Thursday, September 30, 2021

You have an outstanding payment. (BTC Scam)

Hello there!

Unfortunately, there are some bad news for you.Around several months ago I have obtained access to your devices that you were using to browse internet.Subsequently, I have proceeded with tracking down internet activities of yours.

Below, is the sequence of past events:

In the past, I have bought access from hackers to numerous email accounts (today, that is a very straightforward task that can be done online).Clearly, I have effortlessly logged in to email account of yours (***@***).A week after that, I have managed to install Trojan virus to Operating Systems of all your devices that are used for email access.Actually, that was quite simple (because you were clicking the links in inbox emails).All smart things are quite straightforward. The software of mine allows me to access to all controllers in your devices, such as video camera, microphone and keyboard.I have managed to download all your personal data, as well as web browsing history and photos to my servers.I can access all messengers of yours, as well as emails, social networks, contacts list and even chat history.My virus unceasingly refreshes its signatures (since it is driver-based), and hereby stays invisible for your antivirus.So, by now you should already understand the reason why I remained unnoticed until this very moment...While collecting your information, I have found out that you are also a huge fan of websites for adults.You truly enjoy checking out porn websites and watching dirty videos, while having a lot of kinky fun.I have recorded several kinky scenes of yours and montaged some videos, where you reach orgasms while passionately ***turbating.If you still doubt my serious intentions, it only takes couple mouse clicks to share your videos with your friends, relatives and even colleagues.It is also not a problem for me to allow those vids for access of public as well.I truly believe, you would not want this to occur, understanding how special are the videos you love watching, (you are clearly aware of that) all that stuff can result in a real disaster for you.

Let's resolve it like this:

All you need is $1350 USD transfer to my account (bitcoin equivalent based on exchange rate during your transfer), and after the transaction is successful, I will proceed to delete all that kinky stuff without delay.Afterwards, we can pretend that we have never met before. In addition, I assure you that all the harmful software will be deleted from all your devices. Be sure, I keep my promises.That is quite a fair deal with a low price, bearing in mind that I have spent a lot of effort to go through your profile and traffic for a long period.
If you are unaware how to buy and send bitcoins - it can be easily fixed by searching all related information online.

Below is bitcoin wallet of mine: 1B5ic9iQpyafTEfWxHM4Xq6PkzbickrL8g

You are given not more than 48 hours after you have opened this email (2 days to be precise).

Below is the list of actions that you should not attempt doing:

Do not attempt to reply my email (the email in your inbox was created by me together with return address).Do not attempt to call police or any other security services. Moreover, don't even think to share this with friends of yours. Once I find that out (make no doubt about it, I can do that effortlessly, bearing in mind that I have full control over all your systems) - the video of yours will become available to public immediately.Do not attempt to search for me - there is completely no point in that. All cryptocurrency transactions remain anonymous at all times.Do not attempt reinstalling the OS on devices of yours or get rid of them. It is meaningless too, because all your videos are already available at remote servers.

Below is the list of things you don't need to be concerned about:

That I will not receive the money you transferred.- Don't you worry, I can still track it, after the transaction is successfully completed, because I still monitor all your activities (trojan virus of mine includes a remote-control option, just like TeamViewer).That I still will make your videos available to public after your money transfer is complete.- Believe me, it is meaningless for me to keep on making your life complicated. If I indeed wanted to make it happen, it would happen long time ago!

Everything will be carried out based on fairness!

Before I forget...moving forward try not to get involved in this kind of situations anymore! An advice from me - regularly change all the passwords to your accounts.

Email analysis :

NOTE : stephen.connolly@oirgroup.com
NOTE : ⁨170.245.92.201
NOTE : client-ip=170.245.92.201;
NOTE : helo=host-201.voob.net.br.92.245.170.in-addr.arpa;
NOTE : envelope-from=stephen.connolly@oirgroup.com

Friday, August 27, 2021

Hi there (Pegasus Scam)

Hello, I'm going to share important information with you.
Have you heard about Pegasus?
You have become a collateral victim. It's very important that you read the information below.

Your phone was penetrated with a “zero-click” attack, meaning you didn't even need to click on a malicious link for your phone to be infected.
Pegasus is a malware that infects iPhones and Android devices and enables operator of the tool to extract messages, photos and emails,
record calls and secretly activate cameras or microphones, and read the contents of encrypted messaging apps such as WhatsApp, Facebook, Telegram and Signal.

Basically, it can spy on every aspect of your life. That's precisely what it did.
I am a blackhat hacker and do this for a living. Unfortunately you are my victim. Please read on.

As you understand, I have used the malware capabilities to spy on you.
And by that I mean that I have collected your parts of your private life.

My only goal is to make money. And I have perfect leverage for this.
As you can imagine in your worst dream, I have videos of you exposed during the most private moments of your life, when you are not expecting it.

I personally have no interest in them, but there are public websites, that have perverts loving that content.
As I said, I only do this to make money and not trying to destroy your life. But if necessary, I will publish the videos.
If this is not enough for you, I will make sure your contacts, friends and everybody you know see those videos as well.

Here is the deal. I will delete the files after I receive 0.035 Bitcoin (about 1700 US Dollars).
You need to send that amount here 1Dz3tE5mspT4fk9fxkfZk6fBcgav28XxRd

I will also clear your device from malware, and you keep living your life.
Otherwise, shit will happen.

The fee is non negotiable, to be transferred within 2 business days.

Obviously do not try to ask for any help from anybody unless you want your privacy to be violated.
I will monitor your every move until I get paid. If you keep your end of the agreement, you wont hear from me ever again.
Take care.

Email analysis :

NOTE : helo=ue235.59.digi.net.my
NOTE : 115.164.59.235 ([115.164.59.235])⁩

Thursday, August 26, 2021

Ceci est le dernier avertissement. Votre système a été piraté. (BTC)

Bonjour,

Ceci est le dernier avertissement. Votre système a été piraté.

Toutes les données de votre appareil ont été copiées sur nos serveurs. En outre, une vidéo a été enregistrée à partir de votre caméra dans laquelle vous regardez un ***-film. Mon virus a infecté votre appareil à travers un site Web pour adultes que vous avez récemment visité.

Si vous ne savez pas comment cela fonctionne, je partagerai les détails.

Le virus Trojan me donne un accès complet ainsi qu'un contrôle sur l'appareil que vous utilisez. En conséquence, je peux voir votre entier écran et allumer la caméra et le microphone sans que vous pourrez le comprendre.

J'ai capturé une vidéo de votre écran et de la caméra de l'appareil et j’avais édité une vidéo dans laquelle dans une partie de l'écran on peut voir comme vous *** , et l'autre partie de l'écran montre le film *** que vous avez redardé à ce moment-là. Je vois la liste complète de vos contacts de téléphone et de tous les réseaux sociaux. Je peux envoyer cette vidéo à tous vos contacts de téléphone, de messagerie et de réseaux sociaux en un seul clic. De plus, je peux envoyer les données de votre courrier électronique et de vos messagers a tout le monde.

Cela détruira votre réputation pour toujours. Si vous souhaitez éviter un tel développement d'événements, procédez comme suit-Transférez 1400 USD (dollars américains) sur mon portefeuille Bitcoin.

(si vous ne savez pas comment le faire, écrivez dans le champ de recherche sur Google: "Acheter des bitcoins").

Mon portefeuille Bitcoin-(BTC Wallet): bc1qp8d9l34fagmveplt2pru2sjt2pqwj3gyw83nkt

Dès que le paiement arrivera, je détruirai immédiatement votre vidéo et je vous garantie que je ne vous dérangerai jamais plus.

Vous avez 50 heures (un peu plus de 2 jours) pour effectuer ce paiement. Je reçois une notification automatique de lecture de cette lettre. Le minuteur démarre également automatiquement immédiatement après vous avez lu cette E-Mail. N'essayez pas de vous plaindre nulle part, car mon portefeuille ne peut pas être suivi. Mon courrier électronique n'est pas être suivi non plus et se généré automatiquement, donc toute réponse n'aurait pas aucun sens.

Si vous essayerez de partager cette lettre avec quelqu'un, le système enverra automatiquement une demande aux serveurs et ils commenceront à envoyer toutes les données aux réseaux sociaux. Le changement des mots de passe sur les réseaux sociaux, sur votre messagerie ou sur votre appareil ne vous aidera pas, puisque toutes les données ont déjà été téléchargées sur le cluster de mes serveurs.

Je vous souhaite bonne chance et ne faites pas des bêtises. Considerez votre réputation.

mail.kerry.co.id made the following annotations
---------------------------------------------------------------------
NOTICE: This email message is for the sole use of the intended recipient(s)
and may contain confidential and privileged information. Any unauthorized
review, use, disclosure or distribution is prohibited. If you are not the
intended recipient, please contact the sender by reply email and destroy all
copies of the original message.

This message has been content scanned by the Axway MailGate.
MailGate uses policy enforcement to scan for known viruses, spam, undesirable content and malicious code. For more information on Axway products please visit www.axway.com.
---------------------------------------------------------------------

Email analysis :

NOTE : bc1qp8d9l34fagmveplt2pru2sjt2pqwj3gyw83nkt analysis
NOTE : www.blockchain.com/btc/address/bc1qp8d9l34fagmveplt2pru2sjt2pqwj3gyw83nkt
NOTE : This address has transacted 0 times on the Bitcoin blockchain.
NOTE : It has received a total of 0.00000000 BTC ($0.00)
NOTE : and has sent a total of 0.00000000 BTC ($0.00).
NOTE : The current value of this address is 0.00000000 BTC ($0.00).
NOTE : Received : ⁨from webmail.kerry.co.id (unknown [10.2.2.8]) by mail.kerry.co.id (Postfix) NOTE : Received-Spf : ⁨Permerror (mailfrom) identity=mailfrom;
NOTE : client-ip=202.147.202.226; helo=mail.kerry.co.id;
NOTE : envelope-from=linda_m@kerry.co.id;
NOTE : linda_m@kerry.co.id
NOTE : Form-Sub : ⁨v=1; ip=89.66.58.165⁩

Friday, July 16, 2021

Important Updates (BTC Scam)

I am sorry to inform you that your device was compromised.

I'll explain what led to all of this. I have used a Zero Day vulnerability with a special code to infect your device through a website.
This is a complicated software that requires precise skills that I have. It works as a chain with specially crafted and unique code and that’s why this type of an attack can go undetected.
You only need one not patched vulnerability to be infected, and unfortunately for you – it works that simple.

You were not targeted specifically, but just became one of the quite a few unlucky people who got hacked that day.
All of this happened a few month ago. So I’ve had time to collect information on you.

I think you already know what is going to happen next.
During that time, my software was quietly collecting information about your habits, websites that you visit, searches you do, texts you send.
There is more to it, but I have listed a few reasons for you to understand how serious this is.

For you to clearly understand, my software controlled your camera and microphone as well and it was impossible for you to know about it.
It was just about right timing for me to get you privacy violated.

I’ve been waiting enough and have decided that it’s time to put an end to this.
So here is my offer. I need a consulting fee to delete the media content I have been collecting.
Your privacy stays untouched, if I get paid.
Otherwise, I will leak the most damaging content to your contacts and post it to a public tube for perverts to explore.

I understand how damaging this will be for you, and amount is not that big for you to keep your privacy.
Please dont blame me – we all have different ways of making a living.

I have no intention of destroying your reputation or life, but only if I get paid.
I don’t care about you personally, that's why you can be sure that all files I have and software on your device will be deleted immediately after I receive the transfer.
I only care about getting paid.

My modest consulting fee is 1650 US Dollars transferred in Bitcoin. Exchange rate at the time of the transfer.
You need to send that amount to this wallet: 17U1BaXwyuxeX2sZyMjC25G8skrZ8mtTdz

The fee is non negotiable, to be transferred within 2 business days.
We use Bitcoin to protect my identity.

Obviously do not try to ask for any help from anybody unless you want your privacy to be violated.
I will monitor your every move until I get paid. If you keep your end of the agreement, you wont hear from me ever again.

Take care.

Email analysis :

NOTE : client-ip=179.215.29.139
NOTE : virtua.com.br

Monday, January 20, 2020

I'm keeping an eye on you ! (BTC Scam)

Hello

I am a spyware software deve͏loper.

29/10/2019 - On this day I hacke͏d your OS and got full access to your account *@*

I sent this message from your account

The hacking was carried out using a hardware vulnerability through which you went online.
I went aro͏und the security system in the router, installed an exploit there.
When you went online, my exploit downloaded my malicious code (rootkit) to your device.
Why your antivirus did not detect mal͏ware? My malware uses the driver, I update its signature͏s every 3 hours so that your antivirus is silent.

Since then I have been following you (I can connect to your device via the VNC protocol).
That is, I can see absolutely everything that you do, view and download your files and any data to yourself.
I also have access to the camera on your device, and I per͏iodically take photos and videos with you.

At the moment, I have harvested a solid dirt... on you...
I saved all your email and chats from your mes͏sangers. I also saved the entire history of the sites you visit.

I kno͏w what you like adult sites.
Oh, yes... I'm know your secret life, which you are hiding from everyone.
I took photos and videos of your most passionate funs with adult con͏tent, and synchronized them in real time with the image of your camera.
Believe it turned out very high quality!

I'm sure you don't want to show these files and vis͏iting history to all your contacts.

Transfer $786 to my Bitcoin cryptocurrency wallet: 1EusKBngvc4DQZ6xoRJihrQL8NR7y1TRhw
Just copy and paste the wa͏llet number when transferring.
If you do not know how to do this - ask Google.

My system automatically recognizes the tra͏nsfer.
As soon as the specified amount is received, all your data will be destroyed from my server, and the root͏kit will be automatically removed from your system.

Good luck!

Email analysis :

NOTE : lisidobzha@middlefingerindustries.com
NOTE : Received : ⁨from famouspeoplecom.middlefingerindustries.com
NOTE : (171-100-30-86.static.asianet.co.th [171.100.30.86]
NOTE : 171.100.30.86

Sunday, November 18, 2018

Your life is in your hands

Hi

Dо nоt mind оn my illitеrасy, I аm from China.

This is your last chance to save your life.

I uрlоаdеd thе maliсiоus рrоgram оn yоur systеm.
Sinсе thаt mоment I рilfеrеd аll рrivy baсkgrоund frоm yоur systеm. Аdditiоnally I havе somе morе соmрrоmising evidеnсе. Thе mоst intеrеsting evidenсе thаt I stоlе- its a vidеоtаре with yоur *. I аdjustеd virus оn а * wеb sitе аnd аftеr yоu loadеd it. Whеn yоu dесidеd with thе video аnd tарреd оn a рlаy buttоn, my dеlеtеriоus sоft аt оnсе sеt uр on your systеm. Аfter adjusting, yоur саmera shооt thе vidеоtаре with yоu *, in аddition it savеd рreсisеly the * videо you * оn. In nеxt fеw dаys my mаlwаre cоllесtеd аll your sосiаl and wоrk соntacts.

If you wаnt tо delеtе the rесords- pay me 888 еuro in BTC(сryptоcurrеncy).
I providе you my Btс numbеr - 1DQqZVUFopQ6v1rMC8GeCZNKnrEQt2guha
Yоu havе 24 hours after rеаding. When I get trаnsfеr I will dеstroy thе vidеotаpе еvermоrе.
If you need 50h just Open the calculator on your desktop and press +++
Other way I will sеnd thе tаpe to аll yоur сollеаguеs and friends.

Email analysis :

NOTE : Viktoria@wellnesselfie.com
NOTE : Received : ⁨from treyleraksesuar.com (treyleraksesuar.com [193.124.44.32])

Saturday, October 6, 2018

Security Warning

Hello!

I'm a member of an international hacker group.

As you could probably have guessed, your account *@* was hacked, because I sent message you from your account.

Now I have access to all your accounts!
For example, your password for *@* : dod419419xk

Within a period from July 31, 2018 to October 3, 2018, you were infected by the virus we've created, through an adult website you've visited. So far, we have access to your messages, social media accounts, and messengers. Moreover, we've gotten full damps of these data. We are aware of your little and big secrets...yeah, you do have them. We saw and recorded your doings on porn websites. Your tastes are so weird, you know.. But the key thing is that sometimes we recorded you with your webcam, syncing the recordings with what you watched! I think you are not interested show this video to your friends, relatives, and your intimate one...

Transfer $800 to our Bitcoin wallet: 1PwENLsmQ2Z6b4EJfXDeeXKBj9v878uHRf

If you don't know about Bitcoin please input in Google "buy BTC". It's really easy.

I guarantee that after that, we'll erase all your "data" :)

A timer will start once you read this message. You have 48 hours to pay the above-mentioned amount.

Your data will be erased once the money are transferred.
If they are not, all your messages and videos recorded will be automatically sent to all your contacts found on your devices at the moment of infection.

You should always think about your security.
We hope this case will teach you to keep secrets.
Take care of yourself.

Email analysis :

NOTE : BTC : 1PwENLsmQ2Z6b4EJfXDeeXKBj9v878uHRf
NOTE : Received-Spf : ⁨Softfail (mailfrom) identity=mailfrom;
NOTE : client-ip=87.196.189.84; helo=87-196-189-84.net.novis.pt;


INFOS : It's just an "Email spoofing".
INFOS : (Email spoofing is the creation of email messages with a forged sender address.)
INFOS : The password was already used in other scams.
INFOS : (http://www.scam.cz/search?q=dod419419xk)

Tuesday, October 2, 2018

Your life can be ruined,concentrate.

Hi, victim.
This is my lаst wаrning .
I writе yоu beсausе I put a mаlwаre оn thе wеb раge with pоrn whiсh you havе visitеd.
My virus grаbbеd аll your persоnal infо and turned оn your cаmera whiсh сарtured thе prоcеss оf yоur onanism. Just aftеr that the soft sаvеd yоur contасt list.
I will dеlеtе the сompromising vidеo and infо if you рay mе 250 USD in bitcоin. This is аddress for payment: 1PLbD9emvLALhaoTsocsPkUiQ898ptFGQC

I give you 24 hоurs аfter yоu open my message fоr making the transactiоn.
As sооn аs yоu read thе mеssаge I'll sеe it right аwаy.
It is not nесessаry to tеll me that you havе sent money tо me. This address is cоnnесtеd to yоu, my systеm will dеlеte еvеrything automaticаlly aftеr transfer confirmаtion.
If you nееd 48 h just reрly оn this lettеr with +.
You cаn visit thе рolice station but nobody can helр you.
I dont livе in yоur сountry. So thеy cаn nоt trаck my lосatiоn еven fоr 8 mоnths.
Goodbye. Dont forgеt аbout the shame and to ignоre, Your lifе cаn be ruinеd.

Email analysis :

NOTE : client-ip=193.124.44.91;
NOTE : https://www.shodan.io/host/193.124.44.91


NOTE : Viktoria@allenphan.com
NOTE : BTC : 1PLbD9emvLALhaoTsocsPkUiQ898ptFGQC

Thursday, August 30, 2018

You will be ashamed __ * *

You can visit the police station but nobody can help you.
I dont live in your country. So they can not trace me even for 7 months.

Your device was controlled by my malware.
We turned on your webcam, during your porn-site visit.
Now I have the video material with you, caressing yourself.
We copied all your contacts and if you want us to keep this secret we need to win 420 $ in bitcoin.

Use this bitcoin address to pay 1Fpc9bHDoaXcNZUXp4jSCs7yBs2yoxTipK
(use it like your credit card number)

I give you 30 h after clicking on my message for making the payment.
You can get 48 h only write back +.

If you want me to show proofs I will show it to seven your friends after that I will give you their contacts. If you want you will ask them if they have received something or not.

Goodbye. Dont forget about the ignominy.

Email analysis :

NOTE : support@kd00.com
NOTE : 1Fpc9bHDoaXcNZUXp4jSCs7yBs2yoxTipK
NOTE : 185.17.123.224 (kd00.com)⁩