Ransomware
Abuser: Ransomware phishing email
Ransomware phishing email.
New Zealand, 2021-07-13 00:24:44
Abuse to Bitcoin address
17U1BaXwyuxeX2sZyMjC25G8skrZ8mtTdz
New Zealand, 2021-07-13 00:24:44
Blackmail scam
Abuser: phishing campaign
I have no intention of destroying your reputation or life, but only if I get paid. I don’t care about you personally, that's why you can be sure that all files I have and software on your device will be deleted immediately after I receive the transfer. I only care about getting paid. My modest consulting fee is 1650 US Dollars transferred in Bitcoin. Exchange rate at the time of the transfer. You need to send that amount to this wallet: 17U1BaXwyuxeX2sZyMjC25G8skrZ8mtTdz
Malaysia, 2021-07-13 01:26:25
Ransomware
Abuser: ransom
I have no intention of destroying your reputation or life, but only if I get paid. I don’t care about you personally, that's why you can be sure that all files I have and software on your device will be deleted immediately after I receive the transfer. I only care about getting paid. My modest consulting fee is 1650 US Dollars transferred in Bitcoin. Exchange rate at the time of the transfer. You need to send that amount to this wallet: 17U1BaXwyuxeX2sZyMjC25G8skrZ8mtTdz
Taiwan, 2021-07-13 05:47:59
Sextortion
Abuser: Subhuman shit stain
Yet another subhuman shot stain trying to extort people with lies. Every time I get one of these things I hope the scammer dies.
Canada, 2021-07-13 07:49:26
Blackmail scam
Abuser: norton antispam (important updates)
The emails say they hacked into your computer and recorded visiting adult websites. They threaten to distribute the video to your friends and family within hours, unless you pay into their Bitcoin account.
Philippines, 2021-07-13 08:35:59
Ransomware
Abuser: atl4mhob16.registeredsite.com, jax4mhib12.registeredsite.com (8.14.4/8.14.4) ESMTP id 16C7v7h8033005
4am July 12, rec'd threatening email to our client business addy on our public website with our same address in the sent from window. ESL. States software installed via opened email months ago infected device has been collecting personal data, wants "consulting fee" to above Bitcoin wallet in 2 biz days, to NOT send sensitive personal data/photos to contacts. From raw email: "Received: (qmail 12557 invoked by uid 0); 12 Jul 2021 07:57:11 -0000 Received: from unknown (HELO jax4mhib12.registeredsite.com) (64.69.222.22) by 0 with ESMTPS (DHE-RSA-AES256-GCM-SHA384 encrypted); 12 Jul 2021 07:57:11 -0000 Received: from atl4mhob16.registeredsite.com (atl4mhob16.registeredsite.com [209.17.115.109]) by jax4mhib12.registeredsite.com (8.14.4/8.14.4) with ESMTP id 16C7v7h8033005 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=FAIL) XXXXXX Received: from mail.hostingplatform.com ([10.30.71.70]) by atl4mhob16.registeredsite.com (8.14.4/8.14.4) with ESMTP id 16C7v4kP000447 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=FAIL) Received: (qmail 40044 invoked by uid 78); 12 Jul 2021 07:57:04 -0000 Delivered-To: XXXXXXX (redacted) Received: (qmail 40036 invoked by uid 0); 12 Jul 2021 07:57:04 -0000 Received: from unknown (HELO atl4mhib62.registeredsite.com) (209.17.115.197) by 0 with ESMTPS (DHE-RSA-AES256-GCM-SHA384 encrypted); 12 Jul 2021 07:57:04 -0000 Received: from 119.93.81.150.static.pldt.net (119.93.81.150.static.pldt.net [119.93.81.150] (may be forged)) by atl4mhib62.registeredsite.com (8.14.4/8.14.4) with ESMTP id 16C7uxqp029095 Message-ID: <760143824616080152365397 Subject: =?UTF-8?B?SW1wb3J0YW50IFVwZGF0ZXM=?= Date: 12 Jul 2021 22:20:49 +0700 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="---97C27646A723F297C27646A723F297C2" X-Mailer: Odhwqpv xihjlg
United States, 2021-07-13 10:02:16
Ransomware
Abuser: N/A
I am sorry to inform you that your device was compromised. I'll explain what led to all of this. I have used a Zero Day vulnerability with a special code to infect your device through a website. This is a complicated software that requires precise skills that I have. It works as a chain with specially crafted and unique code and that’s why this type of an attack can go undetected. You only need one not patched vulnerability to be infected, and unfortunately for you – it works that simple. You were not targeted specifically, but just became one of the quite a few unlucky people who got hacked that day. All of this happened a few month ago. So I’ve had time to collect information on you. I think you already know what is going to happen next. During that time, my software was quietly collecting information about your habits, websites that you visit, searches you do, texts you send. There is more to it, but I have listed a few reasons for you to understand how serious this is. For you to clearly understand, my software controlled your camera and microphone as well and it was impossible for you to know about it. It was just about right timing for me to get you privacy violated. I’ve been waiting enough and have decided that it’s time to put an end to this. So here is my offer. I need a consulting fee to delete the media content I have been collecting. Your privacy stays untouched, if I get paid. Otherwise, I will leak the most damaging content to your contacts and post it to a public tube for perverts to explore. I understand how damaging this will be for you, and amount is not that big for you to keep your privacy. Please don't blame me – we all have different ways of making a living.
United Kingdom, 2021-07-13 12:41:17
Sextortion
Abuser: Idiot Scammer
Fuck off and die ignorant lying scammer
Canada, 2021-07-13 12:41:34
Blackmail scam
Abuser: Zero Day(?)
I'll explain what led to all of this. I have used a Zero Day vulnerability with a special code to infect your device through a website. This is a complicated software that requires precise skills that I have. It works as a chain with specially crafted and unique code and that’s why this type of an attack can go undetected. You only need one not patched vulnerability to be infected, and unfortunately for you – it works that simple. there is more... Just trying not to laugh.
United States, 2021-07-13 16:00:21
Sextortion
Abuser: spoofed sender
generic sextortion - "I have video of you watching porn" type
United States, 2021-07-13 16:05:59
Sextortion
Abuser: spoofed
Apparently our printer with a generic email address here in the office has been watching porn again....
United States, 2021-07-13 18:19:12
Blackmail scam
Abuser: ransom
Blackmail email
United States, 2021-07-13 19:36:26
Ransomware
Abuser: ransomware
I am sorry to inform you that your device was compromised. I'll esplain what led to all of this. I have used a Zero Day vulnerability with a special code to infect your device through a website... My modest consulting fee is 1650 US Dollars transferred in Bitcoin. Exchange rate at the time of transfer. You need to send that amount to this wallet: 17U1BaXwyuxeX2sZyMjC25G8skrZ8mtTdz
Canada, 2021-07-13 22:43:52
Blackmail scam
Abuser: 197.211.59.69
recieved blackmail attempt from above server.
United States, 2021-07-13 22:59:38
Ransomware
Abuser: atl4mhob16.registeredsite.com HELO atl4mhib62.registeredsite.com
Same threatening email as posted here. They didn't get much that'd titillate perverts. I'm 70 and keep a folded posted over my camera with it off in control panel so as not to accidently end up on zoom in curlers! I always use aliases for vendor sites that don't require money and shave 10 yr off my birthday. I'm into my dog and other goofy seniors. Haha. I figure putting stuff on the cloud makes it vulnerable to storms. It's like openin' your front door to a hurricane.
United States, 2021-07-13 23:21:57