If I spend more time on your case, the amount will be 3 times bigger. Depends on the content. So let's make it simple. You pay me $2000 USD, I delete the data, you change your password. Business as usual, use Bitcoin to make the transfer. 13gdUqbxkC2TQPmaHLuMsTatATz6jHCwkp
Panama, 2021-06-04 20:31:21
Greetings, I am sorry to inform you that your cloud storage was compromised. Let’s get the biggest elephant out of the room first. I am not a part of shady group that encrypts your data and extorts money leaving you no choice. But I HAVE copied your data. The choice is yours. Here is what happened, one of the websites where you have an account was breached. After that I got access to your password from that breach and with some advanced manipulations and bruteforce extracted your backup data. The data set that I have downloaded and parsed contains pictures, documents, contacts and more including some deleted files. I don't have much time and dedication NOW to go through all of the files, but with some fast looking I did - I am sure that you dont want some of them to be seen by other people. What I can do if you don't follow my instructions is simple. I can send from your name to your contacts the most interesting content, it's the least I can do. You may care or not, it's up to you to decide. If you decide that you don't care, I will go through all files, and who knows what more I may find more. Maybe you have some confidential business information. Or GREAT nudes and videos. If I spend more time on your case, the amount will be 3 times bigger. Depends on the content. So let's make it simple. You pay me $2000 USD, I delete the data, you change your password. Business as usual, use Bitcoin to make the transfer. 13gdUqbxkC2TQPmaHLuMsTatATz6jHCwkp Account is unique and you have some reasonable time to make the payment. Take care.
United States, 2021-06-04 21:24:15
Claims to have hacked cloud account. Threats to release files if $2,000 payment not received. No cloud data associated with this email so total BS.
United States, 2021-06-04 21:36:38
Greetings, I am sorry to inform you that your cloud storage was compromised. Let’s get the biggest elephant out of the room first. I am not a part of shady group that encrypts your data and extorts money leaving you no choice. But I HAVE copied your data. The choice is yours. Here is what happened, one of the websites where you have an account was breached. After that I got access to your password from that breach and with some advanced manipulations and bruteforce extracted your backup data. The data set that I have downloaded and parsed contains pictures, documents, contacts and more including some deleted files. I don't have much time and dedication NOW to go through all of the files, but with some fast looking I did - I am sure that you dont want some of them to be seen by other people. What I can do if you don't follow my instructions is simple. I can send from your name to your contacts the most interesting content, it's the least I can do. You may care or not, it's up to you to decide. If you decide that you don't care, I will go through all files, and who knows what more I may find more. Maybe you have some confidential business information. Or GREAT nudes and videos. If I spend more time on your case, the amount will be 3 times bigger. Depends on the content. So let's make it simple. You pay me $2000 USD, I delete the data, you change your password. Business as usual, use Bitcoin to make the transfer. 13gdUqbxkC2TQPmaHLuMsTatATz6jHCwkp Account is unique and you have some reasonable time to make the payment. Take care.
Venezuela, 2021-06-04 22:29:22
cloud storage was compromised.
United States, 2021-06-05 01:06:39
Received: from ([103.142.224.15]) for <fake [at] my.com> with MailEnable Catch-All Filter; Thu, 3 Jun 2021 18:37:28 -0700 Received: from [103.142.224.15] ([103.142.224.15]) by mailserver.ph.com with MailEnable ESMTP; Thu, 3 Jun 2021 18:37:26 -0700 Message-ID: <1EAE515295E1AD9626D9DA1D69251EAE@0QOOQHA> From: <fake [at] my.com> To: <fake [at] my.com> Subject: =?UTF-8?B?V2l0aCByZWZlcmVuY2UgdG8geW91ciBjbG91ZCBzdG9yYWdl?= Date: 4 Jun 2021 14:14:22 +0600 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_002F_01D7591C.073191D9" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2900.5931 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.5931 Return-Path: <fake [at] my.com>
United States, 2021-06-05 14:06:13
EXTORTION BY BLACKMAIL SENT IN AN EMAIL: Greetings, I am sorry to inform you that your cloud storage was compromised. Let’s get the biggest elephant out of the room first. I am not a part of shady group that encrypts your data and extorts money leaving you no choice. But I HAVE copied your data. The choice is yours. Here is what happened, one of the websites where you have an account was breached. After that I got access to your password from that breach and with some advanced manipulations and bruteforce extracted your backup data. The data set that I have downloaded and parsed contains pictures, documents, contacts and more including some deleted files. I don't have much time and dedication NOW to go through all of the files, but with some fast looking I did - I am sure that you dont want some of them to be seen by other people. What I can do if you don't follow my instructions is simple. I can send from your name to your contacts the most interesting content, it's the least I can do. You may care or not, it's up to you to decide. If you decide that you don't care, I will go through all files, and who knows what more I may find more. Maybe you have some confidential business information. Or GREAT nudes and videos. If I spend more time on your case, the amount will be 3 times bigger. Depends on the content. So let's make it simple. You pay me $2000 USD, I delete the data, you change your password. Business as usual, use Bitcoin to make the transfer. 13gdUqbxkC2TQPmaHLuMsTatATz6jHCwkp Account is unique and you have some reasonable time to make the payment. Take care.
United States, 2021-06-05 19:21:02
Greetings, I am sorry to inform you that your cloud storage was compromised. Let’s get the biggest elephant out of the room first. I am not a part of shady group that encrypts your data and extorts money leaving you no choice. But I HAVE copied your data. The choice is yours. Here is what happened, one of the websites where you have an account was breached. After that I got access to your password from that breach and with some advanced manipulations and bruteforce extracted your backup data. The data set that I have downloaded and parsed contains pictures, documents, contacts and more including some deleted files. I don't have much time and dedication NOW to go through all of the files, but with some fast looking I did - I am sure that you dont want some of them to be seen by other people. What I can do if you don't follow my instructions is simple. I can send from your name to your contacts the most interesting content, it's the least I can do. You may care or not, it's up to you to decide. If you decide that you don't care, I will go through all files, and who knows what more I may find more. Maybe you have some confidential business information. Or GREAT nudes and videos. If I spend more time on your case, the amount will be 3 times bigger. Depends on the content. So let's make it simple. You pay me $2000 USD, I delete the data, you change your password. Business as usual, use Bitcoin to make the transfer. 13gdUqbxkC2TQPmaHLuMsTatATz6jHCwkp Account is unique and you have some reasonable time to make the payment. Take care.
United States, 2021-06-06 23:26:56
Greetings, I am sorry to inform you that your cloud storage was compromised. Let’s get the biggest elephant out of the room first. I am not a part of shady group that encrypts your data and extorts money leaving you no choice. But I HAVE copied your data. The choice is yours. Here is what happened, one of the websites where you have an account was breached. After that I got access to your password from that breach and with some advanced manipulations and bruteforce extracted your backup data. The data set that I have downloaded and parsed contains pictures, documents, contacts and more including some deleted files. I don't have much time and dedication NOW to go through all of the files, but with some fast looking I did - I am sure that you dont want some of them to be seen by other people. What I can do if you don't follow my instructions is simple. I can send from your name to your contacts the most interesting content, it's the least I can do. You may care or not, it's up to you to decide. If you decide that you don't care, I will go through all files, and who knows what more I may find more. Maybe you have some confidential business information. Or GREAT nudes and videos. If I spend more time on your case, the amount will be 3 times bigger. Depends on the content. So let's make it simple. You pay me $2000 USD, I delete the data, you change your password. Business as usual, use Bitcoin to make the transfer. 13gdUqbxkC2TQPmaHLuMsTatATz6jHCwkp Account is unique and you have some reasonable time to make the payment. Take care.
Taiwan, 2021-06-07 02:58:14
Received this: Subject: With reference to your cloud storage [CAUTION: This email originated from outside of the organization. Do not click links or open any attachments unless you recognize the sender and know the content is safe.] Greetings, I am sorry to inform you that your cloud storage was compromised. Let’s get the biggest elephant out of the room first. I am not a part of shady group that encrypts your data and extorts money leaving you no choice. But I HAVE copied your data. The choice is yours. Here is what happened, one of the websites where you have an account was breached. After that I got access to your password from that breach and with some advanced manipulations and bruteforce extracted your backup data. The data set that I have downloaded and parsed contains pictures, documents, contacts and more including some deleted files. I don't have much time and dedication NOW to go through all of the files, but with some fast looking I did - I am sure that you dont want some of them to be seen by other people. What I can do if you don't follow my instructions is simple. I can send from your name to your contacts the most interesting content, it's the least I can do. You may care or not, it's up to you to decide. If you decide that you don't care, I will go through all files, and who knows what more I may find more. Maybe you have some confidential business information. Or GREAT nudes and videos. If I spend more time on your case, the amount will be 3 times bigger. Depends on the content. So let's make it simple. You pay me $2000 USD, I delete the data, you change your password. Business as usual, use Bitcoin to make the transfer. 13gdUqbxkC2TQPmaHLuMsTatATz6jHCwkp Account is unique and you have some reasonable time to make the payment. Take care.
Canada, 2021-06-07 14:27:44
Greetings, I am sorry to inform you that your cloud storage was compromised. Let’s get the biggest elephant out of the room first. I am not a part of shady group that encrypts your data and extorts money leaving you no choice. But I HAVE copied your data. The choice is yours. Here is what happened, one of the websites where you have an account was breached. After that I got access to your password from that breach and with some advanced manipulations and bruteforce extracted your backup data. The data set that I have downloaded and parsed contains pictures, documents, contacts and more including some deleted files. I don't have much time and dedication NOW to go through all of the files, but with some fast looking I did - I am sure that you dont want some of them to be seen by other people. What I can do if you don't follow my instructions is simple. I can send from your name to your contacts the most interesting content, it's the least I can do. You may care or not, it's up to you to decide. If you decide that you don't care, I will go through all files, and who knows what more I may find more. Maybe you have some confidential business information. Or GREAT nudes and videos. If I spend more time on your case, the amount will be 3 times bigger. Depends on the content. So let's make it simple. You pay me $2000 USD, I delete the data, you change your password. Business as usual, use Bitcoin to make the transfer. 13gdUqbxkC2TQPmaHLuMsTatATz6jHCwkp Account is unique and you have some reasonable time to make the payment. Take care.
United States, 2021-06-08 14:41:51
13gdUqbxkC2TQPmaHLuMsTatATz6jHCwkp
United States, 2021-06-08 23:34:27
Same message text as previous reports. Received 4 copies over several hours on 2021/06/04, relayed via different SMTP hosts in different countries. One message provided a seemingly-gibberish string as the "User Agent" SMTP header. Google finds no match for it. Possibly used by scammers for tracking?
United States, 2021-06-09 08:50:19
We received the same note reported below. Adding some additional information. This bypassed our "External" mail transport rule. There was no caution banner at the top of the email. All of the headers appeared from Office365, and were very similar to those that come from sending ourselves mail with one exception. Came from IP 200.119.224.83. We currently do not have SPF/DMARC records which likely would have prevented this. However, it is very interesting that it bypassed the O365 external mail banner.
United States, 2021-06-10 17:26:42
Compromised cloud storage scam
United States, 2021-06-14 12:25:53