Don’t pay it! No matter how convincing inclusion of that old password you used to use makes it seem, they don’t have video of you doing that. Don’t be embarrassed, if you considered paying the ransom email you’re not alone. So far 101 victims have sent 22.67 BTC to 37 of the 176 bitcoin addresses so far reported to be related to the new sextortion with/password scam email variation that first appeared July 10. Reports of previous versions of the same sextortion tactic without the password portion have been reaching us since October 2017. Inclusion of a password is unique over the last three weeks. Continue reading Sextortion With Password Email Scam Variant Makes 22.67BTC Over First 3 Weeks
A new twist on an old trick emerged this week. The porn ransom email claiming to have incriminating video of the recipient which will be released to contacts if not paid in bitcoin, has now included an old compromised password of the recipients in an attempt to add credibility to the scam. Gotta appreciate that dark web creativity. Where did they get all those passwords? The first report of this new variant was received July 10. Since then dozens more reports have come in relating to just over 2 dozen bitcoin addresses as of Friday. This address has been reported 9 times and also has the most total received at 2.83 BTC:
When reports of this email scam first started appearing last September the perpetrators were discovered to be using a Matbea wallet. That appears to have changed. On May 30 every output transaction from hundreds of reported blackmail scam addresses went to a Poloniex wallet address.
These bitcoin addresses were reported as scams related to the porn blackmail email:
Each of them shows an output to 1E2J2DAFGToqmTxK5H8fG6V3Tp3xqSiAm4 on May 30, 2018.
A quick investigation shows 1E2J2DAFGToqmTxK5H8fG6V3Tp3xqSiAm4 is among the Poloniex wallet cluster.
BitcoinWhosWho received multiple independent reports of a new bitcoin ransom email threatening people with “I’ve got an order to remove you” circulating.
However, no blockchain transactions yet.
These are the reports as of Dec 11 2017: Continue reading Bitcoin Hitman Email
We received two somewhat convincing phishing emails recently from colnbase.support and myethenwallet.com. Hilarious misspelling aside, it’s not so funny if one of these scams tricks you into entering your private information on the bogus websites they provide.
BitcoinWhosWho does not have any bitcoin addresses associated, please report if you know any! Continue reading Don’t Be Fooled By Colnbase or MyEthenWallet Scams