BLOG

New scam uses porn site and fake email to blackmail users | Privacy

Hackers are using a new scam to blackmail users of adult content sites in exchange for money, according to a report by Bleeping Computer last Friday (12). Criminals send an e-mail that demands a deposit of $ 800 (about R $ 2,900 in direct conversion) in Bitcoins to, in return, not divulge the victim's personal data. The message claims that malware was installed on the PC while accessing pornography sites and, in addition to bank accounts and social networks, the scammer would also have images of the person while watching videos from those pages.

READ: Scam seduces users to steal even money; understand

This action known as sextorso (a mixture of the words sex and extortion) is not new in the virtual environment. In July and August, this scam format came up with a few differences: the first was convincing because it contained a victim's password in the message; the second, contained the cell number. However, this time the hackers claim to have hacked the email account by sending a message from the victim's own email.

Scam blackmails victims to deposit money so they don't have supposed images released Photo: Reproduo / Pond5Scam blackmails victims to deposit money so they don't have supposed images released Photo: Reproduo / Pond5

Scam blackmails victims to deposit money so they don't have supposed images released Photo: Reproduo / Pond5

Want to buy cell phones, TV and other discounted products? Meet Compare dnetc

The experts did not specify how the hackers behind the scam are able to send messages from the victim's email, but told Bleeping Computer that problems of this kind could be avoided by the email providers themselves. According to the security researcher known on Twitter as SecGuru, the use of DNS records, such as domain-based SPF (Sender Policy Framework) and DMARC (Message Authentication, Reporting and Conformance) validation systems, can make electronic address spoofing difficult.

"If there are no good SPF and DMARC implementations, and the e-mail receiving server does not adequately block counterfeit e-mails, all customers will be vulnerable," explained the researcher to the Bleeping Computer website. The scam is spreading on Internet in two versions: one in English and one in Dutch In the Netherlands alone, criminals have already managed to obtain more than 40 thousand euros (approximately R $ 173,500) with the coup.

Typically, the title of the email (email address of the possible victim) + 48 hours to pay "(48 hours to pay, in free translation). Since the scammer supposedly sends the contents of the user's outbox, the The victim usually believes in the message. The criminal claims to be part of an international group of hackers and claims to have access to all his accounts and passwords.

English version of the email sent by hackers Photo: Reproduo / Bleeping ComputerEnglish version of the email sent by hackers Photo: Reproduo / Bleeping Computer

English version of the email sent by hackers Photo: Reproduo / Bleeping Computer

To give more veracity, the hacker claims that the user was infected within a certain period of time, while accessing a pornography site. He further informs that he has recordings of the victim's actions while she consumed the contents of that page. In order to erase the alleged data and prevent the images from being released to friends and family, the scammers request the payment of US $ 800 in virtual currencies in up to 48 hours, through an address informed in the email.

Many victims end up giving pressure and depositing, for fear that the message is true. However, it is all a bluff, because hackers do not actually have access to the data of these users. Therefore, the recommendation is given by the experts that, if anyone receives the message, delete the email and then perform a complete scan on the computer using an antivirus.

Router scam: how to avoid? Ask questions in the dnetc forum.

What ransomware: five tips to protect yourself

What ransomware: five tips to protect yourself

Back to top button

Ad blocker detected

You must remove the AD BLOCKER to continue using our website THANK YOU