• All Community
    • All Community
    • Forums
    • Ideas
    • Blogs
Advanced

Not what you are looking for? Ask the experts!

This forum thread needs a solution.
Kudos1 Stats

Was I Hacked? DId Norton 360 Kill it? See the threat below.

Hi, My N360 has been in use for many years and is current.  I received the following, below.  I think it's from Facebook.  I've changed the password in FB.  The message was tagged [Norton AntiSpam].  And I would usually delete them from my email in box.  But, just by chance, this caught my eye.  Has this clown screwed with my computer and data?  Or is it just a scam.  BTW, my Computer does Not have a camera. (See below).  If it is something that Norton can't kill?  What do I do?  I don't care about FB.  I want to keep my data safe. Everything is working correctly and to be sure I ran Norton Power Erase.  After that, I get just one error where, when I shut down Eudora 7.1 (Win7 64 bit) I get: Error accessing File: C:\program files (x690\qualcomm\edura\search\ism7c43.tmp  ACCESS Denied.  No such file or Dir Exits.

Can anyone help point me in the right direction.

Many Thanks in advance

pat

From: <xxxx@xxxxxxxxxxx.com>
To: "xxxxxxx" <xxxx@xxxxxxxx.com>
Subject: [Norton AntiSpam]xxxxx@xxxxxxxx.com is hacked

Hello!

My nickname in darknet is dante21.
I hacked this mailbox more than six months ago,
through it I infected your operating system with a virus (trojan) created by me and have been monitoring you for a long time.
So, your password from xxxx@xxxxxxx.com is xxxxxxxxxxxxx
Even if you changed the password after that - it does not matter, my virus intercepted all the caching data on your computer and automatically saved access for me.
I have access to all your accounts, social networks, email, browsing history.
Accordingly, I have the data of all your contacts, files from your computer, photos and videos.
I was most struck by the intimate content sites that you occasionally visit.
You have a very wild imagination, I tell you!
During your pastime and entertainment there, I took screenshot through the camera of your device, synchronizing with what you are watching.
Oh my god! You are so funny and excited!
I think that you do not want all your contacts to get these files, right?
If you are of the same opinion, then I think that $869 is quite a fair price to destroy the dirt I created.
Send the above amount on my BTC wallet (bitcoin): xxxxxxxxxxxxxxxxxxxxxxxx
As soon as the above amount is received, I guarantee that the data will be deleted, I do not need it.
Otherwise, these files and history of visiting sites will get all your contacts from your device.
Also, I'll send to everyone your contact access to your email and access logs, I have carefully saved it!
Since reading this letter you have 48 hours!
After your reading this message, I'll receive an automatic notification that you have seen the letter.
I hope I taught you a good lesson.
Do not be so nonchalant, please visit only to proven resources, and don't enter your passwords anywhere!
Good luck!

[Admin Edit: Removed personally identifiable information]

Replies

Kudos2 Stats

Re: Was I Hacked? DId Norton 360 Kill it? See the threat below.

Kudos0

Re: Was I Hacked? DId Norton 360 Kill it? See the threat below.

Thanks Mr. Jive!  It's a big relief.  I'll keep you posted. 

Best Regards

pat

Kudos0

Re: Was I Hacked? DId Norton 360 Kill it? See the threat below.

Hi, i have had exactly the same message tonight. Really scared me despite not having done anything!

Kudos2 Stats

Re: Was I Hacked? DId Norton 360 Kill it? See the threat below.

SendOfJive:

Almost certainly a scam.

https://nakedsecurity.sophos.com/2018/10/15/beware-sextortionists-spoofi...

Hi Patrick Appleson:

I agree with SendOfJive that this looks like a scam.  From the Sophos Naked Security article referenced by SendOfJive:

"...We’ve seen sextortion emails that have included an intended victim’s password – that the attackers actually found in a data breach dump – in order to make their claims to have taken over somebody’s computer seem legitimate. Those passwords are typically outdated. But with the latest spin, they’re also pretending to have access to their victim’s email account, by simply spoofing the sender of the scam email to make it look like the same email as that of the victim..."

There is a website called Have I Been Pwned? at https://haveibeenpwned.com/ that is managed by Microsoft Regional Director Troy Hunt where you can enter your e-mail address to see if it has been exposed in a known data breach.  I have an old Microsoft Live (Outlook.com) e-mail address that I often use for registering in public forums, and the Have I Been PWned? site reports that this e-mail address has been involved in 5 data breaches and 0 pastes (where a paste means the information has been "pasted" to a publicly facing website like Pastebin that hackers use to share stolen data).  Those 5 breaches includes hacks of my Adobe and Malwarebytes accounts, and in both those cases I was notified by Adobe (October 2013) and Malwarebytes (November 2014) that member records had been exposed when the servers hosting their user forums were hacked and that I should change the login password for my accounts.

A sample excerpt from my Have I Been PWned? report about the 2014 breach of my Malwarebytes account:

-----------
32-bit Vista Home Premium SP2 * Firefox ESR v52.9.0 * Norton Security Premium v22.15.1.8

Kudos1 Stats

Re: Was I Hacked? DId Norton 360 Kill it? See the threat below.

lmacri:

There is a website called Have I Been Pwned? at https://haveibeenpwned.com/ that is managed by Microsoft Regional Director Troy Hunt where you can enter your e-mail address to see if it has been exposed in a known data breach.  I have an old Microsoft Live (Outlook.com) e-mail address that I often use for registering in public forums, and the Have I Been PWned? site reports that this e-mail address has been involved in 5 data breaches...

...and guess what was sitting in my Junk folder when I logged into my Microsoft Live (Outlook.com) webmail server today:

Hello!

My nickname in darknet is yank83.
I hacked this mailbox more than six months ago,
through it I infected your operating system with a virus (trojan) created by me and have been monitoring you for a long time.

So, your password from xxxxxxxxxxxx @live.ca is xxxxxxxxxxxx

....Send the above amount on my BTC wallet (bitcoin): 1NXNxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
As soon as the above amount is received, I guarantee that the data will be deleted, I do not need it....

The e-mail address was correct but the old password in this scam e-mail has never been used for my Microsoft  @live.ca account and was probably exposed in one of the data dumps I mentioned in my previous post.  Glad to hear that both the Norton and Microsoft spam filters are catching e-mails from these fraudsters.
-----------
32-bit Vista Home Premium SP2 * Firefox ESR v52.9.0 * Norton Security Premium v22.15.1.8

This thread is closed from further comment. Please visit the forum to start a new thread.