‘This account was recently hacked!’ sextortion email scam

This account was recently hacked!

A new sextortion email scam campaign sends targets an email message sent from their own account that says “This account was recently hacked!” and “Modify the pswd right this moment!”

The email message claims that a hacker was able to hack your email account and send you an email message from your own hacked account.

The message further states that while you were viewing adult videos your browser began to function as a remote control with a keylogger which provided the hacker access to your desktop and network camera. With access to your desktop and camera, the hacker was able to intercept your password and record a video of you while you were watching an adult video.

Here’s an example of the email message (please note that an email message you receive may be different):

This account was recently hacked! Modify the pswd right this moment!
You do not heard about me and you may be certainly surprised for what reason you are reading this message, proper?
I’mhacker who burstyour emailand systemnot so long ago.
Don’t attempt to talk to me or try to find me, in fact it’s hopeless, since I forwarded you a letter from YOUR own hacked account.
I started spyware to the adult vids (porn) website and guess you visited this website to enjoy it (you understand what I want to say).
Whilst you were taking a look at films, your internet browser began functioning as a RDP (Remote Control) with a keylogger which provided me access to your desktop and network camera.
Next step, my software programgotall info.
You typed passwords on the web services you visited, I intercepted them.
Surely, you could possibly change them, or have already modified them.
But it really does not matter, my spyware updates it every 5 minutes.
What did I do?
I generated a reserve copy of your system. Of each file and contact lists.
I created a dual-screen movie. The 1st section displays the video you had been observing (you’ve a very good taste, ahah…), and the 2nd part displays the video from your own camera.
What exactly should you do?
Clearly, I believe, 1000 USD is basically a inexpensive price for this very little riddle. You’ll do the deposit by bitcoins (in case you don’t know this, search “how to purchase bitcoin” in Google).
My bitcoin wallet address:
(It is cAsE sensitive, so copy and paste it).
You will have only 48 hours in order to make the payment. (I have an unique pixel to this message, and from now I understand that you have read this email).
To monitorthe reading of a messageand the activityinside it, I set upa Facebook pixel. Thanks to them. (The stuff thatcan be usedfor the authorities may helpus.)If I do not get bitcoins, I’ll undoubtedly send your video to each of your contacts, such as relatives, co-workers, and so forth?

As you can see this email message may be frightening to some. The message states to have a copy of your system and every file on your computer, as well as videos of you while you were watching adult videos online. The message then insists that you pay a certain amount of Bitcoin within 48 hours.

The message is part of a scam designed to scare you into making an unnecessary payment. If you received the email message it does not mean that malware is on your computer or that anyone sent you an email message from inside your own account. Also, you were not recorded through your device’s camera while viewing adult videos; Even if you have never viewed an adult video you will still receive the same message.

The downside to receiving such a message could possibly mean that information such as your email address and password, full name, and telephone number were leaked online somewhere. This typically happens following a breach that occurs on a third-party site such as Adobe, Experian, and Yahoo.

To locate which breach your information may have been leaked from go to https://haveibeenpwned.com/ and submit your email address to receive a free detailed analysis.

Since your account information may have been leaked online it is strongly advised to change your password immediately to avoid unwanted access. Also, change the password to other accounts you may use for safe measure.

We recommend that you utilize these best practices when making a new secure password:

  • Do not reuse the same password for multiple accounts. Use unique passwords wherever possible.
  • Use strong passwords with numbers, letters, and special characters such as !@$#.
  • Use two-factor authentication to add an extra layer of security along with your password.
  • Use a reputable password manager if you have trouble remembering multiple passwords.

Sean Doyle

Sean Doyle is a tech author and engineer with over 20 years of experience in cybersecurity, privacy, malware, Google Analytics, online marketing, and other topics. Sean's content has been featured in numerous publications.