Login | Register 
Contact us today!
866-348-2602

Total Tech Care Blog

Total Tech Care has been serving Florida since 2001, providing IT Support such as technical helpdesk support, computer support, and consulting to small and medium-sized businesses.
Font size: +
Subscribe to this blog post
Print

Don’t Be Fooled When Scammers Threaten to Spill a Dirty Little Secret

Total Tech Care Blog
0 Comments
Don’t Be Fooled When Scammers Threaten to Spill a Dirty Little Secret

What would you do if a stranger claimed to have compromising webcam footage of you and threatened to share it with your contacts? A new, very convincing email scam is making some users very nervous.

The Sextortion Scam
It’s as screwed up as it sounds. A scammer emails you saying that they got access to your passwords, and then started to run amok to see how much trouble they could get you into. They even show you one of your passwords to prove it (the password will likely come from lists found on the dark web from online businesses and services that have been hacked and stolen over the years). Then the scammer admits they’ve been watching what you do on your computer and recording your webcam, and they happened to catch you at a very inopportune time... Well, let’s let the email explain it for us. 

“You don’t know me and you’re thinking why you received this email, right?

Well, I actually placed a malware on the porn website and guess what, you visited this web site to have fun (you know what I mean). While you were watching the video, your web browser acted as a RDP (Remote Desktop) and a keylogger which provided me access to your display screen and webcam. Right after that, my software gathered all your contacts from your Messenger, Facebook account, and email account.

What exactly did I do?

I made a split-screen video. First part recorded the video you were viewing (you’ve got a fine taste haha), and next part recorded your webcam (Yep! It’s you doing nasty things!).

What should you do?

Well, I believe, $1400 is a fair price for our little secret. You’ll make the payment via Bitcoin to the below address (if you don’t know this, search “how to buy bitcoin” in Google).”

The reader is then given the address to a Bitcoin wallet, where they are to send the ransom.

The email continues:

“Important:

You have 24 hours in order to make the payment. (I have an unique pixel within this email message, and right now I know that you have read this email). If I don’t get the payment, I will send your video to all of your contacts including relatives, coworkers, and so forth. Nonetheless, if I do get paid, I will erase the video immidiately [sic]. If you want evidence, reply with “Yes!” and I will send your video recording to your 5 friends. This is a non-negotiable offer, so don’t waste my time and yours by replying to this email.”

This email comes in a few different versions in the wild, but all of them follow the same pattern and end with the same threat… fork over the cash, or everyone will see you in your most private moments.

Is This a Serious Threat?
This is a very real concern for many people, who will be relieved to hear that, no, there is no indication that these threats are for real. The first clue is the fact that the passwords that the email provides are usually a decade old, indicating that they came from some (relatively) ancient database from some long-forgotten hack.

However, in some ways, this is even worse news, because this threat has made a tidy sum of money: as of the 31st of July, the scam had brought in $250,000, as compared to just over $50,000 by the 19th. Clearly, this scam has been plenty effective for the perpetrators, and this won’t deter others from following its example.

Keeping Yourself Safe from an Actual Attack
Granted, this attack is just an unfair wager, but scams like this are more than possible for a criminal who actually means what they say/threaten. As a result, the security lessons we can take away from this particular attack still apply.

The first thing to remember is also the first rule of passwords - change them frequently. Again, this scam has made quite a bit of money based on a total bluff... a bluff that, paid in increments of $1,400, was worth $250,000 and counting. From this, we can infer that quite a few people who received this message had online activities that they wanted to hide, and more critically, that their passwords had remained the same for all those years.

This is an excellent example of why it is so crucial to regularly update your passwords, without repeating them - if an old database is hacked, as happened here, you won’t have to worry if your password is revealed - it won’t be any good anymore.

The second thing to remember? If you aren’t actively using your webcam, keep its lense covered up.

For more best practices to follow, including those that will improve your business’ security, make sure you keep checking back to this blog - and if you want to take more action, reach out to us at 866-348-2602.

Tweet
Tags:
Security Privacy Passwords
 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Wednesday, 30 April 2025
If you'd like to register, please fill in the username, password and name fields.

Blog Categories

Blog Archive

Sign Up for Our Newsletter

  • First Name *
  • Last Name *

      Free Consultation

      Sign up today for a
      FREE Network Consultation

      How secure is your IT infrastructure?
      Let us evaluate it for free!

      Sign up Now!

      Free Consultation
       

      Tag Cloud

      Security Tip of the Week Technology Best Practices Business Computing Cloud Privacy Hackers Productivity Hosted Solutions Software Efficiency Business Google Network Security Internet Microsoft Email Malware Backup Workplace Tips Innovation User Tips Data Computer Mobile Devices Hardware IT Services Android VoIP Disaster Recovery communications IT Support Smartphones Communication Business Continuity Miscellaneous Smartphone Mobile Device Browser Small Business Network Collaboration Productivity Cybersecurity Quick Tips Business Management Users Managed IT Services Upgrade Windows Phishing Ransomware Data Backup Outsourced IT Windows 10 Data Recovery Office Cloud Computing Server Save Money Windows 10 Passwords Chrome Virtualization Gadgets Social Media Saving Money Holiday Tech Term Microsoft Office Managed IT Services Automation Managed Service Operating System Computers Facebook Artificial Intelligence Cybercrime Hacking Internet of Things Wi-Fi BYOD Mobile Device Management Health Networking IT Support Spam Remote Office 365 Telephone Systems Alert Information Technology Covid-19 Information Managed Service Provider Social Engineering Mobility BDR Employer-Employee Relationship Recovery Bandwidth Router Remote Monitoring Big Data Law Enforcement Data Breach App History Mobile Computing Password Application Money Human Resources Encryption Applications Data Storage Government Patch Management Private Cloud Office Tips Training Managed IT Blockchain VPN Paperless Office Apps How To Remote Computing Mobile Office Vulnerability Avoiding Downtime Windows 7 Word Flexibility Marketing Servers Wireless WiFi IT solutions Bring Your Own Device Entertainment Data Management Website Gmail Work/Life Balance Budget Data Security Settings Two-factor Authentication Google Drive Infrastructure Voice over Internet Protocol Mouse HaaS User Error Conferencing Meetings Scam Data Protection Risk Management Hacker Save Time Vendor Management Vendor The Internet of Things Lithium-ion battery Managed Services Display Cleaning USB Staff Software as a Service Telephone System Employee/Employer Relationship Machine Learning Firewall End of Support Connectivity Remote Work RMM Education Physical Security Virtual Reality Apple Safety HIPAA Sports Social Redundancy Keyboard Fraud Best Practice Remote Worker YouTube Business Intelligence Wearable Technology Black Market Procurement Retail Net Neutrality Hard Drives Cryptocurrency Workplace Strategy Audit Worker Virus Instant Messaging Robot Help Desk Excel IT Management Printing Unified Threat Management Document Management Botnet Solid State Drive Computer Accessories Comparison Wireless Technology Biometrics Virtual Desktop IT Plan How to Downtime CES Managed Services Provider Unsupported Software DDoS Data storage Content Management Database Business Technology Automobile Access Control Charger Printer SharePoint Bluetooth Remote Workers Computing Infrastructure Compliance Virtual Assistant OneNote Authentication Computer Care Going Green Processor Customer Service Current Events Environment Telephony Samsung Hard Drive Fax Server IT Consultant Battery Update Shadow IT Legal Value Computing Humor SaaS Spam Blocking Electronic Medical Records Google Docs Internet Exlporer Identity Theft PDF Hiring/Firing Network Congestion eWaste Digital Signage Augmented Reality Proactive IT Search Engine WIndows 7 Twitter Video Games Procedure Assessment Saving Time Business Mangement Shopping Shortcut Google Search Windows Server 2008 NIST Worker Commute dark theme Experience Smart Tech AI Trending IT Infrastructure Cost Management Tools Social Networking Bing Addiction Scalability FinTech Television Amazon Recycling Social Network Business Owner Wiring Practices NarrowBand Investment Windows Media Player User Cache Search Employees Public Computer PowerPoint Amazon Web Services Running Cable Employee/Employer Relationships Criminal iPhone Transportation ISP Memory Regulations Safe Mode Windows 365 GDPR Computer Fan Hosted Computing Video Conferencing Rootkit ROI Shortcuts Managing Stress Wireless Internet Sales Online Shopping Bitcoin Workers Files Personal Benefits Cryptomining File Sharing Point of Sale Camera FENG Inventory Supply Chain Management Cameras Specifications Chromecast Science Wire Monitoring IBM Evernote Batteries Colocation Digitize Smart Technology Travel Uninterrupted Power Supply Flash Windows 8.1 Printers Millennials Windows Server 2008 R2 Customer Relationship Management Software Tips Smart Office Customer relationships Supercomputer Wireless Charging Distributed Denial of Service Monitor Emails IT Assessment Manufacturing Analyitcs Sync Email Best Practices Virtual Private Network Printer Server Workforce Programming Streaming Media Security Cameras Computer Tips Cables Reputation Managed IT Service Virtual CIO Netflix OneDrive Two Factor Authentication Tech Support Biometric Security Content Project Management Root Cause Analysis Nanotechnology Techology Peripheral Telecommuting Antivirus Laptop Using Data Music Windows 8 HBO Digital Security Cameras Knowledge Cortana Customers Digital Signature Copiers IT service 5G Skype Audiobook Warranty Data loss Quick Tip Touchpad Troubleshooting Smartwatch Tablet Outlook HVAC Ergonomics Leadership Google Apps Politics Analysis Advertising Development Domains OLED Start Menu Administrator Screen Mirroring Devices PCI DSS Loyalty Virtual Machine IaaS Fiber Optics Books Maintenance Notifications Employee Frequently Asked Questions Enterprise Content Management 2FA Windows 10s Consultant Accountants Messaging Cabling Bloatware Mobile MSP Microchip Cast Thought Leadership Policy Analytics Credit Cards Hypervisor Relocation Trend Micro Emergency Tablets Tip of the week Password Management Dark mode webinar Password Manager Public Cloud Best Available SMS Employer Employee Relationship Multi-Factor Security Default App Entrepreneur Professional Services

      Top Blog

      Taking a Vacation From Your Technology While On Vacation Can Actually Make Things Worse
      The reasoning for this is simple: you want to make sure that operations are proceeding as intended, even if you’re not there. If you completely check out from the workplace every time you leave, you could return from your vacation to a complete and total disaster that may have been prevented with y...
      Read More
      QR-Code