LinuxQuestions.org
Latest LQ Deal: Complete CCNA, CCNP & Red Hat Certification Training Bundle
Go Back   LinuxQuestions.org > Forums > Non-*NIX Forums > General
User Name
Password
General This forum is for non-technical general discussion which can include both Linux and non-Linux topics. Have fun!

Notices


Reply
  Search this Thread
Old 12-26-2018, 11:26 AM   #1
dogpatch
Member
 
Registered: Nov 2005
Location: Central America
Distribution: Mepis, Android
Posts: 323
Blog Entries: 2

Rep: Reputation: 93
How to respond to cyber blackmail


I just received an email in my gmail inbox from a guy who calls himself 'Gordie Curtin'. As follows (password xx'd out):
Quote:
Is not "xxxxxxxx" is your password? My name is Gordie. I have the recording of your cam showing your greasy stimulating doings & video you viewed with the help of my virus which was activated on the site you visited to see the adult videos. You are actually looking appealing in the video clip.

My malware then uploaded all of your mail and Facebook contacts to me.

I'll email your recording to your friends unless you pay me 993 USD via Bit coin within the next 36 hours to the below address:
Bit coin Address: 1QAD1aSzcnbSWFkCJSs2i2hNEc1JBuXJzJ
Copy and Paste address because it is CasE SenSiTiVe.

Once you have sent the money, I will destroy your recording and every other details I have about you. If I do not get the money, I will send your video to every contact of yours. Consider regarding the humiliation you can get. Do not forget if you are in a relationship, exactly how it can affect?

If you want proof? Reply "Yes", and I'll email your video to nine of your email contacts.

Warm regards
Gordie Curtin
I do indeed recognize the password as a 'junk' password that i have used in the past on a number of sites. It may be an old gmail password, or an old facebook or skype password, none of which i have used in many years. So this criminal obviously did indeed harvest the password at some point, maybe when i was using a public computer in a cyber cafe. He does not know my name or he would have certainly used it. Nor does he know anything else about me, as i have not downloaded an adult video, and do not even have a video cam that he could have used to record me. The only time i have sat in front of a video cam would have been some years ago in a skype session using a public computer. The whole thing is a bluff; only the harvesting of the junk password is real. The email was sent six days ago, so, even were i so inclined, it would be too late to submit to his threat.

At any rate, i would welcome suggestions as to how to deal with this creep. Do i report the bit coin address? To whom? Do i call his bluff? At least, i suppose i ought to tell the folks at gmail. What do you call this? Cyber blackmail? Your thoughts, please.
 
Old 12-26-2018, 11:44 AM   #2
dugan
LQ Guru
 
Registered: Nov 2003
Location: Canada
Distribution: Slackware
Posts: 8,628

Rep: Reputation: 3630Reputation: 3630Reputation: 3630Reputation: 3630Reputation: 3630Reputation: 3630Reputation: 3630Reputation: 3630Reputation: 3630Reputation: 3630Reputation: 3630
You "respond" by trying to think about which site that you had previously used was the one that was hacked, and you change your password on that site if you haven't already.

https://www.bleepingcomputer.com/new...n-adult-sites/
https://krebsonsecurity.com/2018/07/...mment-page-24/
 
Old 12-26-2018, 11:46 AM   #3
jsbjsb001
Senior Member
 
Registered: Mar 2009
Location: Earth? I would say I hope so but I'm not so sure about that... I could just be a figment of your imagination too.
Distribution: CentOS at the time of this writing, but some others over the years too...
Posts: 2,324

Rep: Reputation: 1045Reputation: 1045Reputation: 1045Reputation: 1045Reputation: 1045Reputation: 1045Reputation: 1045Reputation: 1045
The moron is clearly hoping that you're going to fall for it, and be scared enough to pay up. Given that, I would report it to Gmail, certainly. I guess if you want to play with him, you could act like you are scared, and lead them on (like saying something like "oh, I'll send the BitCoins, please don't send the recording to my friends").

If you know that what they are saying (other than the password bit) is just nonsense, then I'd just make sure you're not using that same password anymore, then report the moron, then I'd be temped to have some of my own fun with them - at their expense.

If they honestly did actually have "a recording", like hell they would destroy it anyway - either way, you have no security that they would "destroy it".

Last edited by jsbjsb001; 12-26-2018 at 12:08 PM. Reason: I changed "Gmail" to the "the mail site" for whatever stupid reason... :doh:
 
Old 12-26-2018, 12:08 PM   #4
DavidMcCann
LQ Veteran
 
Registered: Jul 2006
Location: London
Distribution: CentOS, Xubuntu
Posts: 5,149

Rep: Reputation: 1715Reputation: 1715Reputation: 1715Reputation: 1715Reputation: 1715Reputation: 1715Reputation: 1715Reputation: 1715Reputation: 1715Reputation: 1715Reputation: 1715
I've had a similar one referring to my web cam recordings and like you I don't have a web cam! This sort of thing is very common and not worth bothering about. It's unlikely that anyone would spend the time and money on hunting him down.
 
Old 12-26-2018, 12:12 PM   #5
jsbjsb001
Senior Member
 
Registered: Mar 2009
Location: Earth? I would say I hope so but I'm not so sure about that... I could just be a figment of your imagination too.
Distribution: CentOS at the time of this writing, but some others over the years too...
Posts: 2,324

Rep: Reputation: 1045Reputation: 1045Reputation: 1045Reputation: 1045Reputation: 1045Reputation: 1045Reputation: 1045Reputation: 1045
Quote:
Originally Posted by DavidMcCann View Post
...
It's unlikely that anyone would spend the time and money on hunting him down.
True, but if Gmail knows what address the moron is using, they can block it.
 
Old 12-26-2018, 12:42 PM   #6
dogpatch
Member
 
Registered: Nov 2005
Location: Central America
Distribution: Mepis, Android
Posts: 323

Original Poster
Blog Entries: 2

Rep: Reputation: 93
Thanks, all, for your replies. I have moved the email to my gmail spam folder, and have sent gmail feedback. Perhaps they will block the address, perhaps they will do nothing.
Quote:
Originally Posted by dugan View Post
You "respond" by trying to think about which site that you had previously used was the one that was hacked, and you change your password on that site if you haven't already.

https://krebsonsecurity.com/2018/07/...mment-page-24/
Trouble is, i've used this same junk password any number of times, often as a temporary means to access some forum that i have no intentions of visting more than once. From the krebsonsecurity link, it appears that this is a quite common trick, and that nothing much can be done.

Quote:
Originally Posted by jsbjsb001 View Post
. . .then I'd be temped to have some of my own fun with them - at their expense.
Any specific suggestions?
 
Old 12-26-2018, 12:57 PM   #7
jsbjsb001
Senior Member
 
Registered: Mar 2009
Location: Earth? I would say I hope so but I'm not so sure about that... I could just be a figment of your imagination too.
Distribution: CentOS at the time of this writing, but some others over the years too...
Posts: 2,324

Rep: Reputation: 1045Reputation: 1045Reputation: 1045Reputation: 1045Reputation: 1045Reputation: 1045Reputation: 1045Reputation: 1045
Quote:
Originally Posted by dogpatch View Post
...
Any specific suggestions?
Try and get their IP address, and then pretend you have hacked their machine, then make some demands of your own.
 
Old 12-26-2018, 01:57 PM   #8
rtmistler
Moderator
 
Registered: Mar 2011
Location: MA, USA
Distribution: MINT Debian, Angstrom, SUSE, Ubuntu, Debian
Posts: 7,314
Blog Entries: 12

Rep: Reputation: 2817Reputation: 2817Reputation: 2817Reputation: 2817Reputation: 2817Reputation: 2817Reputation: 2817Reputation: 2817Reputation: 2817Reputation: 2817Reputation: 2817
Quote:
Originally Posted by DavidMcCann View Post
I've had a similar one referring to my web cam recordings and like you I don't have a web cam! This sort of thing is very common and not worth bothering about. It's unlikely that anyone would spend the time and money on hunting him down.
Unfortunately they show up on a lot of laptops, etc.


Duct or Electrical


My two favorite tapes! (OK "Running on Empty" was a fave too!)

Edit: With regards to the topic, I actually report using my email interface and delete as spam. I don't really go any further, ads and spam are unfortunate nuisances to be ignored.

Last edited by rtmistler; 12-26-2018 at 06:25 PM.
 
Old 12-26-2018, 02:20 PM   #9
dugan
LQ Guru
 
Registered: Nov 2003
Location: Canada
Distribution: Slackware
Posts: 8,628

Rep: Reputation: 3630Reputation: 3630Reputation: 3630Reputation: 3630Reputation: 3630Reputation: 3630Reputation: 3630Reputation: 3630Reputation: 3630Reputation: 3630Reputation: 3630
Quote:
Originally Posted by dogpatch View Post
Trouble is, i've used this same junk password any number of times, often as a temporary means to access some forum that i have no intentions of visting more than once.
You might want to switch to to actually-disposable email addresses (bugmenot, one minute, email, etc) for that in the future.
 
Old 12-26-2018, 04:41 PM   #10
Trihexagonal
Member
 
Registered: Jul 2017
Location: Land of 1000 Nights
Distribution: FreeBSD, OpenBSD and Solaris
Posts: 175

Rep: Reputation: 136Reputation: 136
Quote:
Originally Posted by jsbjsb001 View Post
I guess if you want to play with him, you could act like you are scared, and lead them on (like saying something like "oh, I'll send the BitCoins, please don't send the recording to my friends").

If you know that what they are saying (other than the password bit) is just nonsense, then I'd just make sure you're not using that same password anymore, then report the moron, then I'd be temped to have some of my own fun with them - at their expense.

If they honestly did actually have "a recording", like hell they would destroy it anyway - either way, you have no security that they would "destroy it".
That's what I would do. Ask if it's that "special" one of some sort you would be especially embarrassed if it became public. The more information you can find out about them the better for you and the worse for them.

If they can squeeze money out of you once do you really think they wouldn't try it twice?

Last edited by Trihexagonal; 12-26-2018 at 04:42 PM.
 
Old 12-26-2018, 04:58 PM   #11
scasey
Senior Member
 
Registered: Feb 2013
Location: Tucson, AZ, USA
Distribution: CentOS 7.5
Posts: 2,315

Rep: Reputation: 757Reputation: 757Reputation: 757Reputation: 757Reputation: 757Reputation: 757Reputation: 757
My short answer to the thread title...don't.

Personally, I report such email as I would any UCE to the delivering ISP, but do not respond to the sender in any way. There's no difference between these emails and those from Nigerian princes.

Last edited by scasey; 12-26-2018 at 05:01 PM.
 
Old 12-26-2018, 06:08 PM   #12
Habitual
LQ Veteran
 
Registered: Jan 2011
Location: Yawnstown, Ohio
Distribution: Mojave
Posts: 9,364
Blog Entries: 37

Rep: Reputation: Disabled
Quote:
Originally Posted by dogpatch View Post
At any rate, i would welcome suggestions as to how to deal with this creep. Do i report the bit coin address? To whom? Do i call his bluff? At least, i suppose i ought to tell the folks at gmail. What do you call this? Cyber blackmail? Your thoughts, please.
https://haveibeenpwned.com and check that gmail address.
Then:

https://duckduckgo.com/?q=porn+blackmail+bitcoin

and decide the appropriate, measured response, if any.
 
Old 12-26-2018, 06:08 PM   #13
cantab
Member
 
Registered: Oct 2009
Location: England
Distribution: KDE Neon, Ubuntu, Debian.
Posts: 527

Rep: Reputation: 106Reputation: 106
Ignore, and change the passwords on any sites you used that password on, and stop using the same password on multiple sites (get a good password manager).

There's been a wave of these scams lately. I can see how if the password was current they'd be a lot more convincing. The latest variant I encountered included, rather than my password, part of my phone number! Made me do a double take until I remembered that many 2FA or password reset systems will show a partial phone number and ask you to complete it in order to send a recovery text - meaning that anyone with your email address can get the partial number.
 
Old 12-27-2018, 09:59 AM   #14
Lysander666
Senior Member
 
Registered: Apr 2017
Location: The Underearth
Distribution: Slackware
Posts: 1,122
Blog Entries: 3

Rep: Reputation: 1048Reputation: 1048Reputation: 1048Reputation: 1048Reputation: 1048Reputation: 1048Reputation: 1048Reputation: 1048
Don't do anything, it's just a scam. See here:

https://forums.overclockers.co.uk/th...mail.18841050/

Last edited by Lysander666; 12-27-2018 at 10:01 AM.
 
Old 12-27-2018, 12:03 PM   #15
DavidMcCann
LQ Veteran
 
Registered: Jul 2006
Location: London
Distribution: CentOS, Xubuntu
Posts: 5,149

Rep: Reputation: 1715Reputation: 1715Reputation: 1715Reputation: 1715Reputation: 1715Reputation: 1715Reputation: 1715Reputation: 1715Reputation: 1715Reputation: 1715Reputation: 1715
One more thought. Have you enabled the firewall? Check with
sudo ufw status
and enable if necessary with
sudo ufw enable
 
  


Reply

Tags
blackmail, facebook, gmail, malware, skype


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
LXer: Microsoft is Googlebombing “Linux” This Week in Order to Sell Proprietary Software That Does Not Run on GNU/Linux (and While Blackmail LXer Syndicated Linux News 0 07-20-2017 06:12 AM
LXer: Microsoft's Patent Blackmail Against Samsung Part of a Strategy of Divide and Conquer Against Android LXer Syndicated Linux News 0 03-31-2017 02:30 PM
LXer: Microsoft Has Not Managed to Blackmail Huawei Over Android and GNU/Linux, But Its Trolls/Satellites Are Trying LXer Syndicated Linux News 0 02-14-2017 03:24 PM
LXer: Microsoft Continues to Use Software Patents to Extort/Blackmail Even More Companies That Use Linux, Forcing/Coercing Them Into Preinst LXer Syndicated Linux News 1 02-10-2016 11:29 PM

LinuxQuestions.org > Forums > Non-*NIX Forums > General

All times are GMT -5. The time now is 06:11 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration