This site is worth a look

https://blog.malwarebytes.com/cybercrime/2019/02/sextortion-bitcoin-scam-makes-unwelcome-return/

It has a link and you can find if your email has ever been hacked, which is where they get your password from

you can report it to the police here

https://www.actionfraud.police.uk/alert/alert-cyber-criminals-send-victims-their-own-passwords-in-new-sextortion-scam

you can also check to see if the bitcoin account has been used for scamming here

https://www.bitcoinabuse.com/reports/1MX8BUf7R4rE7xLoaVMyiceX8DE8D3aFQg

Edited by gareth
  • Thanks 1
Link to comment
Share on other sites

I’ve had the same email, we regularly get phone calls from Microsoft telling me my MacBook has a virus.

I find it shocking really that people do fool for these scams.

I find it annoying that Microsoft can make such rubbish software, users having to constantly pay for updated anti-virus and malware software is ridiculous. How can it be that an operating system will just automatically open and download something?

I bought a plugin to use in Reaper earlier, I was warned twice by my MacBook that it’s dangerous to download apps from sites other than the App Store, I also had to enter my password. 

Link to comment
Share on other sites

The 55 hour last deadline passed without incident as many predicted. 

Rather like Scott Devine searching for air fares, I would only ever look at educational material in incognito mode (should I decide to start).

As mentioned, I only have a desktop with no mic or camera so that is never going to be an issue. 

The assurance of the BC collective was most gratefully received. 

  • Like 2
Link to comment
Share on other sites

  • 9 months later...

Got this the other day from [email protected]

 I have had this type of email before and know what to do 

I am posting this in case anyone has received similar from Mr Travis Farmer and is bothered or worried by this rsoll 

I know, xxxxxxx, is your password. You don't know me and you're thinking why you received this e mail, right? 

Well, I actually placed a malware on the porn website and guess what, you visited this web site to have fun (you know what Imean). While you were watching the video, your web browser acted as a RDP (Remote Desktop) and a keylogger which provided me access to your display screen and webcam. Right after that, my software gathered all your contacts from your Messenger, Facebook account, and email account. 

What exactly did I do? 

I made a split-screen video. First part recorded the video you were viewing (you've got a fine taste haha), and next part recorded your webcam (Yep! It's you doing nasty things!). 

What should you do? 

Well, I believe, $1900 is a fair price for our little secret. You'll make the payment via Bitcoin to the below address (if you don't know this, search "how to buy bitcoin" in Google). 

BTC Address: 
bc1quugszzrw7x9f6pnz2j08rhyyl4yz3nv3jneuag 
(It is cAsE sensitive, so copy and paste it) 

Important: 

You have 24 hours in order to make the payment. (I have an unique pixel within this email message, and right now I know that you have read this email). If I don't get the payment, I will send your video to all ofyour contacts including relatives, coworkers, and so forth. Nonetheless, if I do get paid, I will erase the video immidiately. If you want evidence, reply with "Yes!" and I will send your video recording to your 5 friends. This is a non-negotiable offer, so don't waste my time and yours by replying to this email. 

Travis

Edited by gareth
Link to comment
Share on other sites

Information security professional here.

The "I've had access to your system, files and contacts" email is a well known scam.  Ignore and delete.

You cannot trigger any form of hack by simply opening an email.  

You can, however, trigger a hack by opening an unsolicited attachment or by clicking on a link within an email - one could run malware immediately, the other could take you to a "drive by" site that has a dropper embedded that can push malware to you.

Opening an email does not notify the sender.  If they have added a receipt notification request, your email client will ask you if you want to acknowledge it.  Always.  If that happens, just click 'No'.

Back your data up regularly and keep your backups offline.  Always keep your computer and anti-malware up-to-date and remember, if it sounds too good to be true, it is. :)

 

  • Like 1
  • Thanks 2
Link to comment
Share on other sites

5 hours ago, gareth said:


I made a split-screen video. First part recorded the video you were viewing (you've got a fine taste haha), and next part recorded your webcam (Yep! It's you doing nasty things!). 

Man some people really can’t stand slap bass can they! 

  • Haha 6
Link to comment
Share on other sites

20 minutes ago, Islander said:

You can, however, trigger a hack by opening an unsolicited attachment or by clicking on a link within an email - one could run malware immediately, the other could take you to a "drive by" site that has a dropper embedded that can push malware to you.

 

Would this also  apply to an iPad islander 🙂

Link to comment
Share on other sites

If you have a laptop, with an integrated camera, I would recommend putting tape over it, unless you specifically wish to use it.

But if you have been looking at naughty websites, then you're going to go to hell anyway, so it's probably too late for you.

Mark Zukerberg obviously checks them out regularly.

main-qimg-03daa2dcc04d3a7b812a4b740c528a14

  • Like 1
Link to comment
Share on other sites

50 minutes ago, Islander said:

Opening an email does not notify the sender.  If they have added a receipt notification request, your email client will ask you if you want to acknowledge it.  Always.  If that happens, just click 'No'.

There's a case when it can do: if you have "load remote/external images" turned on and the sender included a tracking image.

  • Like 1
Link to comment
Share on other sites

1 hour ago, Reggaebass said:

Would this also  apply to an iPad islander 🙂

The same principles apply for any device and OS really.   I wouldn't assume that a different operating system would be immune although the majority is targeted at Windows.

  • Thanks 1
Link to comment
Share on other sites

1 hour ago, jrixn1 said:

There's a case when it can do: if you have "load remote/external images" turned on and the sender included a tracking image.

Technically that's true although the reality is that yes.it's possible to cause a buffer overflow in the image application, and it's technically possible to hide code in the slack space but hard to find a mechanism to execute it.  However, the "load external images" feature is turned off by default on the majority of email clients - I honestly can't think of one that has it enabled by default and that defeats the problem (unless you choose to download them of course).

Threat actors generally can't be bothered with highly technical acts when it's a simple matter to use social engineering and get someone to open an attachment i.e. maximum return for minimum effort.  More sophisticated exploits are likely to come from state actors and not likely to be targeted at the general public.

Almost all social engineering attempts exploit one or more of the following (this is from NCSC guidance):

Authority - Is the sender claiming to be from someone official (like your bank, doctor, a solicitor, government department)? Criminals often pretend to be important people or organisations to trick you into doing what they want.

Urgency - Are you told you have a limited time to respond (like in 24 hours or immediately)? Criminals often threaten you with fines or other negative consequences.

Emotion - Does the message make you panic, fearful, hopeful or curious? Criminals often use threatening language, make false claims of support, or tease you into wanting to find out more.

Scarcity - Is the message offering something in short supply (like concert tickets, money or a cure for medical conditions)? Fear of missing out on a good deal or opportunity can make you respond quickly.

Current events - Are you expecting to see a message like this? Criminals often exploit current news stories, big events or specific times of year (like tax reporting) to make their scam seem more relevant to you.

If you think about any of the phishing emails you've seen, they all use one or more of these :)

Edited by Islander
  • Like 3
Link to comment
Share on other sites

As above, it's just a phishing email. Delete and block.

It's worth checking out 'Have I been Pwned'. Totally legit site, set up by a well respected guy in our industry. There you can check email addresses and passwords you've used previously to see which ones are out there and make sure you've retired them.

  • Like 2
Link to comment
Share on other sites

41 minutes ago, NickD said:

As above, it's just a phishing email. Delete and block.

It's worth checking out 'Have I been Pwned'. Totally legit site, set up by a well respected guy in our industry. There you can check email addresses and passwords you've used previously to see which ones are out there and make sure you've retired them.

Thanks for that 

If having checked an email address using the site and finding that the email has been compromised what do you then do?

Simply change the password?

Edited by gareth
Link to comment
Share on other sites

And now Meredeth Grover emails me from [email protected]

I know, xxxxx, is your password. 

I need your total attention for theupcoming 24 hrs, or I will certainly makesure you that you live out of shame for therest of your life. 

Hello there, you do not know mepersonally. Yet I know a lot of things regarding you. Your entire fb contact list, smartphone contacts plus all the virtual activity in your computer from previous 182 days. 

And this includes, your masturbation video, which brings me to the main motivewhy I am crafting this specific mail to you. 

Well the last time you went to see theadult material online sites, my spywarewas activated inside your computer system which ended up recording a lovely video clip of your masturbation act by activating your cam. 
(you got a exceptionally odd taste btw lmao) 

I own the whole recording. If perhaps youthink I am messing around, just reply proof and I will be forwarding the particular recording randomly to 9 people yourecognize. 

It may end up being your friend, coworkers, boss, parents (I don't know! My software program will randomly select thecontacts). 

Would you be capable to look intoanyone's eyes again after it? I question that... 

But, it does not have to be that route. 

I would like to make you a one time, nonegotiable offer. 

Buy $ 2000 in bitcoin and send it to thedown below address: 

b***c1q5duhes4hhgkqnttznk5frmd2g8tlfqk4u8m4xe 
[CASE-sensitive so copy & paste it, and remove *** from it] 

(If you don't know how, google how to buy bitcoin. Do not waste my important time) 

If you send out this 'donation' (let's call this that?). After that, I will go away and under no circumstances get in touch with you again. I will get rid of everything I havegot concerning you. You may keep on living your current ordinary day to day lifestyle with zero concerns. 

You've 24 hours in order to do so. Your time starts off as quickly you read through this e mail. I have got an special code that will alert me as soon as you go through this e mail therefore don't try to play smart.

  • Haha 1
Link to comment
Share on other sites

2 hours ago, gareth said:

And now Meredeth Grover emails me from [email protected]

I know, xxxxx, is your password. 

I need your total attention for theupcoming 24 hrs, or I will certainly makesure you that you live out of shame for therest of your life. 

Hello there, you do not know mepersonally. Yet I know a lot of things regarding you. Your entire fb contact list, smartphone contacts plus all the virtual activity in your computer from previous 182 days. 

And this includes, your masturbation video, which brings me to the main motivewhy I am crafting this specific mail to you. 

Well the last time you went to see theadult material online sites, my spywarewas activated inside your computer system which ended up recording a lovely video clip of your masturbation act by activating your cam. 
(you got a exceptionally odd taste btw lmao) 

I own the whole recording. If perhaps youthink I am messing around, just reply proof and I will be forwarding the particular recording randomly to 9 people yourecognize. 

It may end up being your friend, coworkers, boss, parents (I don't know! My software program will randomly select thecontacts). 

Would you be capable to look intoanyone's eyes again after it? I question that... 

But, it does not have to be that route. 

I would like to make you a one time, nonegotiable offer. 

Buy $ 2000 in bitcoin and send it to thedown below address: 

b***c1q5duhes4hhgkqnttznk5frmd2g8tlfqk4u8m4xe 
[CASE-sensitive so copy & paste it, and remove *** from it] 

(If you don't know how, google how to buy bitcoin. Do not waste my important time) 

If you send out this 'donation' (let's call this that?). After that, I will go away and under no circumstances get in touch with you again. I will get rid of everything I havegot concerning you. You may keep on living your current ordinary day to day lifestyle with zero concerns. 

You've 24 hours in order to do so. Your time starts off as quickly you read through this e mail. I have got an special code that will alert me as soon as you go through this e mail therefore don't try to play smart.

wish I would get one of these, I could ask him how he got my webcam working, I've been trying for hours without any success. 

  • Haha 4
Link to comment
Share on other sites

3 hours ago, Jean-Luc Pickguard said:

Top Tip: Preempt these scammers by removing the value of what they hold over you. Make your own video of yourself having a barclays and send it to all of your contacts before they have a chance to send theirs EXACTLY 

Edited by gareth
Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Restore formatting

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...