1. This website uses cookies to improve service and provide a tailored user experience. By using this site, you agree to this use. See our Cookie Policy.
    Dismiss Notice

I know your password

Discussion in 'BlackHat Lounge' started by nakamura, Jun 27, 2019.

  1. nakamura

    nakamura Elite Member

    Joined:
    Mar 22, 2013
    Messages:
    2,045
    Likes Received:
    1,236
    Gender:
    Male
    Just got this e-mail. And yes, he really sent me my old password. I used this one mostly on my wordpress sites.

    "Hi, I know your password is: YES MY REAL PASSWORD

    You got infected with my malware, RAT (Remote Administration Tool), while browsing the web where my iframe was placed, in the background you got redirected to my exploitpack, your browser wasn't patched so you got infected!

    The malware gave me full control over your computer and access to all your accounts (see password above), it was also possible to turn your webcam on, you can Google about RAT's and their functionalities!

    I collected all your private data and RECORDED YOU (through your webcam) SATISFYING YOURSELF!

    After that I removed my malware, to not leave any traces.

    I can send the video to all your contacts, over email, post on social network and everywhere else and publish all your private data everywhere, including the darknet, where the sick people are!

    Only you can prevent me from doing this!

    To stop me, transfer exactly 800$ in bitcoin (BTC).

    If you don't know how to buy bitcoin, Google - "How to buy Bitcoin?"
    Or buy bitcoin here: www.paxful.com or: www.coinbase.com or check for bitcoin ATM near you.

    You can send direct to my wallet, or create your own wallet first here: www.login.blockchain.com/en/#/signup/ and then send to mine.

    My bitcoin wallet is: 1PC3q

    Copy and paste my wallet, it's (cAsE-sensetive)
    After receiving the payment, I will delete all your data and you can life your live in peace like before.

    You got 3 days time.
    Since I already have access to your account, I know if this email has been already read.
    If you get this email multiple times, it's to make sure you read it and after payment you can ignore it.
    Don't show this email to anyone, it will not help you but make everything worse, this should stay our little secret.
    Next time update your browser and scan unknown files on: www.virustotal.com, take it as a lesson learned and move on."

    Also very friendly of him how he told me to move on and recommends virustotal. Made my day 8)
     
    Last edited by a moderator: Jun 27, 2019
  2. fb3003

    fb3003 Jr. VIP Jr. VIP

    Joined:
    Aug 14, 2015
    Messages:
    1,210
    Likes Received:
    361
    Gender:
    Male
    no, there is no malware on your pc. your wordpress site got hacked or another site that you used the same pwd got hacked

    check this out

    https://haveibeenpwned.com
     
  3. nakamura

    nakamura Elite Member

    Joined:
    Mar 22, 2013
    Messages:
    2,045
    Likes Received:
    1,236
    Gender:
    Male
    i have been pwned
     
  4. ShadeDream

    ShadeDream Elite Member

    Joined:
    Nov 27, 2008
    Messages:
    2,285
    Likes Received:
    5,442
    Location:
    He who laughs last, laughs longest.
  5. rahul28

    rahul28 Newbie

    Joined:
    Jun 17, 2019
    Messages:
    15
    Likes Received:
    2
    Gender:
    Male
    Location:
    BlackhatWorld
    So did you pay him ?
     
  6. Heiko

    Heiko Jr. VIP Jr. VIP

    Joined:
    Jul 26, 2016
    Messages:
    1,828
    Likes Received:
    2,533
    Gender:
    Male
    Occupation:
    Training to become a Lifecoach & IM
    Location:
    Germany
    Heres what i assume:

    He got himself ahold of a Wordpress Data Breach, collected the password and email, then emailed this copy pasta text which you wrote above to the email that you registered the wordpress website in and claims that he has all your passwords (which he clearly does not).
     
  7. fb3003

    fb3003 Jr. VIP Jr. VIP

    Joined:
    Aug 14, 2015
    Messages:
    1,210
    Likes Received:
    361
    Gender:
    Male
    was it on site: ilovefootfetishesandgirlswithbigbutts.com??? ;)
     
  8. Aaric

    Aaric Jr. VIP Jr. VIP

    Joined:
    Mar 7, 2010
    Messages:
    2,831
    Likes Received:
    1,684
    Gender:
    Male
    Occupation:
    Vendor to ORM Experts. GMB, Yelp, Trustp, Angies
    Location:
    Riverside, CA
    Home Page:
  9. underachieved

    underachieved Jr. VIP Jr. VIP

    Joined:
    Aug 24, 2010
    Messages:
    1,751
    Likes Received:
    853
    Occupation:
    IM
    Location:
    Cyberspace
    Its a bluff there was a huge DB leak sometime ago and they got your old password somewhere.

    He is using the same script that scammers have used in the past, "I seen you pleasuring yourself"

    If he really hacked you then he would steal that $800 from you and not ask for it
     
  10. GoGuerilla

    GoGuerilla Jr. VIP Jr. VIP

    Joined:
    Oct 15, 2018
    Messages:
    259
    Likes Received:
    108
    Lots of these going round. Just change your passwords (use keep passx). Make sure every password is different for various websites
     
  11. underachieved

    underachieved Jr. VIP Jr. VIP

    Joined:
    Aug 24, 2010
    Messages:
    1,751
    Likes Received:
    853
    Occupation:
    IM
    Location:
    Cyberspace
    I have gotten that almost exact message in skype a few years ago.

    BS because I don't even own a webcam or device with a selfie camera, all covered with tape.

    I would not worry OP.
     
  12. Blake12377

    Blake12377 Newbie

    Joined:
    Sep 5, 2018
    Messages:
    26
    Likes Received:
    1
    Gender:
    Male
    I wonder how successful this scam is. I've been seeing this go around for years.
     
  13. nakamura

    nakamura Elite Member

    Joined:
    Mar 22, 2013
    Messages:
    2,045
    Likes Received:
    1,236
    Gender:
    Male
    I am wondering how much money they are actually making from this. Someone up for a case study? lol
     
  14. Aaric

    Aaric Jr. VIP Jr. VIP

    Joined:
    Mar 7, 2010
    Messages:
    2,831
    Likes Received:
    1,684
    Gender:
    Male
    Occupation:
    Vendor to ORM Experts. GMB, Yelp, Trustp, Angies
    Location:
    Riverside, CA
    Home Page:
    Search their BTC address on blockchain or to find BTC addresses of their search part of email you got in google.
     
    • Thanks Thanks x 1
  15. Blake12377

    Blake12377 Newbie

    Joined:
    Sep 5, 2018
    Messages:
    26
    Likes Received:
    1
    Gender:
    Male
    I think 90% of the battle is getting a hold of the leaked passwords and then spam the emails first.
     
  16. underachieved

    underachieved Jr. VIP Jr. VIP

    Joined:
    Aug 24, 2010
    Messages:
    1,751
    Likes Received:
    853
    Occupation:
    IM
    Location:
    Cyberspace
    lol, We need a bulk list of all the wallets they use, and most likely they use a unique wallet for each email, or maybe for a group of emails? I assume most people who do this are not hackers or have any of those skills. Just deceptive marketing.

    Checked that address in the blockchain. Its clean
     
  17. ShadeDream

    ShadeDream Elite Member

    Joined:
    Nov 27, 2008
    Messages:
    2,285
    Likes Received:
    5,442
    Location:
    He who laughs last, laughs longest.
    I think this website is bullshit. They found 4 breached sites for one of my older emails and these were: Bitly In May 2014, imgur In September 2013, Kickstarter In February 2014, and some Onliner Spambot. I've never really had problems and I don't use these sites either. I then checked a slightly newer email address and they found 1 breach from some company called Apollo which is very funny because I've never heard of them so I've got no clue how they'd have my email address. I've definitely not had any emails from them either. I then checked a very old email that hasn't been used in years and it shows 6 breached sites where two of those breached results came from 2019 and I'm pretty sure that email address is long dead and definitely not used by anyone. I don't recognize the results either. I didn't bother checking my other emails.
     
  18. terrycody

    terrycody Elite Member

    Joined:
    Sep 29, 2012
    Messages:
    2,707
    Likes Received:
    846
    Occupation:
    marketer
    Location:
    Hell
    Ignore it and change your password, actually they don't know your wp sites logins, they are using this type of ransom emails template for spamming every single day.
     
    • Thanks Thanks x 1
  19. rafark

    rafark Jr. VIP Jr. VIP

    Joined:
    Jan 15, 2013
    Messages:
    776
    Likes Received:
    484
    Gender:
    Male
    Occupation:
    Moderador
    Location:
    North America
    Home Page:
    There have been millions of passwords hacked and shared online (as an email => password list). My guess is he doesn't have your current password but managed to get your old one through one of these leaks. In short, he has no access to anything from you if you've already changed your passwords, ignore it and move on.
     
  20. ShadeDream

    ShadeDream Elite Member

    Joined:
    Nov 27, 2008
    Messages:
    2,285
    Likes Received:
    5,442
    Location:
    He who laughs last, laughs longest.
    It's probably different people attempting the same scam and not getting any results. Every now and then someone new comes along and ends up trying to do the same whilst spreading the idea further.

    Probably nothing.