Belarus “shame scam” hits South Africa

Newsfeed

MyBroadband Newsfeed
Staff member
Joined
Jun 28, 2017
Messages
6,803
Reaction score
639
Belarus “shame scam” hits South Africa

A class of extortion scam which is known as the “Belarus Phishing Expedition” has reared its head in South Africa.

It attempts to trick people into paying money to prevent embarrassing information about them appearing online.
 
If you absolutely know 100% that you haven't been doing anything naughty in front of your laptop or you have the laptop camera covered, then this scam is 100% innefective. :crylaugh:
 
From what I've read in the past all they need is a picture of your face.

They actually use that to fake a photo (deep fakes. Practically looks real) and then send it to you threatening to distribute it and so on.
You do not actually have to have done anything dodgy.
 
From what I've read in the past all they need is a picture of your face.

They actually use that to fake a photo (deep fakes. Practically looks real) and then send it to you threatening to distribute it and so on.
You do not actually have to have done anything dodgy.

If they sent me a video like that, with my face edited in, I would immediately send it to all of my friends for a laugh! :crylaugh:
 
  • Like
Reactions: OCP
As long as they post my jerk-off video on Ponhub so I can get some views it's all good.
If they sent me a video like that, with my face edited in, I would immediately send it to all of my friends for a laugh! :crylaugh:
This actually makes me want to get scammed! :crylaugh:
 
If they sent me a video like that, with my face edited in, I would immediately send it to all of my friends for a laugh! :crylaugh:

Or send it back suggesting they use a less endowed body to photoshop my face to, nobody will believe I am that well hung or something along those lines :crylaugh:
 
This latest run is from a month ago,they are targeting emails from 1 of a few "compromise" lists in the last few years,still trying to isolate which one(s) though
Lists your username/password,and if you are one of those who re-use passwords it can look relatively legit

Article:
https://www.bleepingcomputer.com/ne...blackmail-spammers-made-over-50k-in-one-week/
Adult Site Blackmail Spammers made Over $50K in One Week
By Lawrence Abrams
July 19, 2018 09:52 AM 7


Last week we reported how scammers were using extortion spam to try and blackmail recipients into paying bitcoins or supposed video of them using an adult site would be released. Since that article was written, over $50,000 USD in bitcoin payments have been made to bitcoin addresses associated with these emails.

When this latest extortion campaign started, security researcher SecGuru began tracking the bitcoin addresses used by these scammers. While doing so, he noticed an alarming trend. People were actually paying these blackmail demands.

According to SecGuru, after examining 42 bitcoin addresses used in this scam, he discovered that 30 victims have paid the blackmail demand for a total of over $50,000 USD.


SecGuru
@SecGuru_OTX
So far, 30 victims have paid more than $50,000 in total. (and I have only examined 42 BTC addresses, my expectation is that there are thousands of them) Thanks to everyone who sends the Bitcoin addresses to me. cc: @danielverlaan @BleepinComputer @KarinSpaink

BleepingComputer

@BleepinComputer
Beware of Extortion Scams Stating They Have Video of You on Adult Sites - by @LawrenceAbramshttps://www.bleepingcomputer.com/news/security/beware-of-extortion-scams-stating-they-have-video-of-you-on-adult-sites/ …

1:09 PM - Jul 19, 2018
7
18 people are talking about this
Twitter Ads info and privacy
You can see the list of payments being tracked by SecGuru below. For example, one bitcoin address alone has received ~2.54 bitcoins from a combined 8 victims. This equates to over $18,000 USD at current bitcoin prices.

Payments made to extortion scam
Payments made to bitcoin addresses associated with scam (Click image for full size)
For those who are not familiar with these fake extortion scam emails, they falsely state malware was installed on the recipient's computer and that webcam video was taken of them using adult web sites. To add legitimacy to the threats, they also include passwords associated with the recipients email addresses that were leaked during previous data breaches from hacked sites.

For example, people have reported that the included passwords were older, but previously used passwords. The addition of these passwords, though, appears to be the tipping point that scares enough people to actually make the payment rather just trashing the email.

Below is an example of one of the extortion scam emails being sent out. Recent versions have raised the blackmail demand to $3,200.

From: Beitris Englert
Date: July 12, 2018

Subject: (username + password)
It seems that, (password), is your password. You may not know me and you are probably wondering why you are getting this e mail, right?

actually, I setup a malware on the adult vids (porno) web-site and guess what, you visited this site to have fun (you know what I mean). While you were watching videos, your internet browser started out functioning as a RDP (Remote Desktop) having a keylogger which gave me accessibility to your screen and web cam. after that, my software program obtained all of your contacts from your Messenger, FB, as well as email.

What did I do?

I created a double-screen video. 1st part shows the video you were watching (you've got a good taste haha . . .), and 2nd part shows the recording of your web cam.

exactly what should you do?

Well, in my opinion, $2900 is a fair price for our little secret. You'll make the payment by Bitcoin (if you do not know this, search "how to buy bitcoin" in Google).

BTC Address: 1KiCTVUq5A9BPwoFC8S965tsbtqcWr8bty
(It is cAsE sensitive, so copy and paste it)

Important:
You have one day in order to make the payment. (I've a unique pixel in this e mail, and at this moment I know that you have read through this email message). If I do not get the BitCoins, I will certainly send out your video recording to all of your contacts including relatives, coworkers, and so on. Having said that, if I receive the payment, I'll destroy the video immidiately. If you need evidence, reply with "Yes!" and I will certainly send out your video recording to your 6 contacts. It is a non-negotiable offer, that being said don't waste my personal time and yours by responding to this message.
These scammers have my password! Now what?
If you receive one of these extortion emails and it contains one of your actual passwords, you should immediately change it at any and all sites that you are currently using it. It is also strongly suggested that you use unique passwords at every site you visit and setup 2 factor authentication if its available.
 
So, they are effectively black mailing people by telling them they will release a video of them jerking off to porn?

What are you suppose to do while watching porn?
Not much of a secret
 
Hehe. I got one of these. They're using a unique password changed years ago after the Stratfor hack, so clearly harvesting name+email+pw lists from compromised sites. I don't use porn and my own network is thoroughly fenced and gated. Clever trick, though.
 
what happens if it goes to the junk mail folder?
 
what happens if it goes to the junk mail folder?

Spotted one of them in my junk mail. This is how it reads if anyone is interested:

It seems that, xxxxxx, is your password. You may not know me and you are probably wondering why you are getting this e mail, right?

actually, I setup a malware on the adult vids (porno) web-site and guess what, you visited this site to have fun (you know what I mean). While you were watching videos, your internet browser started out functioning as a RDP (Remote Desktop) having a keylogger which gave me accessibility to your screen and web cam. after that, my software program obtained all of your contacts from your Messenger, FB, as well as email.

What did I do?

I created a double-screen video. 1st part shows the video you were watching (you've got a good taste haha . . .), and 2nd part shows the recording of your web cam.

exactly what should you do?

Well, in my opinion, $1000 is a fair price for our little secret. You'll make the payment by Bitcoin (if you do not know this, search "how to buy bitcoin" in Google).

BTC Address:

1Bb446YF8AZK3nKchPJQ3J5KwPGRHRARJ5

(It is cAsE sensitive, so copy and paste it)

Important:
You have one day in order to make the payment. (I've a unique pixel in this e mail, and at this moment I know that you have read through this email message). If I do not get the BitCoins, I will certainly send out your video recording to all of your contacts including relatives, coworkers, and so on. Having said that, if I receive the payment, I'll destroy the video immidiately. If you need evidence, reply with "Yes!" and I will certainly send out your video recording to your 6 contacts. It is a non-negotiable offer, that being said don't waste my personal time and yours by responding to this message.
 
I have had this very email. Ignore it nothing what so ever happens.
 
Top
Sign up to the MyBroadband newsletter