Security researchers recently discovered a new variant of Bitcoin email scam with the subject line “Caution! Attack hackers to your account!“. This email scam tries to extort money by claiming to have a secretly recorded video. Like before, this bitcoin blackmail scam spreads via spam emails. The spam is sent out to thousands of emails at a time. Below is an example of the new Bitcoin Scam with the ransom note:
While terrifying at first, this email message is classic Bitcoin Blackmail Scam. It is old extortion scheme – which try to guilt people into paying off someone claiming to have secretly recorded video or compromising information. It is based on the fact that:
- the scam has been sent to countless people like any other widespread email spam
- the fraudulent message have the “spam” style grammar
- security researchers has determined that these emails attempts to force users into paying the requested ransom and that no actual video exists
Myantispyware team continue to receive reports of fraudulent messages. Here below is an example of the latest variations of the “Caution! Attack hackers to your account!” Email Scam. There are variations in the wording of the email body, but all of these messages are basically the same:
Subject: Caution! Attack hackers to your account! Hi, stranger! I know the ***, this is your password, and I sent you this message from your account. If you have already changed your password, my malware will be intercepts it every time. You may not know me, and you are most likely wondering why you are receiving this email, right? In fact, I posted a malicious program on adults (pornography) of some websites, and you know that you visited these websites to enjoy (you know what I mean). While you were watching video clips, my trojan started working as a RDP (remote desktop) with a keylogger that gave me access to your screen as well as a webcam. Immediately after this, my program gathered all your contacts from messenger, social networks, and also by e-mail. What I've done? I made a double screen video. The first part shows the video you watched (you have good taste, yes ... but strange for me and other normal people), and the second part shows the recording of your webcam. What should you do? Well, I think $774 (USD dollars) is a fair price for our little secret. You will make a bitcoin payment (if you don't know, look for "how to buy bitcoins" on Google). BTC Address: 1DrThpxYV7JtvrVkneuJMYtn8Fik8efSwn (This is CASE sensitive, please copy and paste it) Remarks: You have 2 days (48 hours) to pay. (I have a special code, and at the moment I know that you have read this email). If I don't get bitcoins, I will send your video to all your contacts, including family members, colleagues, etc. However, if I am paid, I will immediately destroy the video, and my trojan will be destruct someself. If you want to get proof, answer "Yes!" and resend this letter to youself. And I will definitely send your video to your any 19 contacts. This is a non-negotiable offer, so please do not waste my personal and other people's time by replying to this email. Bye!
There is one thing that it does to make itself appear real. It uses your own e-mail address as the “From” address, but do not be fooled. This phishing scam uses so-called “email spoofing”. Email spoofing is the creation of email messages with a forged sender address. Email spoofing has been around for a long time! Scammers use it in phishing attacks to force users into thinking they have received mail message from a friend or trusted person.
Should you pay?
The best advice is: Don’t pay the ransom! If you receive the blackmail scam, just ignore the scammers’ empty threats. The best way to deal with the scam email is simply to move it to trash!
What to do when you receive the “Caution! Attack hackers to your account!” email scam
We advice to someone who gets this fraudulence message:
- Do not panic.
- Scammers will try to rush you, pressure you to make a decision to pay him. We recommend you do not pay a ransom, because your payment will only increase attacks against you.
- Stop using the password that the scammer used in the email scam and change it. Make sure that you do not repeat passwords.
- If there’s a link in the scam email, do not click it, otherwise you could unwittingly install malware or ransomware on your computer.
- Report the email spam to the FTC at https://www.ftc.gov/
- Scan your computer for malware.
- Install an anti-phishing software.
- If you receive an email that is similar but not the same as the example above, make sure you remove any personal info in this message, then post it as comment on this article. It will help our team monitor the latest scams.
How to scan your PC for malware
Using a malware removal utility to scan for and remove malware hiding on your PC is probably the simplest solution to get rid of malicious software. We suggest try Zemana Free or other malware remover that listed below. It has excellent detection rate when it comes to adware, browser hijackers, trojans, spyware and other malware.
We recommend using the Zemana Free. You can download and install Zemana Free to search for and remove malware from your personal computer. When installed and updated, the malicious software remover will automatically check and detect all threats present on your PC system.
Download Zemana Free from the following link.
164113 downloads
Author: Zemana Ltd
Category: Security tools
Update: July 16, 2019
When downloading is complete, close all programs and windows on your personal computer. Double-click the set up file named Zemana.AntiMalware.Setup. If the “User Account Control” prompt pops up as displayed on the image below, click the “Yes” button.
It will open the “Setup wizard” that will help you setup Zemana AntiMalware (ZAM) on your PC system. Follow the prompts and don’t make any changes to default settings.
Once installation is finished successfully, Zemana Anti Malware will automatically start and you can see its main screen as on the image below.
Now click the “Scan” button to perform a system scan for malware. While the Zemana Anti-Malware (ZAM) program is checking, you can see how many objects it has identified as threat.
After Zemana Free has finished scanning, Zemana Anti Malware will show a list of all threats found by the scan. You may remove threats (move to Quarantine) by simply click “Next” button. Once the process is finished, you may be prompted to reboot the machine.
How to protect yourself from phishing web-sites
It’s also critical to protect your internet browsers from harmful and phishing web sites by using an ad blocker program such as the AdGuard. Security experts says that it’ll greatly reduce the risk of malicious software, and potentially save lots of money. Additionally, the AdGuard may also protect your privacy by blocking almost all trackers.
Visit the following page to download AdGuard. Save it on your MS Windows desktop.
26659 downloads
Version: 6.4
Author: © Adguard
Category: Security tools
Update: November 15, 2018
After downloading it, double-click the downloaded file to run it. The “Setup Wizard” window will show up on the computer screen like below.
Follow the prompts. AdGuard will then be installed and an icon will be placed on your desktop. A window will show up asking you to confirm that you want to see a quick instructions as on the image below.
Press “Skip” button to close the window and use the default settings, or click “Get Started” to see an quick instructions which will allow you get to know AdGuard better.
Each time, when you launch your PC system, AdGuard will start automatically and stop unwanted advertisements, block phishing, malicious or misleading web-pages. For an overview of all the features of the application, or to change its settings you can simply double-click on the AdGuard icon, which may be found on your desktop.
latest phishing email that I received 2 days ago:
vHi!
As you may have noticed, I sent you an email from your account.
This means that I have full access to your account.
I’ve been watching you for a few months now.
The fact is that you were infected with malware through an adult site that you visited.
If you are not familiar with this, I will explain.
Trojan Virus gives me full access and control over a computer or other device.
This means that I can see everything on your screen, turn on the camera and microphone, but you do not know about it.
I also have access to all your contacts and all your correspondence.
Why your antivirus did not detect malware?
Answer: My malware uses the driver, I update its signatures every 4 hours so that your antivirus is silent.
I made a video showing how you satisfy yourself in the left half of the screen, and in the right half you see the video that you watched.
With one click of the mouse, I can send this video to all your emails and contacts on social networks.
I can also post access to all your e-mail correspondence and messengers that you use.
If you want to prevent this,
transfer the amount of $777 to my bitcoin address (if you do not know how to do this, write to Google: “Buy Bitcoin”).
My bitcoin address (BTC Wallet) is: 16paE3kj3sC8gP2MjgTGM7QNHazc9Eseqo
After receiving the payment, I will delete the video and you will never hear me again.
I give you 48 hours to pay.
I have a notice reading this letter, and the timer will work when you see this letter.
Filing a complaint somewhere does not make sense because this email cannot be tracked like my bitcoin address.
I do not make any mistakes.
If I find that you have shared this message with someone else, the video will be immediately distributed.
Best regards!
Hello!
I’m a programmer who cracked your email account and device about half year ago.
You entered a password on one of the insecure site you visited, and I catched it.
Of course you can will change your password, or already made it.
But it doesn’t matter, my rat software update it every time.
Please don’t try to contact me or find me, it is impossible, since I sent you an email from your email account.
Through your e-mail, I uploaded malicious code to your Operation System.
I saved all of your contacts with friends, colleagues, relatives and a complete history of visits to the Internet resources.
Also I installed a rat software on your device and long tome spying for you.
You are not my only victim, I usually lock devices and ask for a ransom.
But I was struck by the sites of intimate content that you very often visit.
I am in shock of your reach fantasies! Wow! I’ve never seen anything like this!
I did not even know that SUCH content could be so exciting!
So, when you had fun on intime sites (you know what I mean!)
I made screenshot with using my program from your camera of yours device.
After that, I jointed them to the content of the currently viewed site.
Will be funny when I send these photos to your contacts! And if your relatives see it?
BUT I’m sure you don’t want it. I definitely would not want to …
I will not do this if you pay me a little amount.
I think $742 is a nice price for it!
I accept only Bitcoins.
My BTC wallet: 1EVe67RXBA28s14cnnsVv1WkxhtoXMjCTy
If you have difficulty with this – Ask Google “how to make a payment on a bitcoin wallet”. It’s easy.
After receiving the above amount, all your data will be immediately removed automatically.
My virus will also will be destroy itself from your operating system.
My Trojan have auto alert, after this email is looked, I will be know it!
You have 2 days (48 hours) for make a payment.
If this does not happen – all your contacts will get crazy shots with your dirty life!
And so that you do not obstruct me, your device will be locked (also after 48 hours)
Do not take this frivolously! This is the last warning!
Various security services or antiviruses won’t help you for sure (I have already collected all your data).
Here are the recommendations of a professional:
Antiviruses do not help against modern malicious code. Just do not enter your passwords on unsafe sites!
I hope you will be prudent.
Bye.
Hello!
As you may have noticed, I sent you an email from your account.
This means that I have full access to your device.
I’ve been watching you for a few months now.
The fact is that you were infected with malware through an adult site that you visited.
If you are not familiar with this, I will explain.
Trojan Virus gives me full access and control over a computer or other device.
This means that I can see everything on your screen, turn on the camera and microphone, but you do not know about it.
I also have access to all your contacts and all your correspondence.
Why your antivirus did not detect malware?
Answer: My malware uses the driver, I update its signatures every 4 hours so that your antivirus is silent.
I made a video showing how you satisfy yourself in the left half of the screen, and in the right half you see the video that you watched.
With one click of the mouse, I can send this video to all your emails and contacts on social networks.
I can also post access to all your e-mail correspondence and messengers that you use.
If you want to prevent this,
transfer the amount of $719 to my bitcoin address (if you do not know how to do this, write to Google: “Buy Bitcoin”).
My bitcoin address (BTC Wallet) is: 1K7nnDHosR5czKZtuKT928YSxXXNSaDK6H
After receiving the payment, I will delete the video and you will never hear me again.
I give you 50 hours (more than 2 days) to pay.
I have a notice reading this letter, and the timer will work when you see this letter.
Filing a complaint somewhere does not make sense because this email cannot be tracked like my bitcoin address.
I do not make any mistakes.
If I find that you have shared this message with someone else, the video will be immediately distributed.
Best regards!