I received an email showing me one of my passwords and that my computer had been compromised. They say they’re going to release my private information and a video they took of me with my computer’s webcam unless I pay in Bitcoin. What should I do?
This question was answered on October 17, 2019. Much of the information contained herein may have changed since posting.
This is a long-running variation of what we call a ‘sextortion’ scam with claims that they have captured you in a sex act of some sort.
They’ll generally claim that they gained access to your computer through malware and had full access to spy on you using your own webcam and gather up all your private data. They them claim they removed the malware when they were done so there would be no trace that they were ever there.
They add an element of stress to the scam by saying that you have 3 days to figure out how to pay them and that they have access to your email account, so they’ll know that you have read the message.
There was a huge increase in extortion-based scams in 2018 according to the FBI Internet Crime Complaint Center, because they are generating lots of money for the scammers.
The scarier they can make the situation sound, the more likely the victim will act hastily. You can see an example of this type of scam at: http://bit.ly/2JeRdIb
They Have My Password!
They tend to start the message saying I know one of your passwords, which they include to try to grab your attention right away.
If you’re the type of user that tends to use the same password on lots of sites, it can be scary to see that they have a valid password and perhaps they have done what they say they’ve done.
The reality is that they simply made use of password data dumps that are plentiful on various nefarious websites, which cross-reference the stolen password with an email addresses - this is how you became a target.
Scammers know how common it is to use the same password, so they’re simply playing the odds that some small percentage of those that get the message will believe them because it’s a password the victim is currently using.
You can quickly check to see how many of the publicly known breaches exposed your password and email address at sites like https://haveibeenpwned.com.
What To Do
The first thing to know is that none of what is in the email is true, it’s simply a very cleverly constructed scam message.
In many cases the password that they include is an old one that you haven’t used in years, but if it is a password you’re currently using, you should immediately change it on each and every website that you are using it on.
This is just another clear reason why it’s critical to always use long, unique passwords on each of your online services and the only way to manage that is with some form of password manager. Whether you write them down and keep them in a secure place or use a service such as LastPass (http://bit.ly/33GsaoZ), 1Password (http://bit.ly/33HrAY9) or Dashlane (http://bit.ly/2qnJq46), it’s all better than using the same password on multiple sites.
About the author
Posted by Ken Colburn of Data Doctors on October 17, 2019