{"id":7,"date":"2018-11-13T08:14:00","date_gmt":"2018-11-13T13:14:00","guid":{"rendered":""},"modified":"2019-03-19T20:36:46","modified_gmt":"2019-03-20T00:36:46","slug":"sextortion-scam-email-campaign-has-netted-143k-in-bitcoin","status":"publish","type":"post","link":"https:\/\/www.thexyz.com\/blog\/sextortion-scam-email-campaign-has-netted-143k-in-bitcoin\/","title":{"rendered":"Sextortion scam email campaign has netted $143k in Bitcoin"},"content":{"rendered":"

There is a new email scam to watch out for. Over the last few weeks you may have received an email that tells you that your account has been hacked, that malware has been placed on your machine to capture data and that you\u2019ve been recorded watching adult content.<\/p>\n

Then comes the bitcoin extortion with varying amounts. To prevent this webcam video from being made public on your social networks or shared with your contacts.<\/p>\n

It is, of course, a classic sextortion scam. There is no malware and no video, they are just aiming to install an element of fear in the hope that you’ll pay anyway. The clever part here is that the hackers have used publicly available breach data to make the message look genuine by including a real-life old password from a previous data breach.<\/p>\n

Many of these passwords appear to date from the large scale LinkedIn breach of 2012 which goes to show you that this compromised data has a long shelf life on the dark web. However, using data that’s at least six years old does mean there’s less chance of these details still being in use and consequently less chance of you falling for the scam.<\/p>\n

Researchers at the Cisco Talos<\/a> threat intelligence group have today released the results of their analysis of these attacks. One campaign began on August 30th, and a second campaign began on October 5th, both are still active. The researchers find that more than half of them originate from just five countries.<\/p>\n

Vietnam: 15.9%
\nRussia 15.7%
\nIndia 8.5%
\nIndonesia 4.9%
\nKazakhstan 4.7%<\/p>\n

Over 200,000 email messages have been sent as part of these spam campaigns, however, the number of unique recipients is fairly low. Talos has found only 15,826 distinct victim email addresses.<\/p>\n

Talos has also identified 58,034 unique Bitcoin wallet addresses associated with these spam campaigns. Only 78 of this 58 thousand Bitcoin wallets have positive balances, which add up to a combined value of $143,429.38. This proves that at least some people are paying up.<\/p>\n

Some variants of the messages have used phone numbers rather than passwords to try to convince you that this is a legitimate hack. Other variations include threatening to disclose supposed evidence of cheating on a partner, or offering to sell evidence of a partner cheating on you. This is not a legitimate threat and you should not attempt to make any payment.<\/p>\n\n\n\n\n
<\/td>\n<\/tr>\n
<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n
\n
\"An

An example of the sextortion scam email<\/p><\/div>\n<\/div>\n

You can read more about these scams and how they work on the Talos blog<\/a>.<\/p>\n

If you are using an old password, it is advised to check your password on Troy Hunt’s password tool: Have I been pwned<\/a>.<\/p>\n<\/span>","protected":false},"excerpt":{"rendered":"

There is a new email scam to watch out for. Over the last few weeks you may have received an email that tells you that your account has been hacked, that malware has been placed on your machine to capture data and that you\u2019ve been recorded watching adult content. Then comes the bitcoin extortion with […]<\/p>\n","protected":false},"author":2,"featured_media":842,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_et_pb_use_builder":"","_et_pb_old_content":"","_et_gb_content_width":"","footnotes":""},"categories":[2,3],"tags":[],"class_list":["post-7","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-security","category-spam","et-has-post-format-content","et_post_format-et-post-format-standard"],"yoast_head":"\nSextortion scam email campaign has netted $143k in Bitcoin - Thexyz Blog<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.thexyz.com\/blog\/sextortion-scam-email-campaign-has-netted-143k-in-bitcoin\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Sextortion scam email campaign has netted $143k in Bitcoin - Thexyz Blog\" \/>\n<meta property=\"og:description\" content=\"There is a new email scam to watch out for. Over the last few weeks you may have received an email that tells you that your account has been hacked, that malware has been placed on your machine to capture data and that you\u2019ve been recorded watching adult content. Then comes the bitcoin extortion with […]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.thexyz.com\/blog\/sextortion-scam-email-campaign-has-netted-143k-in-bitcoin\/\" \/>\n<meta property=\"og:site_name\" content=\"Thexyz Blog\" \/>\n<meta property=\"article:published_time\" content=\"2018-11-13T13:14:00+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2019-03-20T00:36:46+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.thexyz.com\/blog\/wp-content\/uploads\/thexyz-twitter-card-blank-green-spam.png\" \/>\n\t<meta property=\"og:image:width\" content=\"600\" \/>\n\t<meta property=\"og:image:height\" content=\"314\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Thexyz Staff\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@https:\/\/twitter.com\/thexyz\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Thexyz Staff\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.thexyz.com\/blog\/sextortion-scam-email-campaign-has-netted-143k-in-bitcoin\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.thexyz.com\/blog\/sextortion-scam-email-campaign-has-netted-143k-in-bitcoin\/\"},\"author\":{\"name\":\"Thexyz Staff\",\"@id\":\"https:\/\/www.thexyz.com\/blog\/#\/schema\/person\/29825f4c97e9354f112a842f512b7b7b\"},\"headline\":\"Sextortion scam email campaign has netted $143k in Bitcoin\",\"datePublished\":\"2018-11-13T13:14:00+00:00\",\"dateModified\":\"2019-03-20T00:36:46+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.thexyz.com\/blog\/sextortion-scam-email-campaign-has-netted-143k-in-bitcoin\/\"},\"wordCount\":454,\"commentCount\":0,\"image\":{\"@id\":\"https:\/\/www.thexyz.com\/blog\/sextortion-scam-email-campaign-has-netted-143k-in-bitcoin\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.thexyz.com\/blog\/wp-content\/uploads\/thexyz-twitter-card-blank-green-spam.png\",\"articleSection\":[\"Security\",\"Spam\"],\"inLanguage\":\"en-CA\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/www.thexyz.com\/blog\/sextortion-scam-email-campaign-has-netted-143k-in-bitcoin\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.thexyz.com\/blog\/sextortion-scam-email-campaign-has-netted-143k-in-bitcoin\/\",\"url\":\"https:\/\/www.thexyz.com\/blog\/sextortion-scam-email-campaign-has-netted-143k-in-bitcoin\/\",\"name\":\"Sextortion scam email campaign has netted $143k in Bitcoin - Thexyz Blog\",\"isPartOf\":{\"@id\":\"https:\/\/www.thexyz.com\/blog\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.thexyz.com\/blog\/sextortion-scam-email-campaign-has-netted-143k-in-bitcoin\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.thexyz.com\/blog\/sextortion-scam-email-campaign-has-netted-143k-in-bitcoin\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.thexyz.com\/blog\/wp-content\/uploads\/thexyz-twitter-card-blank-green-spam.png\",\"datePublished\":\"2018-11-13T13:14:00+00:00\",\"dateModified\":\"2019-03-20T00:36:46+00:00\",\"author\":{\"@id\":\"https:\/\/www.thexyz.com\/blog\/#\/schema\/person\/29825f4c97e9354f112a842f512b7b7b\"},\"breadcrumb\":{\"@id\":\"https:\/\/www.thexyz.com\/blog\/sextortion-scam-email-campaign-has-netted-143k-in-bitcoin\/#breadcrumb\"},\"inLanguage\":\"en-CA\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.thexyz.com\/blog\/sextortion-scam-email-campaign-has-netted-143k-in-bitcoin\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-CA\",\"@id\":\"https:\/\/www.thexyz.com\/blog\/sextortion-scam-email-campaign-has-netted-143k-in-bitcoin\/#primaryimage\",\"url\":\"https:\/\/www.thexyz.com\/blog\/wp-content\/uploads\/thexyz-twitter-card-blank-green-spam.png\",\"contentUrl\":\"https:\/\/www.thexyz.com\/blog\/wp-content\/uploads\/thexyz-twitter-card-blank-green-spam.png\",\"width\":600,\"height\":314,\"caption\":\"Email spam\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.thexyz.com\/blog\/sextortion-scam-email-campaign-has-netted-143k-in-bitcoin\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.thexyz.com\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Sextortion scam email campaign has netted $143k in Bitcoin\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.thexyz.com\/blog\/#website\",\"url\":\"https:\/\/www.thexyz.com\/blog\/\",\"name\":\"Thexyz Blog\",\"description\":\"Email and Domains\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.thexyz.com\/blog\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-CA\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.thexyz.com\/blog\/#\/schema\/person\/29825f4c97e9354f112a842f512b7b7b\",\"name\":\"Thexyz Staff\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-CA\",\"@id\":\"https:\/\/secure.gravatar.com\/avatar\/487704f4a6dcb1afe72795093a1aaa5e5987c0bb5c3cf8dae185682ded562985?s=96&d=monsterid&r=g\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/487704f4a6dcb1afe72795093a1aaa5e5987c0bb5c3cf8dae185682ded562985?s=96&d=monsterid&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/487704f4a6dcb1afe72795093a1aaa5e5987c0bb5c3cf8dae185682ded562985?s=96&d=monsterid&r=g\",\"caption\":\"Thexyz Staff\"},\"description\":\"Thexyz staff are passionate about helping people with email and website so they can get the most out the web. Our staff includes our support team, developers and any contractors that may be willing to contribute.\",\"sameAs\":[\"https:\/\/www.thexyz.com\",\"https:\/\/x.com\/https:\/\/twitter.com\/thexyz\"]}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Sextortion scam email campaign has netted $143k in Bitcoin - Thexyz Blog","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.thexyz.com\/blog\/sextortion-scam-email-campaign-has-netted-143k-in-bitcoin\/","og_locale":"en_US","og_type":"article","og_title":"Sextortion scam email campaign has netted $143k in Bitcoin - Thexyz Blog","og_description":"There is a new email scam to watch out for. Over the last few weeks you may have received an email that tells you that your account has been hacked, that malware has been placed on your machine to capture data and that you\u2019ve been recorded watching adult content. Then comes the bitcoin extortion with […]","og_url":"https:\/\/www.thexyz.com\/blog\/sextortion-scam-email-campaign-has-netted-143k-in-bitcoin\/","og_site_name":"Thexyz Blog","article_published_time":"2018-11-13T13:14:00+00:00","article_modified_time":"2019-03-20T00:36:46+00:00","og_image":[{"width":600,"height":314,"url":"https:\/\/www.thexyz.com\/blog\/wp-content\/uploads\/thexyz-twitter-card-blank-green-spam.png","type":"image\/png"}],"author":"Thexyz Staff","twitter_card":"summary_large_image","twitter_creator":"@https:\/\/twitter.com\/thexyz","twitter_misc":{"Written by":"Thexyz Staff","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.thexyz.com\/blog\/sextortion-scam-email-campaign-has-netted-143k-in-bitcoin\/#article","isPartOf":{"@id":"https:\/\/www.thexyz.com\/blog\/sextortion-scam-email-campaign-has-netted-143k-in-bitcoin\/"},"author":{"name":"Thexyz Staff","@id":"https:\/\/www.thexyz.com\/blog\/#\/schema\/person\/29825f4c97e9354f112a842f512b7b7b"},"headline":"Sextortion scam email campaign has netted $143k in Bitcoin","datePublished":"2018-11-13T13:14:00+00:00","dateModified":"2019-03-20T00:36:46+00:00","mainEntityOfPage":{"@id":"https:\/\/www.thexyz.com\/blog\/sextortion-scam-email-campaign-has-netted-143k-in-bitcoin\/"},"wordCount":454,"commentCount":0,"image":{"@id":"https:\/\/www.thexyz.com\/blog\/sextortion-scam-email-campaign-has-netted-143k-in-bitcoin\/#primaryimage"},"thumbnailUrl":"https:\/\/www.thexyz.com\/blog\/wp-content\/uploads\/thexyz-twitter-card-blank-green-spam.png","articleSection":["Security","Spam"],"inLanguage":"en-CA","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.thexyz.com\/blog\/sextortion-scam-email-campaign-has-netted-143k-in-bitcoin\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.thexyz.com\/blog\/sextortion-scam-email-campaign-has-netted-143k-in-bitcoin\/","url":"https:\/\/www.thexyz.com\/blog\/sextortion-scam-email-campaign-has-netted-143k-in-bitcoin\/","name":"Sextortion scam email campaign has netted $143k in Bitcoin - Thexyz Blog","isPartOf":{"@id":"https:\/\/www.thexyz.com\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.thexyz.com\/blog\/sextortion-scam-email-campaign-has-netted-143k-in-bitcoin\/#primaryimage"},"image":{"@id":"https:\/\/www.thexyz.com\/blog\/sextortion-scam-email-campaign-has-netted-143k-in-bitcoin\/#primaryimage"},"thumbnailUrl":"https:\/\/www.thexyz.com\/blog\/wp-content\/uploads\/thexyz-twitter-card-blank-green-spam.png","datePublished":"2018-11-13T13:14:00+00:00","dateModified":"2019-03-20T00:36:46+00:00","author":{"@id":"https:\/\/www.thexyz.com\/blog\/#\/schema\/person\/29825f4c97e9354f112a842f512b7b7b"},"breadcrumb":{"@id":"https:\/\/www.thexyz.com\/blog\/sextortion-scam-email-campaign-has-netted-143k-in-bitcoin\/#breadcrumb"},"inLanguage":"en-CA","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.thexyz.com\/blog\/sextortion-scam-email-campaign-has-netted-143k-in-bitcoin\/"]}]},{"@type":"ImageObject","inLanguage":"en-CA","@id":"https:\/\/www.thexyz.com\/blog\/sextortion-scam-email-campaign-has-netted-143k-in-bitcoin\/#primaryimage","url":"https:\/\/www.thexyz.com\/blog\/wp-content\/uploads\/thexyz-twitter-card-blank-green-spam.png","contentUrl":"https:\/\/www.thexyz.com\/blog\/wp-content\/uploads\/thexyz-twitter-card-blank-green-spam.png","width":600,"height":314,"caption":"Email spam"},{"@type":"BreadcrumbList","@id":"https:\/\/www.thexyz.com\/blog\/sextortion-scam-email-campaign-has-netted-143k-in-bitcoin\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.thexyz.com\/blog\/"},{"@type":"ListItem","position":2,"name":"Sextortion scam email campaign has netted $143k in Bitcoin"}]},{"@type":"WebSite","@id":"https:\/\/www.thexyz.com\/blog\/#website","url":"https:\/\/www.thexyz.com\/blog\/","name":"Thexyz Blog","description":"Email and Domains","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.thexyz.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-CA"},{"@type":"Person","@id":"https:\/\/www.thexyz.com\/blog\/#\/schema\/person\/29825f4c97e9354f112a842f512b7b7b","name":"Thexyz Staff","image":{"@type":"ImageObject","inLanguage":"en-CA","@id":"https:\/\/secure.gravatar.com\/avatar\/487704f4a6dcb1afe72795093a1aaa5e5987c0bb5c3cf8dae185682ded562985?s=96&d=monsterid&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/487704f4a6dcb1afe72795093a1aaa5e5987c0bb5c3cf8dae185682ded562985?s=96&d=monsterid&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/487704f4a6dcb1afe72795093a1aaa5e5987c0bb5c3cf8dae185682ded562985?s=96&d=monsterid&r=g","caption":"Thexyz Staff"},"description":"Thexyz staff are passionate about helping people with email and website so they can get the most out the web. Our staff includes our support team, developers and any contractors that may be willing to contribute.","sameAs":["https:\/\/www.thexyz.com","https:\/\/x.com\/https:\/\/twitter.com\/thexyz"]}]}},"_links":{"self":[{"href":"https:\/\/www.thexyz.com\/blog\/wp-json\/wp\/v2\/posts\/7","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.thexyz.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.thexyz.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.thexyz.com\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.thexyz.com\/blog\/wp-json\/wp\/v2\/comments?post=7"}],"version-history":[{"count":5,"href":"https:\/\/www.thexyz.com\/blog\/wp-json\/wp\/v2\/posts\/7\/revisions"}],"predecessor-version":[{"id":981,"href":"https:\/\/www.thexyz.com\/blog\/wp-json\/wp\/v2\/posts\/7\/revisions\/981"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.thexyz.com\/blog\/wp-json\/wp\/v2\/media\/842"}],"wp:attachment":[{"href":"https:\/\/www.thexyz.com\/blog\/wp-json\/wp\/v2\/media?parent=7"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.thexyz.com\/blog\/wp-json\/wp\/v2\/categories?post=7"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.thexyz.com\/blog\/wp-json\/wp\/v2\/tags?post=7"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}