Fraudsters send victims own passwords in sextortion scam
Over 9,000 reports received so far in April.
A sextortion phishing scam, first identified by the National Fraud Intelligence Bureau (NFIB) in July 2018, continues to be reported to Action Fraud in high numbers.
So far this month, Action Fraud has received 9,473 reports of this email scam, with 200 reports made in the last week.
The emails contain the victim’s own password in the subject line and demand a payment in Bitcoin to prevent videos of the victim, on their computer visiting adult websites, being shared.
An example email reads;
“It Seems that, XXXXXX, is your password.
“I require your complete attention for the upcoming 24 hrs, or I may make sure you that you live out of guilt for the rest of your lifetime.
“Hey, you do not know me personally. However I know all the things concerning you. Your present fb contact list, mobile phone contacts along with all the digital activity in your computer from past 176 days.
“Which includes, your self pleasure video footage, which brings me to the main motive why I’m composing this particular mail to you.
“Well the last time you went to see the porn material websites, my malware ended up being activated inside your computer which ended up documenting a beautiful footage of your self pleasure play by activating your cam. (you got a unquestionably weird taste by the way haha)
“I have the full recording. If, perhaps you think I am playing around, simply reply proof and I will be forwarding the particular recording randomly to 8 people you know.”
Head of Action Fraud, Pauline Smith, yesterday said:
“Sextortion scams are a type of phishing attack where people are coerced to pay a ransom, normally in Bitcoin. The messages can look particularly convincing because they often include the recipient’s genuine password.
“The criminals sending these emails are ruthless, unscrupulous individuals who don’t care about the impact of their actions on victims. They seek to exploit people’s emotions - shaming and scaring the recipient enough, that they make a payment.
“If you receive an email that threatens you, your family, or your property in any way, and asks you to make a Bitcoin payment, don’t take the bait.”
- Do not reply to the email or click on any links contained within it. Instead, report it to: firstname.lastname@example.org and then delete it.
- Do not be tempted to make the Bitcoin payment. Doing so may encourage the criminal to contact you again for more money.
- If you have made the Bitcoin payment, then report it to your local police force by calling 101.
For more information, visit: actionfraud.police.uk/sextortion
ActionFraud is the UK’s national fraud and cyber crime reporting centre.
We provide a central point of contact for information about fraud and cyber crime.
The easiest way to report fraud and cyber crime is by using our online reporting tool.Report
Latest News from
UK Finance warns consumers to beware of Coronavirus holiday scams29/06/2020 10:20:00
New warning from UK Finance around Coronavirus holiday scams.
Ticket fraud warning as venues prepare to re-open24/06/2020 13:20:00
Action Fraud are urging people to be wary of fraudsters selling fake or non-existent tickets to events.
Over £16 million lost to online shopping fraud during lockdown, with people aged 18-26 most at risk22/06/2020 13:20:00
Despite retail and non-essential shops re-opening across the UK, many of us continue to shop online.
Avoid scoring a cyber own goal when streaming Premier League's return18/06/2020 13:20:00
The National Cyber Security Centre (NCSC) is urging football fans to secure their online platform streaming accounts and subscriptions.
260 reports of coronavirus-related TV Licensing emails so far this month28/05/2020 16:38:00
So far this month, we have seen 260 reports about a coronavirus-related TV Licensing scam.
How to protect yourself if you think you've been affected by the EasyJet cyber breach20/05/2020 14:43:00
Advice and guidance if you think you have been affected.
Man pleads guilty to sending Covid-19 scam text messages following DCPCU investigation19/05/2020 13:20:00
Intelligence work by the DCPCU and Action Fraud identified that the suspect was involved in sending large-scale ‘smishing’ text message campaigns.
Cyber experts shine light on online scams as British public flag over 160,000 suspect emails07/05/2020 14:15:00
In just over two weeks, the public has passed on more than 160,000 suspect emails.