itb-au logo
Story image

Scammers targeting more countries in sextortion scam - ESET

16 Apr 2019

ESET is continuing to warn users of fraudulent e-mail messages that seek to extort money, especially from people watching online pornographic videos.

The attacker in the email claims they have hacked the intended victim's device, and have recorded the person while watching pornographic content.

The email also asserts that the video has not only captured the user's behaviour in front of the webcam, but also which videos were played. 

"In order to conceal the compromising materials, the attacker asks for a sum of around 0.43-0.45 Bitcoin, ($2,794 AUD), however we've already seen other messages asking for other amounts," says ESET security awareness specialist Ondrej Kubovic.

"The victim is directed to pay within 48 hours of opening the email or the cybercriminal threatens to send the incriminating video to all the contacts he/she has managed to steal from the infected device," says Kubovic. 

In the previous waves detected by ESET, these sextortion scam emails were mostly in English, however in the last few days, we have seen multiple new localisations focusing on Australia, United States, United Kingdom, Germany, France, Spain, Czech Republic and Russia. 

ESET is sharing news of this scam as a warning to the public.

The scam is an attempt at extortion, and the attackers do not really have any such video of the victim. ESET protects its users from similar threats through its antispam technology. 
Similar e-mail scams are nothing new and have been appearing for years.

This type of scheme, where the attacker usually asks the victim for a cash ransom is called sextortion.

Sextortion can also happen when an attacker has real photographs of a victim, for example, from an intimate conversation via a fake profile.

It is particularly dangerous if the victim is a child. 

What makes the current scam different from its predecessors is the effectivity of the social engineering involved, mainly thanks to its focus on users who secretly watch pornography on their devices.

Some of the previous versions even made the (scam) email appear as if it came "from the victim’s own email address", which supported the attacker’s claims about the hacking of the device.

In an even older version of this scam, the attacker claimed to know the victim's password, including it in the body of an email as evidence.

In this case, the attacker probably obtained the data from some of the large data leaks which included billions of authentic login names and passwords.

If a user has ever actually used the password mentioned in the scam, he can be scared into making a hasty payment. 
The scam is also effective due to the sensitive theme of pornography.

Many users secretly visit pages with pornographic content and the idea that their family, acquaintances, colleagues or business partners may learn about their behaviour is extremely unpleasant. 

"If you find such an email in your mailbox, act slowly, deliberately and avoid rash steps. First of all, do not reply to the scam, do not download its attachments, do not click on embedded lines, and certainly do not send money to attackers,” says Kubovic.

“If an attacker lists your actual password, I recommend changing it and activating two-factor authentication on that service.

“Indeed, in many cases, attackers actually test the login information and use the hacked account at least to spread their messages. Also, scan your device with reliable security software that can detect real infections and other issues, such as the misuse of the built-in webcam.”

Story image
Interview: Barracuda decision-makers discuss public cloud security
Last month, Barracuda released a report outlining the security barriers organisations must overcome to adopt the public cloud, as studies reveal that security was the top concern for such organisations.More
Story image
VMware launches application consolidation platform for enterprise
VMware says its vSphere 7 delivers services for the modern hybrid cloud, powering the compute environments for modern applications, AI and machine learning, and business-critical applications.More
Story image
COVID-19: Adobe unveils index to track changes in consumer behaviour
In an effort to track and analyse the ways in which the pandemic is changing retail behaviour, Adobe has revealed its Digital Economy Index, which analyses trillions of online transactions across 100 million product SKUs in 18 product categories. More
Story image
How our publisher harnessed machine learning to overhaul Techday websites
Our publisher, Sean Mitchell, went to CoderSchool in Ho Chi Minh City to learn how to implement machine learning into Techday.More
Story image
Pluralsight offers 7,000+ online tech courses free for April
In a bid to encourage online learners to stay home and upskill during COVID-19 lockdowns, Pluralsight, the enterprise technology skills platform, has made its 7,000+ courses available for free for the month of April.More
Link image
How to protect your workforce from COVID-19 cyber attacks
Opportunistic hackers are using the coronavirus to launch large-scale spear phishing campaigns, amongst other threats. Here's how to fight back.More