Topic: Careful scammers and hackers using mail spoofing - page 2. (Read 234 times)

Email spoofing with content saying that they monitored you is a bit scary but changing only your email password is not enough you should also check the email activity what device and IP your email is currently connected and check if there is a recovery email and phone number added in your email you should remove them and keep only email and phone number that you truly own.

I have a friend who fell victim to phishing not from email spoofing even my friend changed his password the hacker was still able to access his email after I checked his email activity and recovery I saw different devices and IPs that the owner did not recognize and added email recovery that is why I suggested him to remove these emails and phone numbers that he don't recognize and add 2FA, after that change the password and disconnect the email to all device.
After he did that the hacker couldn't able to access his email no new unknown IPs and devices were listed on his email activity meaning he successfully got rid of them.

I completely agree with you about being cautious when it comes to emails claiming that you have won Bitcoin or other rewards. These are often phishing scams attempting to trick individuals into revealing personal information or clicking on harmful links. Deleting such emails is the right thing to do.

It's unfortunate that many people have fallen victim to these types of scams. Sharing your experiences and education on avoiding scams can indeed be helpful for newcomers and others who may not be familiar with the risks. By raising awareness and promoting safe online practices, we can collectively work towards reducing the number of people affected by these scams.

always be cautious with your personal information online and continually stay informed about potential threats.   

Hackers sometimes fall into different types of fraud traps and many users sometimes fall into the trap of hackers without understanding the traps of fraudsters. The hacker will try to gain trust from the users before trying to trick them. We have various elderly people in this region who are paid old age allowance by the government. Earlier old age allowance was usually brought to a specific place, but now, thinking about the convenience of people, the government gives old age allowance through mobile banking. Elderly people are usually not very aware of the hackers so they call the mobile banking number of everyone who gets old age allowance and ask them to share various account details. Hackers have blanked the accounts of those who have shared various account information without understanding this fraud of hackers, so we must always be careful of such frauds. Cryptocurrencies are usually the most fraudulent so we must be extremely careful.

It's called email spoofing where they will try to trick you into believing what you see is real like a header but if you look deeply at your header, it's not your email ill give you an example, your email is [email protected] now if you are not looking closely an email will be sent to you, with this email [email protected] or [email protected] if you're not going to look in the header you will believed it's your email and panic, it means it's a fake sender pretending to be your email.

if they really had this information they wouldn't tell you but they would act accordingly.
check on "I am pwned" https://haveibeenpwned.com/ if your address ended up in any of the hacked account databases (and which password they recovered).
ignore all these emails and put them in spam. there is nothing to worry about.

It has not happened to me before, but it always happens to big companies and the hacker will also encrypt the information with ransomware or show the company the data they got and to pay money.

Do you know that you can use 2FA app with your email? 2FA for better security. This can help you not to be changing the password all the time.

I wouldn’t recommend the change of password every two to three months because just like you have said you can easily forget it or even mixed them together. You can change passwords at least ones in year depending on your preferences and when changing your passwords do not set aside a day to change passwords to all your accounts in one day or at the same period as this raises suspicions and could make scammers link the accounts together.

Also as some who is into cryptocurrency where security of your passwords are paramount you should avoid anything related to password managers and customized keyboards. Both of them store your passwords and since they are all closed source you don’t know what happens with your passwords stored on them. An hacker that gets access to those password managers app would automatically get access to your account passwords too. Also the use of password managers makes one to rely on them and as such you will forget those passwords and when time comes to recover them either because of device lost or damage you wouldn’t.

Also when using an email for accounts related to anything finance, make sure you separate that email with the ones used for social media accounts and other sites. Emails are easily visible in this two places and could lead an hacker to any of your financial informations on the email.

Some persons have fallen into this scam and paid some money to stop these scammers from exposing their confidential information. But they later find out that paying ransom is a grave mistake because they will not stop blackmailing and asking for more money. If one receives such an email,  just do a security check and take necessary protective actions. If it is fake, stop communicating with these criminals. But if it is true that he has some of your information, gather enough evidence and report to the relevant authority. Scammers will become powerless if they know that you are not ready to give them anything.

That is true, I have not changed my password in some years  

It's possible that a computer was compromised by malware, such as keyloggers, which can monitor your typing and potentially access sensitive information. Simply changing your password might not be enough, especially if the attacker already has access to your email or if your computer is still compromised.

To ensure your digital security, the best course of action would be to reformat your computer. This means wiping it clean and reinstalling the operating system. After that, change all your passwords, starting with fresh information. It's also essential to exercise caution when using your computer – avoid installing unnecessary programs and refrain from clicking on unverified links, as these are common sources of malware infections.

You received an email from your own email  

Updating, changing your email password too often is not actually good. If you use weak passwork, has a style of using similar password with very small changes between old and new passwords, your updated password is not good to protect your account from hacks.

Use strong password and you don't need to change it like 2 or 3 times a month.

[GUIDE] How to Create a Strong/Secure Password
Are your passwords in the green?

Check your email address with Have I been pwned?.

I've receive that kind of email, but those aren't true, they only use mail spoofing, depending of your email provider it can show you some details like who signed that message, example:



I receive similar messages but those aren't signed by my email provider, also they show you some leaked password from some site databreak. But if you use a different password for each site you shouldn't worry


In theory that is the best option but if you do that i recomend you to use a password manager that can be sincronized between devices because it can be dificult to track every password that you use.

In my case i use a different password for every single page.

Remember to enable to Second factor authentication for everery site, but avoid 2FA by SMS becasuse it can be vulnerable to SIM swap.

Regards!

Yesterday I received email from my own email saying that he/she has monitored every keystore and all the information about me is all gathered
he has sent me a Bitcoin address and told me that if I did not send any money in the form of Bitcoin he would expose my data has anyone received this kind of email?
What will you do?

• For me the very first thing that I would do is change my email address password because even though it's not true, we should always update it maybe 2-3 times a month or what you prefer.
• Also do a deep scan of your computer, but we should run daily scans if you really want, since sometimes we attach thumb drives coming from outside or download files, like freeware, which has a load of malware on it.
• Also avoid entertaining emails that say you have won part of BTC and saying you have to click the link,. never ever do that delete that immediately I have received lots of emails like this be careful.

for sure lots of people have been a victim of this, a few years back one of my clients has also been a victim of ransomware, and emails saying they have your data, so be very careful about what you do, and never communicate with them as much as possible.
Who among you also received this kind of scam and tricks what did you do, we could also educate new comers so that they will not fall victim to this kind of scam and hacking.