Have I been hacked? (Update: No, it's a scam!)

gramma

I received this last night:

Hello,

I’m writing this from your own Microsoft account, which I’ve hacked into. I’ve been watching you for quite some time, and I know everything about you. You might think this is a joke, but I assure you, it’s not.

You have been careless online, and now you’re paying the price. I’ve gained access to all of your devices, your camera, and microphone. Every time you thought no one was watching – I was.

And I’ve seen everything.

What I have:

• Private moments – I’ve recorded videos of you when you were alone, engaging in very personal, private activities.
• Your browsing history – I know the kind of websites you’ve been visiting, and I’ve saved everything.
• Your private chats – Every conversation, every secret, is now in my hands.

But the worst part? The videos.

I have several videos of you. I know exactly what you were doing, and it’s something you would never want anyone to see. You can try to deny it, but I have evidence, and it will destroy you.

If you don’t want these videos to be sent to your family, friends, co-workers, and everyone you know, I suggest you pay attention. I’m giving you 48 hours to comply with my instructions.

Here’s what I want:

I need $1200 in Litecoin (LTC). This is the only way to stop me. Once I receive the payment, I will:

• Delete all the videos I’ve recorded of you.
• Remove the spyware from all your devices.
• Disappear from your life forever.

But if you choose not to comply, you won’t be able to stop the destruction that will follow.

I will send the videos to everyone you know:

• Your family members
• Your colleagues at work
• Your friends on social media
• Your email contacts

There will be no place for you to hide. Once the videos are out, your reputation will be shattered. You will lose everything.

You have no other option but to act fast. I’m giving you one last chance to save yourself. Here’s what you need to do:

1. Buy Litecoin from any exchange – I’m sure you can figure it out.
2. Send $1200 to my wallet: ***************
3. Once I receive the payment, everything will be deleted. Otherwise, I will send those videos out, and your life will never be the same again.

Don’t even think about contacting the police. I’m watching everything you do, and I’ll know if you try to run. The moment you make a move, I will send the videos.

If you try to destroy your devices or erase any of my files, it’s pointless. I’m already in control.

You have exactly 48 hours. After that, the countdown begins, and there’s no going back.

Good luck. I hope you make the right decision before it’s too late.

P.S. Litecoin transactions are anonymous, so there’s no way to trace me. Once you make the payment, I’ll vanish. But if you don’t act, your secrets will be exposed to everyone you know.

Gjoksi

Hello.

First, scan (and disinfect, if needed) your PC for malware with System Scan:

https://www.bitdefender.com/consumer/support/answer/1477/

Next, scan (and disinfect, if needed) your PC for malware with Rescue Environment:

https://www.bitdefender.com/consumer/support/answer/29132/

Finally, scan your PC for ransomware with Ransomware Recognition Tool:

https://www.bitdefender.com/en-us/blog/labs/bitdefender-ransomware-recognition-tool

and see if you can get the appropriate decryption tool, if it exists.

Regards.

Scott

Hi @gramma

After you've done the above, you can run these two independent scans, just to get a second opinion apart from Bitdefender.

https://www.eset.com/afr/online-scanner/

https://support.norton.com/sp/en/us/home/current/solutions/kb20100824120155EN

In my opinion, what was mentioned was so vague, it could be sent to 100's - 1,000s of other people as well, a phishing attempt to scam money from you out of fear. There was nothing specific, just generalities. If I would have received it, would have really made me even more suspicious of it's authenticity as the camera on my notebook is closed, and I don't have one on my tower PC.

With ransomware you usually get a desktop warning pop-up informing you that your files have been encrypted, and the need to pay them to unencrypt them.

Did it come in your email or was it a desktop pop-up? If it was from a email do not reply back, as that would be confirmation for them that you exist. They didn't even use the words your "Windows PC" (only Microsoft), and how do they, would they know your co workers (colleagues at work), who they are?! Think it through.

Kind regards.

Bonfire9911

Also, this is a common scam email that is just a bluff. Because the attacker claimed to be able to access your account, check your Microsoft account activities to see if there have been any successful logins from unexpected browsers/locations:

https://account.live.com/Activity

Flexx

To add here, this is a sextortion scam and a complete fake. The scammer is trying to scare you into paying them, but they do not have access to your account, devices, or any private videos. They are sending this to many people, hoping that someone will panic and send money.

What You Should Do:

1. Do Not Pay – This is a scam. The scammer has nothing on you.
2. Verify your Microsoft account activity: Review your recent Microsoft account activity to ensure there are no unauthorized logins. For more information, follow this link: https://support.microsoft.com/en-us/account-billing/check-the-recent-sign-in-activity-for-your-microsoft-account-5b3cfb8e-70b3-2bd6-9a56-a50177863357
3. Change Your Microsoft Account Password – Just in case, change your password and enable two-factor authentication (2FA) for extra security.
4. Run a Security Check – Scan your devices for malware using Bitdefender.
5. Ignore and Delete the Email – The scammer is bluffing. If you reply, they will know they reached a real person and might keep harassing you.
6. Report the Email – If possible, report it as phishing or scam in your email provider.
7. Check for Data Breaches – Visit https://haveibeenpwned.com/ and enter your email to see if your credentials were leaked in a data breach.
8. Report the scam: Report the email to Microsoft as phishing and to your local cybercrime department.

Why You Shouldn’t Worry:

• The scammer is using a generic, copy-paste message sent to many people.
• They are lying about hacking your Microsoft account.
• If they really had proof, they would have attached something, but they didn’t.

Regards

Greg Whaley

I received a similar email several months ago and got a good chuckle out of it. It's nothing but a scam. If the hacker had all the access he claims to have to your devices he wouldn't need you to send him money, he'd have already gone in and taken it from your account. I sent them a message back and asked if they could go ahead and post the videos on phub.com with my proper name and credentials since it's my understanding they pay good money for videos. :) Just relax and don't worry about it especially if you're using Bitdefender.