Dear Members: I was a victim of this scam which started late last year 2018. I got an email similar to the one below almost Word for Word. I started deleting each email that came in each day, I decided to start storing all of the emails for future reference to find clues to who was sending them. A friend of mine told me I should get a hold of my Internet provider they could help. I spent over an hour with the technician who helped me change my password, he also told me that he was going to add a filter to my account that would block any and all emails from my account to me in the future and also gave me a lot of advice which I will share with you below. I was told try to remember where you used the password that they sent you that they claimed they had got from the porn site which, I never went to. They sent me my password for Professor Opmmur which I had set up over 15 or 16 years ago. In recent years I’ve never used that password except for one website which was set up at the same time, I set up my account with paranormalis.com and over the years I never changed the password. All my other accounts I’ve change the password many times to different passwords which are much longer and harder to crack. Want everyone to understand that I am not attacking paranormal.com in any way shape or form. But I really do believe the site has been attacked sometime during the fall months of 2018. I’m posting this because, I believe other people may have been victims also and I want to help them with knowledge on how to handle this type of Internet scam. If anyone else is out there and a member and would like to share their stories please do so on this thread. I am enclosing an e-mail from my Internet provider, which I’m going to call ABC Internet Company. It is information of who was scamming me from Vietnam. It gives also some insight into the people that are scamming Internet users. It also gives you ways to handle and correct the issues of a compromised password and user account. They will try to send threatening messages from your own account, to your account and that is covered in the email below. Note: all of the information listed below was sent to me by my Internet provider and I am sharing it with everyone because of the importance of the information contained therein. In times like this, your Internet provider is your best friend for correcting all the issues connected with email scams and email attacks. They have ways of stopping and preventing future issues. Professor Opmmur Opmmur’s Internet Company Support Department E-mail Messages with subjects like 'Your account has been hacked' have been widely sent to a number of email services. None of the messages you've received were sent by your Internet Company - mailbox. Spammers use software that allows them to enter any address in the 'From' and 'Reply To' fields. When a message is not actually sent 'From' the mailbox shown, it is known as "spoofing". The message headers show which IP address that a message was sent from. These bitcoin spoofed messages originated from IPs located all over the world with a majority of them coming from Africa and Southeast Asia. In this case this shown it was Vietnam. When there is a password included, it is not your Internet Company password. These are passwords from a different online account that do not meet the your Internet Company requirements for special character, upper and lower case and a number. The spammer acquired the email addresses through some of the large database breaches. This link shows which database breaches would have exposed their email addresses: https://haveibeenpwned.com/ The database has also collected password that have been exposed: https://haveibeenpwned.com/Passwords Attackers take advantage of reused credentials by automating login attempts against systems using known emails and password pairs. Using a unique password for each site you log into can help with keeping online accounts secure. There are several password managers provided either as free software programs or as a part of a web browser. A Google search can locate several possible password manager choices and their reviews. People are being victimized by a terrifying new email scam where attackers claim they stole your password and hacked your webcam while you were watching porn — here's how to protect yourself There's a new scam going around that would terrify most people if it ever landed in their inbox. The emails are slightly different depending on who's being attacked, but they all have a few similar features: · The subject line includes a password that you probably have used at some point. · The sender says they have used that password to hack your computer, install malware, and record video of you through your webcam. · They say they will reveal your adult-website habits and send video of you to your contacts unless you send them bitcoin, usually $1,200 or $1,600 worth. Here's one example of these scam emails, sent in the past month: · Did you recently receive an email with one of your old passwords in the subject line and a request for bitcoin? · It's a new kind of scam. · The attacker probably took your password from a publicly available database of old leaked passwords and email addresses. · Here's how to keep yourself safe. FROM: Business Insider Ian Kar, a New York-based product manager who was sent the scammy email, said that after he received this threat, he spent an entire day changing all his passwords and buying 1 Password, a password manager. He said he was pretty sure his password was included in one of the big leaks in the past few years — databases have been stolen from LinkedIn, Yahoo, and eBay, for example. You can check whether your password is in one of these leaked databases over at the website Have I Been Pwned. Basically, the attackers don't actually have video of you or access to your contacts, and they haven't been able to install malicious code on your computer. In reality, they're taking a password from a database that's available online, sending it to you, and hoping you're scared enough to believe their story and send them bitcoin. Some scammers have even made over $50,000 from the blackmail scheme, based on an analysis of bitcoin wallets, Bleeping Computer reported. As Brian Krebs, a leading security journalist, writes, this scam is probably automated, meaning you haven't been specifically targeted: "It is likely that this improved sextortion attempt is at least semi-automated: My guess is that the perpetrator has created some kind of script that draws directly from the usernames and passwords from a given data breach at a popular Web site that happened more than a decade ago, and that every victim who had their password compromised as part of that breach is getting this same email at the address used to sign up at that hacked Web site." For now, the scammers seem to be using really old passwords — maybe one you haven't used in years. But as the scam develops, there's a good chance it may include credentials from a fresh breach, according to Krebs. Other good ideas to keep yourself safe: use long and strong passwords, get a password manager to ensure each account has a unique password, and turn on two-factor authentication on your important accounts. The FBI also recommends you turn off or cover any web cameras when you're not using them to prevent sex-based extortion schemes, even if this kind of scam ends up being a hollow threat. And no matter what you do, don't send bitcoin to the scammers.