IT-blogger.dk

Trussel sendt fra din egen e-mailadresse

by · Published · Updated

En ny fupmail er i omløb. En mail sendt fra din egen e-mail, hvor du trues med offentliggørelse af fortrolige oplysninger, hvis du ikke overfører et beløb til en Bitcoin konto.

Jeg har gennem tiden skrevet lidt om nogle af de spam- og fupmail jeg har modtaget. I dag modtog jeg endnu en mail, som jeg nedenunder har valgt at offentliggøre i sin fulde længe. Især fordi jeg fandt ud af at mange andre havde modtaget en lignende mail.
Af mailen fremgår at du er blevet hacket, og at beviset for dette er at denne mail er sendt fra din egen e-mailadresse. Endvidere lyder historien, at hackeren har installeret et ondsindet program som siden dengang har overvåget dig, og hvis du ikke betaler et beløb, vil der blive offentliggjort de informationer hackeren har indsamlet.
Angiveligt er der tale om billeder og videoer, der er optaget med dit eget webcam. Herudover din besøgshistorik fra din browser, alle dine e-mails og dine Facebook messenger beskeder.
Jeg får så her 48 timer til at overføre over 5000 danske kroner til en ukendt Bitcoin konto, og hvis jeg ikke gør dette vil informationerne blive offentliggjort.

Her er trusselsmailen

Her kan du læse selve trusselsmailen i sin fulde længde:

Dear user of XXX!
I am a spyware software developer.
Your account has been hacked by me in the summer of 2018.
I understand that it is hard to believe, but here is my evidence (I sent you this email from your account).
The hacking was carried out using a hardware vulnerability through which you went online (Cisco router, vulnerability CVE-2018-0296).
I went around the security system in the router, installed an exploit there.
When you went online, my exploit downloaded my malicious code (rootkit) to your device.
This is driver software, I constantly updated it, so your antivirus is silent all time.
Since then I have been following you (I can connect to your device via the VNC protocol).
That is, I can see absolutely everything that you do, view and download your files and any data to yourself.
I also have access to the camera on your device, and I periodically take photos and videos with you.
At the moment, I have harvested a solid dirt... on you...
I saved all your email and chats from your messangers. I also saved the entire history of the sites you visit.
I note that it is useless to change the passwords. My malware update passwords from your accounts every times.
I know what you like hard funs (adult sites).
Oh, yes .. I'm know your secret life, which you are hiding from everyone.
Oh my God, what are your like... I saw THIS ... Oh, you dirty naughty person ... :)
I took photos and videos of your most passionate funs with adult content, and synchronized them in real time with the image of your camera.
Believe it turned out very high quality!
So, to the business!
I'm sure you don't want to show these files and visiting history to all your contacts.
Transfer $828 to my Bitcoin cryptocurrency wallet: 19qL8vdRtk5xJcGNVk3WruuSyitVfSAy7f
Just copy and paste the wallet number when transferring.
If you do not know how to do this - ask Google.
My system automatically recognizes the translation.
As soon as the specified amount is received, all your data will be destroyed from my server, and the rootkit will be automatically removed from your system.
Do not worry, I really will delete everything, since I am 'working' with many people who have fallen into your position.
You will only have to inform your provider about the vulnerabilities in the router so that other hackers will not use it.
Since opening this letter you have 48 hours.
If funds not will be received, after the specified time has elapsed, the disk of your device will be formatted,
and from my server will automatically send email and sms to all your contacts with compromising material.
I advise you to remain prudent and not engage in nonsense (all files on my server).
Good luck!

Her er løsningen

Men hvad gør du så når du modtager sådan en mail?
For det første – det er fup! Alle og enhver kan sende en mail, så det ser ud som om den kommer fra din egen e-mailadresse. Det er der ikke noget teknisk svært i.
For det andet – det er ikke nogen god ide at betale pengene! Du har ingen garanti for at, selv hvis de havde indsamlet informationer, at det så ville blive slettet.
Med 99% sandsynlighed er der ikke tale om en hacker, men udelukkende en person som har opsnappet din e-mailadresse og prøver at skræmme dig til at betale en løsesum. Lad være med at lade dig skræmme, og slet mailen.

0 0 votes
Article Rating

Andreas Andersen

Forfatter og grundlægger af IT-blogger.dk, der har blogget om IT-emner siden 2012. Findes på Mastodon på @aphandersen@ansico.dk

Abonner
Giv besked ved
guest

0 Comments
Inline Feedbacks
View all comments
0
Would love your thoughts, please comment.x
()
x