The email starts with “I know xxxx is one of your password on day of hack.. Lets get directly to the point”.
A few of my clients have got one of these emails and they are scary. In the email, the 4 x’s are a real password that the clients have used at some point.
So what’s going on? What should you do if you get one of these emails?
Lets Get Directly To The Point.
These emails are scams or phishing emails. They’re scary because they will quote one of your passwords. It may not be a current password, but it will be one that you have used at some point.
Here is the complete email message..
I know xxxx is one of your password on day of hack..
Lets get directly to the point.
Not one person has paid me to check about you.
You do not know me and you’re probably thinking why you are getting this email?
in fact, i actually placed a malware on the adult vids (adult porn) website and you know what, you visited this site to experience fun (you know what i mean).
When you were viewing videos, your browser started out operating as a RDP having a key logger which provided me with accessibility to your display and web cam.
immediately after that, my malware obtained every one of your contacts from your Messenger, FB, as well as email account.
after that i created a double-screen video. 1st part shows the video you were viewing (you have a nice taste omg), and 2nd part displays the recording of your cam, and its you.
Best solution would be to pay me $2704.
We are going to refer to it as a donation. in this situation, i most certainly will without delay remove your video.
You could go on your life like this never happened and you will not ever hear back again from me.
You’ll make the payment via Bitcoin (if you do not know this, search ‘how to buy bitcoin’ in Google).
if you are planning on going to the law, surely, this e-mail can not be traced back to me, because it’s hacked too.
I have taken care of my actions. i am not looking to ask you for a lot, i simply want to be paid.
if i do not receive the bitcoin;, i definitely will send out your video recording to all of your contacts including friends and family, co-workers, and so on.
Nevertheless, if i do get paid, i will destroy the recording immediately.
If you need proof, reply with Yeah then i will send out your video recording to your 8 friends.
it’s a nonnegotiable offer and thus please don’t waste mine time & yours by replying to this message.
And it’s the use of that genuine password in the email that makes it all feel like they have got something on you. After all, how could they possibly know one of your passwords if they hadn’t hacked your computer?
I Know Xxxx Is One Of Your Passwords.
Let’s deal with the password because that really does make it personal, make it look like they have actually hacked into your computer.
It’s right at the top of the email “Iknow xxxx is one of your passwords” etc. It’s there to grab your attention, to make you sit up and read through the message rather than just deleting it as junk mail. The password quoted will be one of your passwords, it may be a current one or an older one, but you will have used it at some point on at least one website.
I have a question, why have they only included one password? After all, if you’re anything like me, you’ll have dozens of passwords saved on your computer.
And the point of including your password is to prove to you that, yes, they have hacked your computer. They’ve got a password, so they must be inside your machine, right?
If the sender of the email really had hacked your computer, why didn’t they include a selection of your passwords? It would be much more effective. After all, the more evidence you can offer, the more likely you are to be believed.
I know xxxx, yyyy and zzzz are your passwords etc, etc.
The reason they won’t include several of your passwords is that they simply don’t know them.
They haven’t hacked your computer, they haven’t placed any malware on your machine. The email is a phishing scam.
It’s designed to scare you into paying up. That’s all. They know absolutely nothing about you.
How Did They Get Your Password?
Your password, along with your email address, was stolen from a website that has been hacked. Nothing at all to do with your computer.
A website somewhere on the @net, to which you’ve created an account, has been hacked.
The hackers got away with a list of email addresses (usernames) and passwords.
That’s what has happened.
That’s why you should use strong and unique passwords for every website, every online account.
What To Do About “I Know Your Password Is” Emails.
These emails are scary because they include something personal about you. If you get one, and you probably will at some point, then just delete it. Don’t click anywhere on the email itself, not on any links, not even on the white space, just delete it, then forget about it.
Don’t bother replying to the email because it’ll almost certainly have come from a burner email address
And also, try not to get upset at whatever it is you’re being accused of. The ones I’ve seen so far on client computers are about pornography, but that will change as the scam evolves. They’ll start to cite all sorts of dreadful things. Remember, it’s rubbish. They don’t actually know anything about you and they care even less.
It’s just a scam, there aren’t any recordings, they never had access to your webcam and they really don’t know which websites you’ve visited.
The whole point of the email is to get you to pay up before you have time to think. Pay now, think later.
Oh and need I say CHANGE YOUR PASSWORD. Visit every website where this password has been used and change it.
Tell Your Friends And Family.
If at all possible, tell your friends and family about these emails. The more people that know about them, the less they’ll be disturbed or frightened by them and the less likely they will be to pay up.
Don’t pay, it’s a scam.
More Guides From At Home Computer
Getting It Done, One Guide At A Time