Never use the same password for different sites!
Добавлено: 26 ноя 2018, 22:57
From this theme.
Due to the importance of the theme in the above post «Scam email: "My nickname in darknet ..., I hacked this mailbox ..."», i decided translate one into English.
I apologize for my not perfect english, I'm in a bit of a hurry ))
So..
From the middle of summer 2018 there is massive email extortion scam attack.
Many of you could receive a letter, in which some hacker claimed:
How did they get your password?
Your password has been leaked through a data breach in some website in last 1–10 years.
Never use the same password for different sites/accounts!
There is no password in the letter, but the letter's "From" head is my email!
The letter was not sent from your mailbox (look in «Sent» folder — 99.9999 % there is no one)! Because it's not a problem to fake "From" head!
I made a little investigation
In addition to the banal extortion of money with a scary letter, the hackers seem to have decided to head the attacks in all directions!
They rely on the fact that many people don’t understand that they are been cheated (that receiving such a letter doesn’t mean that their computer is hacked), and many don’t even know what the Bitcoin wallet is.
Hackers have created a network of sites on which they offer to download a «Removal tool» that will remove the "virus" of the type 1EZS92K4…PNF5idPE62e9XY !!!
So victim begin googling bitcoin wallets from the letters: "1FHPbKHcSx9CaXJzDpLoXG733ipQ77UNx9", "1D1DZAac5chXcvULdRAk8nbxB5HWWbffwc", "19D67Tgb3neJiTHd8pZDEBYmUn2qSjxEeB" and hackers' nicknames: "rockwell79", "vance94", "harold18", "erwin14" etc... And get on these sites, where they are offered as a means of salvation to download and install a “Removal tool”. There are whole instructions on how to remove/disable antivirus on your computer before installing their tool (program) so that it does not interfere with the installation!
Here, hastily, with a couple of such sites I collected the numbers of Bitcoin wallets, which call out there a “virus” that can be removed from the computer by downloading and installing their “Removal tool”:
Due to the importance of the theme in the above post «Scam email: "My nickname in darknet ..., I hacked this mailbox ..."», i decided translate one into English.
I apologize for my not perfect english, I'm in a bit of a hurry ))
So..
From the middle of summer 2018 there is massive email extortion scam attack.
Many of you could receive a letter, in which some hacker claimed:
I hacked this mailbox more than six months ago,
through it I infected your operating system with a virus (trojan) created by me and have been monitoring you for a long time.
So, your password from (here will be your real email) is (here will be some familiar password to you, at worst - from this email).
Etc...
Send the above amount on my BTC wallet (bitcoin): xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
Etc...
In a nutshell
How did they get your password?
Your password has been leaked through a data breach in some website in last 1–10 years.
Never use the same password for different sites/accounts!
There is no password in the letter, but the letter's "From" head is my email!
The letter was not sent from your mailbox (look in «Sent» folder — 99.9999 % there is no one)! Because it's not a problem to fake "From" head!
And be warned
I made a little investigation
In addition to the banal extortion of money with a scary letter, the hackers seem to have decided to head the attacks in all directions!
They rely on the fact that many people don’t understand that they are been cheated (that receiving such a letter doesn’t mean that their computer is hacked), and many don’t even know what the Bitcoin wallet is.
Hackers have created a network of sites on which they offer to download a «Removal tool» that will remove the "virus" of the type 1EZS92K4…PNF5idPE62e9XY !!!
So victim begin googling bitcoin wallets from the letters: "1FHPbKHcSx9CaXJzDpLoXG733ipQ77UNx9", "1D1DZAac5chXcvULdRAk8nbxB5HWWbffwc", "19D67Tgb3neJiTHd8pZDEBYmUn2qSjxEeB" and hackers' nicknames: "rockwell79", "vance94", "harold18", "erwin14" etc... And get on these sites, where they are offered as a means of salvation to download and install a “Removal tool”. There are whole instructions on how to remove/disable antivirus on your computer before installing their tool (program) so that it does not interfere with the installation!
Here, hastily, with a couple of such sites I collected the numbers of Bitcoin wallets, which call out there a “virus” that can be removed from the computer by downloading and installing their “Removal tool”:
- 1FgfdebSqbXRciP2DXKJyqPSffX3Sx57RF
- 18YDAf11psBJSavARQCwysE7E89zSEMfGG
- 1nxnt72qfmhpzdffueqrycypeuzyr6lmgh
- 1FHPbKHcSx9CaXJzDpLoXG733ipQ77UNx9
- 1D1DZAac5chXcvULdRAk8nbxB5HWWbffwc
- 19D67Tgb3neJiTHd8pZDEBYmUn2qSjxEeB
- 1g93wr2ldzd2euj92epbmgzz2zpydrwu4g
- 1MN7A7QqQaAVoxV4zdjdrnEHXmjhzcQ4Bq
- 1EZS92K4xJbymDLwG4F7PNF5idPE62e9XY