This is a new one for me. I'm receiving exploitation emails that say they have recorded me "satisfying myself" via hacked webcam (which I do not have) and as proof, they disclosed one of my old passwords. They of course want money.

The thing is, the password was a correct one that I often used years ago for low security things like internet forum logins.

This led me to checking my email through one of the security sites to see if my email or passwords had been leaked, stolen, hacked etc. Apparently one or two old passwords have been stolen/leaked.

As far as I am aware, Avast is a reputable company, but check on your own.

https://www.avast.com/hackcheck

I entered my email, it sent me an email which had private links to each one they picked up. Clicking it took me to the Avast site that showed the source of each leak or where they discovered it and the option to see the password on the page and cover it again.

Do your own research, but it was a bit of a surprise to see most were old and accurate - some were not any I recognized.

sounds to me like they are a buncha wankers...

Just ask them if they would like to buy more pictures similar to what they have.

Yes, I am seeing this too.
Spam phishing emails from foreign countries demanding a bitcoin payment.
The thing is that while they are not specific in the origin they do have some accurate information.
They have an accurate "password" that was used.
Like I said they do not specify the origin but I suspect it was from some hacked online account or forum or whatever.
This can complicate security if you use the same password on every site.
So beware.
Use different passwords.
Use an email address that is not your primary or work address.
Change passwords regularly.
You may want to use an utility such as RoboForm to keep up with.
But don't fall for the fake request!
YMMV

Same here, the identified one was Linkedin.

Tell them you've already surrendered to the FBI, tell them the computer line is tapped, and that they'll be in touch to collect the evidence. Then hang up the phone.

Send him the link to this video and tell him it's you pleasuring his mom. (SFW )

Link

quote:

Originally posted by shovelhead:
Same here, the identified one was Linkedin.

Same here and Linkedin was also the culprit.

I detest Linkedin. I made the mistake of creating an account years ago and had forgotten about it.

quote:

Originally posted by Oz_Shadow:
I'm receiving exploitation emails that say they have recorded me "satisfying myself" via hacked webcam (which I do not have) and as proof, they disclosed one of my old passwords.

I heard of this scam sometime last year. Supposedly one guy responded back that he had been trying to break into the porn business, and was hoping this hacked video could be used to kick off his career. That's when you'd enjoy seeing the response from the scammers when they open that email.

I entered my email into the OP's link and it looks like an old PW at a private overseas game server I used(WoW) was hacked.
The exact reason I try to use different PWs for every account. Thanks Keepass.

quote:

Originally posted by dsiets:
The exact reason I try to use different PWs for every account.

Yep. I've had a few passwords stolen from other forums that were hacked, but it does them no good, because I use a unique password for each site.

Tell them it wasn't you. It was your neighbor and it was shot through his bedroom window. *s*

Have safe computing practices.

Keep one blind, deaf, email free computer for porn research studies.
Keep another for email only and
A third one to use for visual telecommunications.

Thank you for the Avast link. Brought a few 12345678 passwords that i don't remember ever using and one that was close enough to worry me some.

0-0

Humm strange ...
Some are there on one email. The other email has passwords I never have used.

Scary though my oldest email has my old main pass word I used for allot of stuff.

Most disturbing to me was an old PW I used on PoliceOne.Com. Figures.

I got the same thing when in Nairobi last week. They wanted ransom in bitcoin. I forwarded the email to the FBI IC3 website.

I changed all my passwords again, the usual. Life goes on.

This https://www.avast.com/hackcheck has an odd smell to it. Phishy, even.


It wants you to give them all your email addresses and those of all your friends, family and vendors, etc., so they can check for hacks...

AND, actively monitor those email accounts in the future.

Oh, and here's an offer you can't refuse:

Secure all your accounts with Avast Passwords

Manage your logins with just one unbreakable password, access your accounts with a tap on your phone, and much more.

This is the same company that got in privacy violation trouble with their free CC Cleaner app about a year ago, remember?


https://duckduckgo.com/?q=avas...eaner+privacy&ia=web

I use third party verification on every account that I possibly can in addition to a stupid long and complex password scheme. For other sites like this one and a few others I stick to a simple password and leave it at that.

For what it was worth, I tried my junk mail account on that AVAST site and it was apparently breached about 3 years ago. Shortly after I started the third party verification and complex password.

If you are looking for personal security software I would stick with McAfee. From what our IT guys have told me Norton is a huge resource hog and I just don't trust these smaller companies. Both McAfee and Norton are the only two any of my employers have ever used, government or private employers.

quote:

Originally posted by RichardC:
This https://www.avast.com/hackcheck has an odd smell to it. Phishy, even.


It wants you to give them all your email addresses and those of all your friends, family and vendors, etc., so they can check for hacks...

AND, actively monitor those email accounts in the future.

I wasn’t promoting their services. The verification part required nothing more than an email. As a security company what better way to sell than to prove clients private info has been exposed and is being traded around the web.

For me, I audited my extensive PW list. I, like others, use many of them, but I did find a couple older ones that still used the compromised credentials.

Personally, my security change will be coming up with a variety of new passwords and changing them all each time I use them next.

Thanks for posting this
DropBox Adobe AOL were all breached.
I change those passwords.
It was easy,
I passed it on to others in my contacts.