Careful scammers and hackers using mail spoofing

Mpamaegbu

legendary

Activity: 2688

Merit: 1208

Once a man, twice a child!

Quote from: tech30338 on October 22, 2023, 10:02:03 PM

Yesterday I received email from my own email saying that he/she has monitored every keystore and all the information about me is all gathered he has sent me a Bitcoin address and told me that if I did not send any money in the form of Bitcoin he would expose my data has anyone received this kind of email?
What will you do?

That's some cheap blackmail from some cheap con artist(s). I would do nothing if I got such a mail because that's an empty threat. If they actually had your stuff as claimed, you think the ratard wouldn't have hacked you long before you got that mail? For all I know, it's a randomly sent mail. I won't even bother changing anything except blocking the retard if I want.

Quote from: lovesmayfamilis on October 25, 2023, 05:25:48 AM

Secondly, I never check my mail; if I need to use mail, then I don’t read what was sent to me earlier.

This just broke my heart. So, it means you will never get to read my outpouring of love gesture if I eventually muster the courage to do a mail outside this forum then? I'm inconsolable 😭

Husires

legendary

Activity: 1582

Merit: 1284

There are many tips and they cannot be limited to three points that I can add

Use two-factor authentication with a device that is not and will not be connected to the Internet.
Do not post your address publicly.
Do not download any application you do not know or visit websites you do not know.
I was always skeptical and looked for the source of the email.
Use open source security tools. The less software, the better.

jrrsparkles

sr. member

Activity: 2380

Merit: 251

Eloncoin.org - Mars, here we come!

If the hacker has your keystroke then he doesn't really need your permission to access the funds.

You are not the only one who received such threats I received those kinds of emails, messages, and even calls and sometimes they claimed that they even got access to my sensitive data and threatened to expose it to the contacts list but I simply ignored all their demands and they tried few times and then vanished so they got nothing other than email and trying to milk something from you.

If you still not comfortable then take legal action by filing a complaint so the person who threatens you will be in danger if something happens to you.

albert0bsd

hero member

Activity: 828

Merit: 657

Quote from: Alpha Marine on October 25, 2023, 11:26:45 AM

So what happens when hackers somehow gain access to that password manager? That has made you very vulnerable.
Trusting a third-party app is never a good idea.

The files are encrypted with GPG and those can only be decrypted with my private key (I already tested it) , the private key that is also encrypted with a master password, the password manager is open source, I already checked the code and there is nothing suspicious on it.

The security of this is that the GPG code is also opensource, and it is widely tested over time.

Alpha Marine

sr. member

Activity: 476

Merit: 283

Aside from not clicking on phishing links, and being careful with our passwords and emails, we should be careful with the kind of things we download or install into our devices.
I've seen people who download and use a different kind of keyboard software from the phone that comes with their phone. These keyboards have access to everything you type which includes passwords and every other personal details.

Also, check for what you grant permission to on your device.
For example, you'll see an app that tells the weather has permission to read your messages, what for exactly?

Quote from: albert0bsd on October 22, 2023, 10:13:31 PM

In theory that is the best option but if you do that i recomend you to use a password manager that can be sincronized between devices because it can be dificult to track every password that you use.

So what happens when hackers somehow gain access to that password manager? That has made you very vulnerable.
Trusting a third-party app is never a good idea.
Yeah, I know they're probably more secure, but they're human too and they can make errors and that error can lead to hackers gaining access to their system.

hugeblack

legendary

Activity: 2506

Merit: 3645

Buy/Sell crypto at BestChange

Quote from: tech30338 on October 22, 2023, 10:02:03 PM

Yesterday I received email from my own email saying that he/she has monitored every keystore and all the information about me is all gathered
he has sent me a Bitcoin address and told me that if I did not send any money in the form of Bitcoin he would expose my data has anyone received this kind of email?

Aren't you supposed to research how he gained access to the keystore, or at least encrypt your data in a separate, open source, offline place? It is true that such scammers try to steal your money by claiming that they know data that no one knows but them, but they are liars.
Try as much as possible not to publish your personal email and information publicly.

Also be careful with any keyboard software, it collects a lot of data.

Truthlovecoins

jr. member

Activity: 100

Merit: 4

For ages now, although I wouldn't consider myself a computer wizard, to protect against such scam mails, there's the need to set up or activate the spam folder or spam section so as one doesn't open such mails unknowingly and fall victim to their cause.

I couldn't agree more with the fact that not replying such mails is the best way to ignore and silence the activities of the scammers and most importantly is to not click on ads or visit sites that don't have good email sources.

Lida93

hero member

Activity: 742

Merit: 529

Quote from: tech30338 on October 22, 2023, 10:02:03 PM

Yesterday I received email from my own email saying that he/she has monitored every keystore and all the information about me is all gathered
he has sent me a Bitcoin address and told me that if I did not send any money in the form of Bitcoin he would expose my data has anyone received this kind of email?
What will you do?

For me the very first thing that I would do is change my email address password because even though it's not true, we should always update it maybe 2-3 times a month or what you prefer.
Also do a deep scan of your computer, but we should run daily scans if you really want, since sometimes we attach thumb drives coming from outside or download files, like freeware, which has a load of malware on it.
Also avoid entertaining emails that say you have won part of BTC and saying you have to click the link,. never ever do that delete that immediately I have received lots of emails like this be careful.

for sure lots of people have been a victim of this, a few years back one of my clients has also been a victim of ransomware, and emails saying they have your data, so be very careful about what you do, and never communicate with them as much as possible.
Who among you also received this kind of scam and tricks what did you do, we could also educate new comers so that they will not fall victim to this kind of scam and hacking.

wow, things are happening hackers are coming up with different techniques everyday just that I haven't gotten this sort of trick on me, and am sure it wouldn't work on me.

I'll just ask you to go ahead and expose the data you claim to have with you. Since they claim to have it what's the assurance that they won't continuously use it in blackmailing me each time they ran out of funds. So the best way is to go tough too by asking them to reveal it that's the only way you'll know if they're bluffing or not. And even if they're not I don't give a fuck. If I pay any ransom today , tomorrow they will sk for more and it won't end there, keeps going on and on. Don't negotiate with thieves, they're greedy people and never satisfied

As for changing of passwords now and then, I feel that's stressful and can get you confusing. I have a strong password and that suffix me stead of jumping from one weak password to another.

AYOBA

full member

Activity: 266

Merit: 140

Quote from: tech30338 on October 22, 2023, 10:02:03 PM

for sure lots of people have been a victim of this, a few years back one of my clients has also been a victim of ransomware, and emails saying they have your data, so be very careful about what you do, and never communicate with them as much as possible.
Who among you also received this kind of scam and tricks what did you do, we could also educate new comers so that they will not fall victim to this kind of scam and hacking.

Since scammers are now constantly conducting extensive investigation, it is not the case that people should store their essentials inside emails, since scammers are becoming more and more common in all fields. Again we should refrain from logging into any of our mail accounts on a defference device since occasionally we may use a friend's or brother's phone and log in, and forgetting to log out. Sadly, they have the ability to hack email addresses. As a result, your friend's phone can find up in the hands of someone else.

lovesmayfamilis

legendary

Activity: 2072

Merit: 4265

✿♥‿♥✿

It always becomes a mystery to me how people receive such letters. Secondly, I never check my mail; if I need to use mail, then I don’t read what was sent to me earlier.
Firstly, because my created emails are quite difficult to select by login, I never agree with Google’s proposal (for example) to create a login but come up with it myself, as is the case with my nickname on the forum. It may look wrong, but such logins are quite complicated for sending spam—as are different emails for different things. If the mail is intended for registration in those places that are not important to me, then it is completely unnecessary to read the letters that come to it.
Besides all this, what data about you might be on the Internet? If you post evidence of your documents and photos here and there, you already agree that this data may be available to third parties. What's there to worry about, then? It’s even more ridiculous to pay someone else for something.
There is no need to be naive.

Belarge

member

Activity: 406

Merit: 84

Eloncoin.org - Mars, here we come!

Quote from: Abu-Naim on October 23, 2023, 04:05:51 PM

It is good to be careful and avoid this type of scams, but can we completely avoid them?
Scammers are always doing more research to create more ways to scam people through emails. I think the best thing to do if you want to be free and have less worries about these type of phishing scams is to avoid sharing any of your sensitive information in your emails, or stop saving anything important related to cryptocurrency in the email.

We can not permanently avoid scam but it can be done temporarily because fraudulent activities are everywhere in the market. Though in the modern day, scamming have upgraded their styles and levels, this time they're using phishing mails to grab the attention of people, this type of scamming method is mostly concentrated on traders in the crypto space. We should put an end of saving and receiving unnecessary mails in our message box, taking precautionary measures not to be in a hurry to click any mails sent to us anonymously. Internet fraudsters carry out drastic measures to lure their online victims and they won't stop at any course.

Abu-Naim

sr. member

Activity: 420

Merit: 262

Quote from: Publictalk792 on October 23, 2023, 06:09:25 AM

I completely agree with you about being cautious when it comes to emails claiming that you have won Bitcoin or other rewards. These are often phishing scams attempting to trick individuals into revealing personal information or clicking on harmful links. Deleting such emails is the right thing to do.

It's unfortunate that many people have fallen victim to these types of scams. Sharing your experiences and education on avoiding scams can indeed be helpful for newcomers and others who may not be familiar with the risks. By raising awareness and promoting safe online practices, we can collectively work towards reducing the number of people affected by these scams.

always be cautious with your personal information online and continually stay informed about potential threats.

It is good to be careful and avoid this type of scams, but can we completely avoid them?
Scammers are always doing more research to create more ways to scam people through emails. I think the best thing to do if you want to be free and have less worries about these type of phishing scams is to avoid sharing any of your sensitive information in your emails, or stop saving anything important related to cryptocurrency in the email.

goxcraft

sr. member

Activity: 583

Merit: 271

Quote from: Yamane_Keto on October 23, 2023, 03:08:55 PM

I prefer to use a separate computer/phone for sensitive data so that I avoid downloading any software on that computer and be careful to only visit sites I trust.

Yeah, one shouldn't use his main device for such thing. I use sandbox, virtual machine and other software whenever I'm unsure of a link or anything. It separates my main device from any kind of attacks. As a precaution, I use multiple device and always keeping backup of my data in many places. With all that, I doubt I have enough security.

OP, can you share some screenshots of the email you got? So that we can know how it looks like.

Yamane_Keto

sr. member

Activity: 406

Merit: 443

I prefer to use a separate computer/phone for sensitive data so that I avoid downloading any software on that computer and be careful to only visit sites I trust.

Quote from: bitbollo on October 23, 2023, 02:55:34 AM

check on "I am pwned" https://haveibeenpwned.com/ if your address ended up in any of the hacked account databases (and which password they recovered).

As much as these services are good, there is nothing preventing them from registering your email address and selling it. If there is an open source service, and you can host it self-hosted with an hourly update to the database, then we can guarantee that such services will not be registered or misused.

Zigabel

full member

Activity: 238

Merit: 152

Duelbits.com

Quote from: tech30338 on October 22, 2023, 10:02:03 PM

Yesterday I received email from my own email saying that he/she has monitored every keystore and all the information about me is all gathered
he has sent me a Bitcoin address and told me that if I did not send any money in the form of Bitcoin he would expose my data has anyone received this kind of email?
What will you do?

For me the very first thing that I would do is change my email address password because even though it's not true, we should always update it maybe 2-3 times a month or what you prefer.
Also do a deep scan of your computer, but we should run daily scans if you really want, since sometimes we attach thumb drives coming from outside or download files, like freeware, which has a load of malware on it.
Also avoid entertaining emails that say you have won part of BTC and saying you have to click the link,. never ever do that delete that immediately I have received lots of emails like this be careful.

for sure lots of people have been a victim of this, a few years back one of my clients has also been a victim of ransomware, and emails saying they have your data, so be very careful about what you do, and never communicate with them as much as possible.
Who among you also received this kind of scam and tricks what did you do, we could also educate new comers so that they will not fall victim to this kind of scam and hacking.

When you see mails like they don't make impulsive moves, such as trying to check out the link to verify If it's true or not, always ignore them and keep your mail as safe as possible, first step to overcoming such is not clicking on any of such links sent to you as that .ay be the only gateway for them to get full access even if you have change your password, they could recover your details and gain access again.

Note that any mail with such threats are fake and fraudulent, because if they do have your details they would have gone ahead to hack your mail and do what ever they want with it, coming to tell you they do so you could send them some money shows they are fake and need access from you to continue their fraudulent activity on your mail, ignore such mails and never click on any link, always make sure to keep your details safe and change them as often as you can, don't logging you Mail on multiple devices especially that which you don't trust well enough.

ImThour

copper member

Activity: 1386

Merit: 1481

Bitcoin Bottom was at $15.4k

Thanks to Apple, I am using the "Hide my Mail" feature and it's so good. You never share your actual email with anyone and can also be used at every single website and platform, for throwaway emails., they don't work on all platforms.

If you want to stay safe from mail spoofing, just understand that no one gifts you free money and any email with that written is a total scam at the first place and you shouldn't spend your time clicking on it.

tranthidung

legendary

Activity: 2170

Merit: 3858

Farewell o_e_l_e_o

Quote from: BitMaxz on October 23, 2023, 09:06:08 AM

I have a friend who fell victim to phishing not from email spoofing even my friend changed his password the hacker was still able to access his email after I checked his email activity and recovery I saw different devices and IPs that the owner did not recognize and added email recovery that is why I suggested him to remove these emails and phone numbers that he don't recognize and add 2FA, after that change the password and disconnect the email to all device.
After he did that the hacker couldn't able to access his email no new unknown IPs and devices were listed on his email activity meaning he successfully got rid of them.

I agree with you that if something is wrong and you detected it. You must change your account password and choose a setting to log it out on all other devices. Because it's you change your password, you will have no issue to log in on other devices but hackers who only know your old password will not be able to log in your account again, except if they hack your new password too.

First steps to do to temporary secure your account, avoid further compromise. After that, I will clean my device, install a new OS and change my account password again.

Some people even don't mind to use 2FA for their accounts and it's too late for them to do this after their accounts were hacked.

Shamm

sr. member

Activity: 1064

Merit: 343

Hhampuz is the best manager

Quote from: Questat on October 23, 2023, 09:25:59 AM

I have not yet experienced receiving this kind of email maybe because they haven't found my email add yet (maybe in the future). I could agree that changing passwords from time to time isn't a good idea, unless when have been warned that someone is trying to access my account. But until there is no suspicious activity happening, I think it is not necessary to do that.

because whatever we do, when our email add has already been exposed, the scammer will try to touch us. They won't be successful if we keep silent and never reply to their emails.

Same here never been received that kind of message but still we need to be careful as we all know that hackers are in everywhere and we can't hide them once we fall into thier trap. But the best thing to do to avoid these kind of happenings is we need to secure our account we must not login to public computers which there are many keylogger installed by hackers or by the owners. So it's better to keep in Private and don't change your password every now and then.

Questat

hero member

Activity: 2800

Merit: 603

I have not yet experienced receiving this kind of email maybe because they haven't found my email add yet (maybe in the future). I could agree that changing passwords from time to time isn't a good idea, unless when have been warned that someone is trying to access my account. But until there is no suspicious activity happening, I think it is not necessary to do that.

because whatever we do, when our email add has already been exposed, the scammer will try to touch us. They won't be successful if we keep silent and never reply to their emails.

dimonstration

hero member

Activity: 2562

Merit: 659

Dimon6969

Assuming that this scammer is really holding our data for the sake of discussion. Paying them doesn’t guarantee that they will not expose our identity since there’s no assurance that they will delete our files once they are paid. The hacker should attach your personal info to verify that they are really holding your ID. Grin

Hacker is now becoming more creative on how to scam user knowing that there’s a lot of leak data incidents happened in crypto space.

Topic: Careful scammers and hackers using mail spoofing (Read 234 times)