| Non-motoring > More scamming from scum. | Accessories and Parts |
| Thread Author: No FM2R | Replies: 23 |
|
New Sun 19 Apr 20 21:07
More scamming from scum. - No FM2R
|
|
The other day I received the following; I am putting the entire email in here so that if anybody other than us searches for it on the internet then they will find this. [I shall put it in a reply] Now clearly an utter scumbag and doomed to failure, at least with me. However, one can easily understand how some people might get a nasty shock purely by coincidence and might be tempted to pay out of fear. Even though the contents of the email could not possibly apply to me, even though it was to an email address I no longer use and included a password I haven't used for years, it was still a heart-stopping moment when I saw an email arrive with the heading "Your password is xxxxx". The Email this was sent to is indeed an email address of mine, obviously. Though actually while it remains valid I haven't actually used it for at least 7 or 8 years for anything new. The password is also one I have used. I'm pretty password careful so I know where and when. The *ONLY* time I have used that EMail / Password combination was LinkedIn, and even then it was years ago. I remember that some years ago Linkedin was hacked and at that time I was prompted by them to change my password which I immediately did. Though I do change my passwords fairly frequently anyway - and I never use the same password twice, nor do I ever use them in more than one place. So that is 100% where it came from. I assume the hacked and stolen list is for sale on the Dark Web somewhere. Nor does the guy explain quite how that username/password combination would help him to access the webcam that i don't have, even if i did have one. This is why you should never use the same password on more than one site. A turd like this bloke will buy that list from somewhere, which was why it was hacked and stolen in the first place, and then try your email/password combination on all the obvious sites - Facebook, Instagram, etc. etc. etc. - using automation and thus able to try loads and loads. You can imagine the blackmail they would try if they did get into something. For all I know they did try to get into my other accounts. They would just have failed. They would be unlikely to cause any flags or warnings since they would never try an account twice. It is also why you should never reuse a password. You simply don't know how long the gap between your password being stolen and it being used against you could be. *ANY* company that stores user credentials in a manner or state such that they can be stolen and used should be brought down by the subsequent class action suits which bankrupt them. If you feel that your password management might not be all it should be, I advise you to get smarter about it, quickly. As well as using two-factor authentication wherever you can. Passwords and firewalls just make your computer more difficult than the next one. They don't make it impossible. Remember, if nothing else, they can be stolen. Fundamentally, f you're not prepared to print out anything on your computer and stick it to the fridge door, then DON'T do it on your computer. Computers are about as secure as your house; only the odds really protect you. There are reports of this particular scam being tried before, though this is the first time I've received anything. In this case it was based on a linkedin breach, and thus was an old password, I don't have a webcam and in any case I'm anal about my passwords. However, it is only a matter of time before it happens to more recently stolen data or to someone less fortunate/careful. If you want to check whether or not your email address has been part of any breaches, go here... haveibeenpwned.com/ Protect yourself. Last edited by: No FM2R on Sun 19 Apr 20 at 21:08
|
|
New Sun 19 Apr 20 21:24
More scamming from scum. - No FM2R
|
|
Your password is xxxx and I need your 100% attention for the next 24 hours or I will make sure that you live out of guilt for the rest of your lifetime. Hello, you don’t know me personally. Yet I know every thing regarding you. Your present fb contact list, mobile phone contacts along with all the virtual activity on your computer from previous 137 days. And this includes your masturbation video footage, which brings me to the primary motive why I’m writing this specific e-mail to you. Well the last time you went to see the porn material online sites, my malware ended up being triggered inside your personal computer which ended up documenting a beautiful video of your masturbation act simply by triggering your web cam. (you got a tremendously strange preference by the way lol) I have got the entire recording. If perhaps you think I am fooling around, just reply ‘proof’ and I will be forwarding the particular recording randomly to 9 people you know. It might be your friends, co workers, boss, mother and father (I’m not sure! My software program will randomly pick the contact details). Would you be capable to look into anyone’s eyes again after it? I question that. But it doesn’t need to be that route. I would like to make you a 1 time, no negotiable offer. Purchase 0.5 (Around $3500 United states dollar) bitcoin and send them to the below address. [ADDRESS REMOVED] (If you do not understand how, google hot to purchase bitcoin. Do not waste my valuable time) If you send out this ‘donation’ (let us call this that?). After that, I will go away for good and never ever get in touch with you again. I will delete everything I have in relation to you. You may proceed living your current normal day to day life with no concern. You have got 1 day in order to do so. Your time begins as quickly you go through this mail. I have got an special program code that will inform me once you see this email so don’t attempt to play smart. |
|
New Sun 19 Apr 20 21:45
More scamming from scum. - Zero
|
|
Apparently before sending this, the first thing they do is disable Microsoft Photos and Store as proof you have been hacked. I hope I am not a recipient of the webcam spy vid. Last edited by: Zero on Sun 19 Apr 20 at 21:47
|
|
New Sun 19 Apr 20 22:25
More scamming from scum. - No FM2R
|
|
>> Apparently before sending this, the first thing they do is disable Microsoft Photos and Store >> as proof you have been hacked. Ha ha ha ha. Git. >> I hope I am not a recipient of the webcam spy vid. You should be so lucky. Even the Scummy Scammer said "documenting a beautiful video of your masturbation act" "Beautiful" don't you know. You'd probably look more like Leslie Grantham. |
|
New Mon 20 Apr 20 22:41
More scamming from scum. - Kevin
|
|
Those webcam pr0n emails have been doing the rounds for more than a year. I received a couple and they piqued my interest because they had spoofed the headers quite craftily. I've debugged loads of sendmail problems so a quick browse back through the header trail revealed that the perps had actually spent some time on this. For example, choosing spoofed but genuine headers with matching ip addresses that fooled intervening mail relays. I traced the original messages to unsecured mail servers at a TV station in Serbia and a poorly configured department server at a uni in Brazil but there must be thousands of others out there. I don't know if I've received any since then because anything similar just goes straight in the bit bucket. |
|
New Sun 19 Apr 20 21:40
More scamming from scum. - James Loveless
|
|
I have had this recently too. Fortunately I knew some time ago from haveibeenpwned that a particular e-mail address and password combination of mine had been leaked. That was a long time ago and my e-mail password has been changed many times since. The nasty bit of the message was as follows (I paraphrase): We have footage of you viewing porn and will e-mail this to all your contacts unless you pay us XXXX in bitcoin. They want me to believe that my webcam has been spying on me (they don't know it has a shutter that is closed nearly all the time) and the implication is that they have a video of me "enjoying" the pornographic stuff that they will show on some sort of split-screen arrangement. They also want me to believe they have harvested my contacts list. So far I have had this message twice. Not nice. Edit: Posted this before NoF posted his second message, so it's largely redundant. Last edited by: James Loveless on Sun 19 Apr 20 at 21:42
|
|
New Sun 19 Apr 20 21:47
More scamming from scum. - tyrednemotional
|
|
...yeah, I had a few of those about a year ago (without the password thing) I just stuck some tape over the webcam..... ;-) |
|
New Sun 19 Apr 20 21:59
More scamming from scum. - Bobby
|
|
Re the website you noted above, I am always suspicious that how better to gather working email addresses than to offer a site which checks yours if you input your details? Am I being too suspicious? |
|
New Sun 19 Apr 20 22:26
More scamming from scum. - Dave_
|
|
I had this email in my spam folder last week. I deleted it along with all the other rubbish. For better or worse, all my p-words these days are generated by my laptop or phone, which are linked and backed up. I'm careful enough with banking; all the rest of it I wouldn't miss. Last edited by: Dave_ on Sun 19 Apr 20 at 22:26
|
|
New Sun 19 Apr 20 22:37
More scamming from scum. - bathtub tom
|
| I had this too last week. I didn't look beyond the subject line as it included a password I haven't used for years. I had identical ones in my inbox and spam folder. |
|
New Mon 20 Apr 20 00:25
More scamming from scum. - smokie
|
|
Been getting this one for over a year now I'd say. Even SWMBO got it and accused me of using her machine and account to view porn!! Bobby says about giving away your email address. Yes, that does, but quite honestly these days it isn't hard to get many thousand email addresses. You simply have a list of common first names, last names and ISPs. You merge them together and send a mail to them all and see who replies, por switch on read receipts or something. Reminiscent of a insurance bloke who called me at work in the 1970s. I worked at the Coal Board . They called reception "Can I speak to Mr Smokie please?". "Which one, Fred or John" the operator replied... Last edited by: smokie on Mon 20 Apr 20 at 08:25
|
|
New Mon 20 Apr 20 10:23
More scamming from scum. - Manatee
|
|
Yes I've had this on the account I use for this and the old forum. I changed the password when it was hacked. My current main email also appears on those lists. I used it on Linked In and changed my my password when that was hacked. |
|
New Mon 20 Apr 20 10:34
More scamming from scum. - Crankcase
|
|
If you put your email address in here, it will tell you if it has been breached (as far as they have data for of course). haveibeenpwned.com/ I have two addresses, both breached. But all breaches are from sites where I had different passwords, and none from places I care about. Also nowhere I currently use. No idea, of course, how accurate it all actually is, but there is plenty of info on the site before you enter your address if you are concerned. It might be of some small use to someone here. |
|
New Mon 20 Apr 20 12:23
More scamming from scum. - Bromptonaut
|
|
Both my former personal account (now closed following sharp charging practice by my former ISP) and my gsi.gov.uk from my Civil Service job, obviously now long gone too, come up as compromised. The gsi one was, at one time, my registered address on LinkedIn. Current address appears uncompromised but email using the random combination of forename, surname and ISP could potentially reach me. Another scam which a neighbour has just this morning alerted me to is a mass mailing inviting people to register their bank details for the Coronavirus Job Retention Scheme...... Last edited by: Bromptonaut on Mon 20 Apr 20 at 12:27
|
|
New Mon 20 Apr 20 13:48
More scamming from scum. - Duncan
|
|
One of my addresses come up as this. Could someone explain what it means, please? Oh no — pwned! Pwned on 5 breached sites and found no pastes (subscribe to search sensitive breaches) |
|
New Mon 20 Apr 20 15:23
More scamming from scum. - Zero
|
|
It means you registered your email address on 5 web sites, which have since been compromised by a hack, it MAY be that your password was stolen with your email address. However, it means that these details have not yet been used anywhere else without your knowledge. |
|
New Mon 20 Apr 20 15:27
More scamming from scum. - Crankcase
|
| Scroll down to see the sites. |
|
New Tue 21 Apr 20 02:44
More scamming from scum. - zippy
|
|
Interestingly my work email is on the list and I have never used it to subscribe to any web sites or mailing lists. It's used for emails only. I occasionally get suspicious emails from clients or ex-clients where it looks like their mailing lists have been compromised so I guess its been culled from their systems. |
|
New Tue 21 Apr 20 03:20
More scamming from scum. - No FM2R
|
|
>> Interestingly my work email is on the list and I have never used it to >> subscribe to any web sites or mailing lists. It's used for emails only. I have a trash address which I use to sign up to non-significant stuff. It lives under about three ton of Spam. Don't care. According to that Website it's been pwned a gazillion times. Don't care. Then I have a social address. Normal social email, I never sign up to anything flighty with it but I do use it for things like Facebook, Twitter, Netflix, Amazon etc. etc. It's my main social address. It's been pwned twice; Linkedin and Dropbox. Surprisingly it doesn't get much spam. Or Google is good at stopping it. Then I have two business addresses. One for various business or official things I am involved in. Rarely sign up to anything with it, and then only necessary stuff. Never been pwned but but since the email address is published fairly frequently both in print and on various places on the internet it gets quite a lot of spam. The second is my main business account. Never pwned, never received spam, I send business EMail only, never sign up to anything recreational with it. 100% business only. So unsurprisingly it seems my address gets known (least to most) when someone is hacked, I sign up for something, or my email address appears on the internet. The biggest risk for me would be loss of access to an account or someone misusing that account, more than it would be the unlikely loss of data. It's all a worry though. I went through this weekend. I have 37 username/passwords I care about. All unique, all over 18 characters, never re-used and about as impossible to guess as can be. Thank the Lord for password managers. I use two-way authentication on everything I can - which is probably about 2/3rds of them. Last edited by: No FM2R on Tue 21 Apr 20 at 03:21
|
|
New Tue 21 Apr 20 03:26
More scamming from scum. - No FM2R
|
| askleo.com/how_long_should_a_password_be/ |
|
New Tue 21 Apr 20 14:05
BITCOIN/virtual currency scam - smokie
|
|
Over the past few days I've received a number of very legit looking ads, form different sources, telling me how some celeb has made a fortune from a scheme associated with virtual currency. I just thought I'd throw up a quick warning here and maybe add more later, but it is a definite scam. The celebs pictures have been superimposed digitally and they have nothing to do with the scam. My first one was james Corden and I just got one about Bear Grylls. It talks about how much they've made from home in the past /day/week/hour etc and there are also a number of "reviews" which agree. I don't think anyone here would be foolish enough to sign up but these are very convincing looking. UPDATE If you get it in an email don't open the link as Malwarebytes traps it as a Trojan. Last edited by: smokie on Tue 21 Apr 20 at 14:08
|
|
New Tue 21 Apr 20 14:36
BITCOIN/virtual currency scam - Bromptonaut
|
|
>> My first one was james Corden and I just got one about Bear Grylls. It >> talks about how much they've made from home in the past /day/week/hour etc and there >> are also a number of "reviews" which agree. Funnily enough I've just had something flash up on my phone about Bear Grylls having given up broadcasting for more lucrative pastures. Didn't even look at it properly, just dismissed. Martin Lewis was also subject to having his name 'hi-jacked' to promote bitcoin schemes. As a result £3m was donated to Citizens Advice's scam action service: www.moneysavingexpert.com/shopping/fake-martin-lewis-ads/ The ads were included in Google streamed ads, I actually spotted one running in the page of a Lincolnshire Council that runs ads on its website (or was doing in 2017/18). Last edited by: Bromptonaut on Tue 21 Apr 20 at 14:38
|
|
New Tue 21 Apr 20 15:44
BITCOIN/virtual currency scam - Duncan
|
|
>> Martin Lewis was also subject to having his name 'hi-jacked' to promote bitcoin schemes. As >> a result £3m was donated to Citizens Advice's scam action service: How did that come about? |
|
New Tue 21 Apr 20 16:32
BITCOIN/virtual currency scam - Bromptonaut
|
|
>> How did that come about? Facebook, as per the link. |
Forum Version 3.0 - By Khoosys
Car4play Forum
