Hackers Made Half a Million Dollars Pretending They Watched You Watch Porn

移动互联 2018-08-22 阅读原文

Sometimes scammers just need to say
they hacked you to pull in the cash. Since July, cybersecurity researchers, journalists
and victims, have seen a spike in extortion letters and emails demanding hefty sums of bitcoin. The twist is that the scammers send the victim one of their own passwords, likely gleaned from an already public breach, and use that as an intimidation tactic. The blackmailers then claim they have hacked into the target’s webcam while they were watching pornography. Pay up, or they’ll release the (made-up) video.

Now, researchers have found this scam has been pretty profitable, especially considering the low-level of work involved on the fraudsters’ part.

“What is worrying is that, scammers were able to siphon off [$500,000], from old passwords dumps, with very little effort,” Suman Kar, CEO of cybersecurity firm Banbreach, told Motherboard in an online chat.

In July, cybersecurity journalist Brian Krebs reported on the new wave
of sextortion emails.

“I’m aware that [victim’s password] is your password,” one part of an example email Krebs published reads. “First part recorded the video you were viewing (you’ve got a fine taste haha), and next part recorded your webcam (Yep! It’s you doing nasty things!),” the version Krebs published adds, before demanding the victim sends $1,400 in bitcoin to a specific bitcoin address.

It’s an enticing, if not devilish, proposition. Banbreach looked at around 770 wallets in total, according to a spreadsheet the company shared with Motherboard. The majority of those, around 540, did not receive any funds. But the remaining ~230 had over 1,000 transactions, receiving a total of around 70.8 BTC.

This figure is also likely only a conservative estimate, considering Banbreach’s methodology would not have captured all, or perhaps even the majority, of sextortion emails. Kar said Banbreach collected different bitcoin addresses used in this style of extortion by scraping comments on related media coverage, and picking them out from journalists’ articles. Kar said the company also fielded reports from victims in India, where scammers appear to be targeting at the moment in particular.

“$1000 is a lot of money for the average Indian,” Kar said.

Banbreach believes some of the passwords used to trick victims came from the LinkedIn and Anti-Public Combo list data breaches, the latter being a large collection of various data caches
from multiple sources. Those two breaches turn up when entering sextortion victims’ email addresses into breach notification site Have I Been Pwned, Banbreach said in a write-up of its research provided to Motherboard. However, it is still difficult to fully determine where a password did ultimately come from, the company added.

Motherboard

责编内容by:Motherboard阅读原文】。感谢您的支持!

您可能感兴趣的

是“谁”在影响比特币和竞争币的价格... 近来,各种数字加密货币的价格出现了较大的波动 ——经历了暴涨,又迎来暴跌……就拿比特币来说,今年以来价格一直高涨直逼 3000 美元,但上月末却深跌 15%;而被称为第二大数字加密货币的以太币(ETH)的价格则在飞奔到最高点 373 美元后,降至现在的 200 美元。 以太坊最近一年的价...
Naspers’-backed Bitcoin platform Luno raises $9m i... Luno today announced their expansion into 35 new markets across Europe, and a USD9m Series B funding round, led by London-based Balderton Capital ...
比特币隔离见证正式激活 8月23日,美国东部时间晚上10:00晚,Block 481822隔离见证终于激活,现在已经在比特币网络上。 隔离见证是软件开发商Peter Wuille在2015年香港规模研讨会上介绍的一个想法。该协议旨在从事务哈希中重新定位证人输入,这将理论上有助于延展性并创建更多的块大小空...
《币周刊》第152期:美国证监会宣布证券法适用于ICO;比特币即将分叉出BCC... 07.30 星期天: 美国华盛顿正式监管比特币交易所,P网与B网宣布停止提供服务 早在今年4月份,华盛顿政客达成一致意见并确定了针对比特币交易所的监管规定。这些监管指导方针和规定如今正式生效。立法者在参议院和众议院推动通过了Senate Bill 5031,并且已经获得华...
摩根大通CEO:比特币是骗局 员工交易将开除... 摩根大通的CEO杰米·戴蒙(Jamie Dimon)周二对比特币“落井下石”,称这种加密电子货币为“骗局”。评论传出后比特币价格下跌2%。著名金融博客零对冲发推文讽刺称,从戴蒙两年前批评比特币至今,比特币价格已经涨了1000%。 戴蒙在巴克莱组织的银行业界会议上谈...