Nuspire has come across a spam email extortion campaign that is in full swing across the globe. This particular email has a subject line similar to "randomname - randompassword" (eg. janedoe - 1234) which at first glance doesn't seem out of the ordinary until you realize the name and password is something you might use currently or in the past. The body of the email is shown below (Bitcoin address is unique):
'You don’t know me and you’re thinking why you received this e mail, right?
Well, I actually placed a malware on the porn website and guess what, you visited this web site to have fun (you know what I mean). While you were watching the video, your web browser acted as a RDP (Remote Desktop) and a keylogger which provided me access to your display screen and webcam. Right after that, my software gathered all your contacts from your Messenger, Facebook account, and email account.
What exactly did I do?
I made a split-screen video. First part recorded the video you were viewing (you’ve got a fine taste haha), and next part recorded your webcam (Yep! It’s you doing nasty things!).
What should you do?
Well, I believe, $1400 is a fair price for our little secret. You’ll make the payment via Bitcoin to the below address (if you don’t know this, search “how to buy bitcoin” in Google).
BTC Address: 1Dvd7Wb72JBTbAcfTrxSJCZZuf4tsT8V72
(It is cAsE sensitive, so copy and paste it)'
It seems the attacker has scripted a reference to an older data breach which includes an email/password combo of a popular website. This particular scam will more than likely get more sophisticated and potentially reference more recent data breaches and ultimately more recent email/password dumps.
-Never send compromising images of yourself to anyone.
-Don’t open attachments from people you don’t know.
-Turn off [and/or cover] any web cameras when not in use.