Email sextortion scams are still making their rounds into inboxes and I have received loads of these emails daily. The email claims that I have visited pornography websites. It goes further to claim that they have recorded compromising videos of me. This is funny considering I don’t visit pornography websites. They proceed to ask for a ransom in Bitcoins or they will send the alleged video ( non existing video) to all my contacts.
I receive several of these annoying emails a day. I have come to the conclusion that my email, name, and password was probably stolen from a compromised website such as Disqus, Yahoo or Linkin all of which have had data breaches.
While I have not fallen for this sextortion scams, it spark enough panic with internet user to get the criminals $10,000 to $20,000 per week, according to Malwarebytes research.
Implementing an email address validation API is crucial to fortify defenses against fraudulent activities by verifying the authenticity and legitimacy of email addresses used within the system.
Sextortion Bitcoin scam email
Text presented in the recorded you email:
You got infected with my malware, RAT (Remote Administration Tool), while browsing the web where my iframe was placed, in the background you got redirected to my exploitpack, your browser wasn’t patched so you got infected!
The malware gave me full control over your computer and access to all your accounts (see password above), it was also possible to turn your webcam on, you can Google about RAT’s and their functionalities!
I collected all your private data and RECORDED YOU (through your webcam) SATISFYING YOURSELF!
After that I removed my malware, to not leave any traces.
I can send the video to all your contacts, over email, post on social network and everywhere else and publish all your private data everywhere, including the darknet, where the sick people are!
Only you can prevent me from doing this!
To stop me, transfer exactly 900$ in bitcoin (BTC).
If you don’t know how to buy bitcoin, Google – “How to buy Bitcoin?”
Or buy bitcoin here: www.paxful.com or: www.coinbase.comYou can send direct to my wallet, or create your own wallet first here: www.login.blockchain.com/en/#/signup/ and then send to mine.
My bitcoin wallet is: 1DEbZ7uqJYZpVcB3tBH2kGe9bucBjX3buS
Copy and paste my wallet, it’s (cAsE-sensetive) After receiving the payment, I will delete all your data and you can life your live in peace like before.
I GIVE YOU 3 DAYS TIME!
Since I already have access to your account, I know if this email has been already read. If you get this email multiple times, it’s to make sure you read it and after payment you can ignore it. Don’t show this email to anyone, it will not help you but make everything worse, this should stay our little secret. Next time update your browser and scan unknown files on: www.virustotal.com, take it as a lesson learned and move on.
The wording varies in emails that I have received, but they are all the same scam.
What to do if you receive a scam email
Don’t panic! They do not have access to your computer. Even if you were checking out adult sites, they don’t have video of you doing so.
The scam can be convincing because the password sent in the email may be one of your actual current or former passwords. I recommend you mark the emails as spam and delete them. To see if your email address has been compromised visit the haveibeenpwned website. Change your passwords so that any passwords displayed in alarming subject line are no longer in use.
Several Twitter uses have reported receiving similar sextortion scams with the same tactic. Even my husband has received the emails and found his email address to be compromised.