In case the below quoted text is something you have already read before. continue reading. I have a good news for you. oh and also a small bad news.
Hi, your account is now hacked! It will be good idea to change the pswd right now! You might not know anything about me and you obviously are definitely interested for what reason you are reading this particular message, proper? I'm ahacker who crackedyour email boxand all devicestwo months ago. It will be a time wasting to make an attempt to talk to me or alternatively look for me, it is impossible, since I forwarded you a letter from YOUR account that I've hacked. I have created malware to the adult videos (porn) site and guess you have visited this website to have a good time (you realize what I really mean). When you were taking a look at videos, your browser began functioning as a RDP (Remote Control) having a keylogger that gave me permission to access your desktop and web camera. Consequently, my programaquiredall data. You have typed passcodes on the online resources you visited, and I caught them. Without a doubt, you'll be able to modify them, or perhaps already changed them. But it doesn't matter, my app updates it regularly. What actually did I do? I made a reserve copy of every your device. Of all the files and personal contacts. I got a dual-screen record. The 1st part reveals the video you were observing (you have an interesting preferences, wow...), and the second part demonstrates the movie from your webcam. What must you do? Clearly, I think, 1000 USD will be a good amount of money for our small secret. You'll do the deposit by bitcoins (if you do not know this, search “how to purchase bitcoin” in Google). My bitcoin wallet address: 1NMA4dDszPAfDoGULpbX4tjvmKi3Ue4S8S (It is cAsE sensitive, so just copy and paste it). Warning: You have 48 hours in order to make the payment. (I have an unique pixel to this message, and from now I know that you've read through this email). To tracethe reading of a messageand the actionswithin it, I utilizea Facebook pixel. Thanks to them. (The stuff thatcan be usedfor the authorities can helpus.)
If I fail to get bitcoins, I'll immediately direct your video files to each of your contacts, including family members, co-workers, and many more?
The good news is, if you have received a mail like this. don't bother much even if you have some nasty videos in your inbox. such mails tend to come either from your own email id or from someone's email id whom you share your email domain with. such as your colligue.
Making it look pretty authentic. but the actual scenarios is, your email account is not been hacked, rather your email service provider or your company's IT manager needs some work to do. The email server you use has a miss configuration which lets someone relay a mail from anyone's behalf to the same domain without authentication.
This miss-configuration is super common and I see it almost in every company I visit for either #threat #hunting or for any kind of infra consultancy.
Cheers,
Roy
Comments