Our homestead is for sale!

Monday, September 9, 2019

Bwahahaha!

I received an email from "Bria" as follows:
Hello!

I am a hacker who has access to your operating system.
I also have full access to your account.

I've been watching you for a few months now.
The fact is that you were infected with malware through an adult site that you visited.

If you are not familiar with this, I will explain.
Trojan Virus gives me full access and control over a computer or other device.
This means that I can see everything on your screen, turn on the camera and microphone, but you do not know about it.

I also have access to all your contacts and all your correspondence.

Why your antivirus did not detect malware?
Answer: My malware uses the driver, I update its signatures every 4 hours so that your antivirus is silent.

I made a video showing how you satisfy yourself in the left half of the screen, and in the right half you see the video that you watched.
With one click of the mouse, I can send this video to all your emails and contacts on social networks.
I can also post access to all your e-mail correspondence and messengers that you use.

If you want to prevent this, transfer the amount of $500 to my bitcoin address (if you do not know how to do this, write to Google: "Buy Bitcoin").

My bitcoin address (BTC Wallet) is: [deleted]

After receiving the payment, I will delete the video and you will never hear me again.
I give you 50 hours (more than 2 days) to pay.
I have a notice reading this letter, and the timer will work when you see this letter.

Filing a complaint somewhere does not make sense because this email cannot be tracked like my bitcoin address.
I do not make any mistakes.

If I find that you have shared this message with someone else, the video will be immediately distributed.

Best regards!
So you "infected me" with a malware through an "adult site" that I visited?

Oh, and you "do not make any mistakes"?

Bwahahaha. Wrong on both counts. Try harder, sweetie.

12 comments:

  1. A scammer, not a hacker. If you know how to do it, you should report her.

    ReplyDelete
  2. Oh PLEASE post 'his' email! I think we could have some big fun w/that... Sigh, some people!

    ReplyDelete
  3. I've been getting those for years now. I just delete and move on. No adult sites for me.

    ReplyDelete
  4. I'll let you know if your video gets distributed

    ReplyDelete
  5. Sigh. At least it is not someone telling you that, for a handling fee, you can have millions...

    ReplyDelete
  6. Wow, and this is blog worthy? Or is it just virtue signaling?

    ReplyDelete
    Replies
    1. Actually, I think she is giving us all something to smile at. Folks like us (not you) live pretty upright lives, and an email like this can amuse us for days. I'd have to post it on my facebook (if I had such a thing) just to entertain my friends.
      Silly, virtuous me, right?

      Delete
  7. Oh my goodness, I'll share my video if you share yours, LOL! I always get a good chuckle when I get one of those scam emails...Sad thing is, some ppl get scared enough whether they've 'participated' in those kind of sites or not, that they will actually follow thru and get themselves in even hotter water.

    ReplyDelete
  8. got one from the "social security administration" to my cell phone saying due to suspicious activity and without response my social security number would be suspended..!

    ReplyDelete
    Replies
    1. Another emergent scam: the "neighbour number" scam which gets you to answer the phone because it looks like a local call.

      Let's say you're in Philadelphia and have a number such as 215-555-1212. The "neighbour number" scam uses a spoofed number in the same area code and exchange, such as 215-555-9999, so that you don't immediately recognise it as a junk caller and you're more likely to answer the phone.

      Android phones have plenty of options for call blocking apps that include some that provide default allow rules for anyone who's in your contacts list. These can also block SMS, but they have to replace your default or preferred SMS app in order to work.

      The workaround for sending SMS is to add a link to your preferred SMS app in the floating menu bar that's at the bottom of the app screen.

      You can route around this problem by having a mobile number in another state and by blocking the local calling area -- it's not as if anyone in that place actually knows you.

      Choose an area code that's not likely to run out of phone numbers for a few decades.

      Delete
  9. Ah, yes, it's time we had a talk ...

    About IT security, of course. :-)

    Some of these E-mails may look like there's
    been some kind of compromise of your mail
    server, and so the messages to you are
    coming from your mail server with your
    E-mail address, but there's a very
    simple reason for that.

    This happens because you whitelisted
    your own E-mail address.

    Never whitelist your own E-mail address.
    That's just an invitation for people to
    use it to send SPAM to you.

    If you need to set up some kind of
    whitelisting, set up some kind of
    E-mail relay bastion host with a
    fixed IP address and use that to
    send your E-mail.

    Then you can add Sender Privacy
    Framework (SPF) protection for your
    domain and list that bastion host
    as allowed with an "ip4:10.2.3.4"
    kind of rule in the SPF record.

    So you need to implement two fixes:
    stop whitelisting yourself and get
    your DNS configuration updated with
    SPF so random Internet creeps can't
    spoof E-mail from your domain, most
    especially mail to yourself that is
    pretending to be from yourself.

    As for how to get back at these kinds
    of people, I won't tell you how to do
    it, but I will make a few observations
    about this kind of thing.

    At best, unless there's some massively
    "over-the-top" response, most SPAM reports
    only result in a warning to the people
    who are unwittingly running a SPAM relay
    on their systems and networks.

    An "over-the-top" response is generally
    the only thing that ever gets attention
    and gets the attacks shut down, and the
    "over-the-top" response can come in a
    wide range of forms.

    But personally, I like the forms that
    tell the ISP's network operations centre
    people that there's a REALLY BIG PROBLEM
    right at that one particular IP address
    that's been running the attacks.

    This is of course why I'm not going to
    tell you how to do it. :-)

    ReplyDelete
  10. I had to laugh. I just got this email at my work. Funniest thing is, its our work Accounts Payable email address.

    ReplyDelete