cancel
Showing results for 
Search instead for 
Did you mean: 

ALERT! I'm hacked you and stolen you information

Teknophobe
Tuning in

I received the below email 3 days ago and have followed all of the instructions at https://www.virginmedia.com/help/security/why-is-my-virgin-media-email-hacked

(I've removed the password and my email address from the below mail  but the password was correct!!!? the email was sent to me from my own email address 😞 ).  I've also forwarded the mail to report phishing at uk gov etc

I've scanned my computer - no malware found, no forwarding instructions ... so how the hell did they get hold of my password?? None of my non VM accounts (with different passwords)  have been hacked (so far).  I know VM had a security breach in 2020 but claimed no passwords were stolen. If they didnt get my password from me .. and I dont think they did, they must have got it from VM?  Fortunately, no damage (so far)  - have you seen anything like this before?

Thanks

Teknophobe

Date: 01 May 2030 at 08:15
Subject: ALERT! I'm hacked you and stolen you information

Hey

I have to share bad news with you.

Approximately few months ago I have gained access to your devices, which you use for internet browsing.
After that, I have started tracking your internet activities.
Some time ago I hacked you and got access to your email accounts

address deleted
Obviously, I have easily hack to log in to your email.

Your password: (deleted)

One week later, I have already installed Trojan virus to Operating Systems of all the devices that you use to access your email.
In fact, it was not really hard at all (since you were following the links from your inbox emails).
All ingenious is simple. 😃
This software provides me with access to all the controllers of your devices (e.g., your microphone, video camera and keyboard).
I have downloaded all your information, data, photos, web browsing history to my servers.
I have access to all your messengers, social networks, emails, chat history and contacts list.
My virus continuously refreshes the signatures (it is driver-based), and hence remains invisible for antivirus software.

Likewise, I guess by now you understand why I have stayed undetected until this letter...

While gathering information about you, I have discovered that you are a big fan of adult websites.
You really love visiting porn websites and watching exciting videos, while enduring an enormous amount of pleasure.
Well, I have managed to record a number of your dirty scenes and montaged a few videos, which show the way you **bleep** and reach orgasms.

If you have doubts, I can make a few clicks of my mouse and all your videos will be shared to your friends, colleagues and relatives.
I have also no issue at all to make them available for public access.
I guess, you really don't want that to happen, considering the specificity of the videos you like to watch, (you perfectly know what I mean) it will cause a true catastrophe for you.

Let's settle it this way:
You transfer $400 USD to me (in bitcoin equivalent according to the exchange rate at the moment of funds transfer), and once the transfer is received, I will delete all this dirty stuff right away.
After that we will forget about each other. I also promise to deactivate and delete all the harmful software from your devices. Trust me, I keep my word.

This is a fair deal and the price is quite low, considering that I have been checking out your profile and traffic for some time by now.
In case, if you don't know how to purchase and transfer the bitcoins - you can use any modern search engine.

Here is my bitcoin wallet: bc1qc7uw3ll3zj83c0jk5cryduns6f3rlju3ac4v6p

Things you need to avoid from doing:
*Do not reply me (I have created this email inside your inbox and generated the return address).
*Do not try to contact police and other security services. In addition, forget about telling this to you friends. If I discover that (as you can see, it is really not so hard, considering that I control all your systems) - your video will be shared to public right away.
*Don't try to find me - it is absolutely pointless. All the cryptocurrency transactions are anonymous.
*Don't try to reinstall the OS on your devices or throw them away. It is pointless as well, since all the videos have already been saved at remote servers.

Things you don't need to worry about:
*That I won't be able to receive your funds transfer.
- Don't worry, I will see it right away, once you complete the transfer, since I continuously track all your activities (my trojan virus has got a remote-control feature, something like TeamViewer).
*That I will share your videos anyway after you complete the funds transfer.
- Trust me, I have no point to continue creating troubles in your life. If I really wanted that, I would do it long time ago!

Everything will be done in a fair manner!

One more thing... Don't get caught in similar kind of situations anymore in future!
My advice - keep changing all your passwords on a frequent basis

56 REPLIES 56

Hi maximusbigbonce,

Thank you for posting to the thread. 

I have taken a look from our side and can see you are currently speaking with my colleague via private message. 

They will be able to assist you further from there. 

Thanks, 

 

Nat

I also believe it was an inside job as the password they quoted in my email was one a virgin media employee made for me. All very suss

Hi Steve, welcome to the thread! Thank you for posting. 

Sorry to hear you are also having an issue with your email service - are you able to give us a little more information about your case? 

Just let us know if you are needing support and we will do our best to help! 

All the best. 

Molly

Hi, I received the very same email yesterday and now it appears that they are actively trying to reset any account with my current email by clicking on "forgot password".  They may be blindly guessing at places, but so far quite a few are accurate.  The email came from our email (ntlworld.com) to us.  I've changed the password on Virgin Media and set to "log off after 5 minutes" on any device that access it via Outlook, webmail etc.  I've checked Pwned and it has been breached by 4 separate websites. What else can I do alongside changing ALL our passwords, which were strong passwords in the first place? Email below:

---------- Original Message ----------
From: xxxxx
To: xxxxx
Date: 28/02/2031 22:45
Subject: ALARM - I'm hacked you and stolen you information and photo

Hey xxxxx,
I have to share bad news with you.
Approximately few months ago I have gained access to your devices, which you use for internet browsing.
After that, I have started tracking your internet activities.
Some time ago I hacked you and got access to your email accounts xxxxx .
Obviously, I have easily hack to log in to your email.
Your password: xxxxxxxxxxxxxxxxxx
One week later, I have already installed Trojan virus to Operating Systems of all the devices that you use to access your email.
In fact, it was not really hard at all (since you were following the links from your inbox emails).
All ingenious is simple. 😃
This software provides me with access to all the controllers of your devices (e.g., your microphone, video camera and keyboard).
I have downloaded all your information, data, photos, web browsing history to my servers.
I have access to all your messengers, social networks, emails, chat history and contacts list.
My virus continuously refreshes the signatures (it is driver-based), and hence remains invisible for antivirus software.
Likewise, I guess by now you understand why I have stayed undetected until this letter...
While gathering information about you, I have discovered that you are a big fan of adult websites.
You really love visiting xxxx websites and watching exciting videos, while enduring an enormous amount of pleasure.
Well, I have managed to record a number of your xxxxx xxxxx and montaged a few videos, which show the way you xxxxx and xxxxx xxxxx.
If you have doubts, I can make a few clicks of my mouse and all your videos will be shared to your friends, colleagues and relatives.
I have also no issue at all to make them available for public access.
I guess, you really don't want that to happen, considering the specificity of the videos you like to watch, (you perfectly know what I mean) it will cause a true catastrophe for you.
Let's settle it this way:
You transfer $400 USD to me (in bitcoin equivalent according to the exchange rate at the moment of funds transfer), and once the transfer is received, I will delete all this xxxxx xxxxx right away.
After that we will forget about each other. I also promise to deactivate and delete all the harmful software from your devices. Trust me, I keep my word.
This is a fair deal and the price is quite low, considering that I have been checking out your profile and traffic for some time by now.
In case, if you don't know how to purchase and transfer the bitcoins - you can use any modern search engine.
Here is my bitcoin wallet: [REMOVED]
Things you need to avoid from doing:
*Do not reply me (I have created this email inside your inbox and generated the return address).
*Do not try to contact police and other security services. In addition, forget about telling this to you friends. If I discover that (as you can see, it is really not so hard, considering that I control all your systems) - your video will be shared to public right away.
*Don't try to find me - it is absolutely pointless. All the cryptocurrency transactions are anonymous.
*Don't try to reinstall the OS on your devices or throw them away. It is pointless as well, since all the videos have already been saved at remote servers.
Things you don't need to worry about:
*That I won't be able to receive your funds transfer.
- Don't worry, I will see it right away, once you complete the transfer, since I continuously track all your activities (my trojan virus has got a remote-control feature, something like TeamViewer).
*That I will share your videos anyway after you complete the funds transfer.
- Trust me, I have no point to continue creating troubles in your life. If I really wanted that, I would do it long time ago!
Everything will be done in a fair manner!
One more thing... Don't get caught in similar kind of situations anymore in future!
My advice - keep changing all your passwords on a frequent basis


@MarcusandSue wrote:

Hi, I received the very same email yesterday and now it appears that they are actively trying to reset any account with my current email by clicking on "forgot password".  They may be blindly guessing at places, but so far quite a few are accurate.  The email came from our email (ntlworld.com) to us.  I've changed the password on Virgin Media and set to "log off after 5 minutes" on any device that access it via Outlook, webmail etc.  I've checked Pwned and it has been breached by 4 separate websites. What else can I do alongside changing ALL our passwords, which were strong passwords in the first place? Email below:

<snip>

Key points are covered in the previous pages of the topic.

The email is a generic template which many have received (including myself)
The email I received appeared to be from my own account but, in actual fact and on close inspection, was faked from a server overseas.
Those most at risk on the HaveIBeenPwd leak lists are people who have used the same email/password combination across multiple sites/services as the scammers will try that email/password combo on key sites for shopping, social media, online services etc.
While changing your passwords, each should be unique for each site/service you use (do not resuse passwords across multiple sites)
Make new passwords 'secure' (which may meaning increasing password complexity/length etc.)
While changing passwords, also change additional security questions/answers too.
Use two factor authentication where available
Consider using a password manager

Others may provide further suggestions that I might have missed.

Many thanks Goslow. Great advice. 

Yes this scam is still happening as I received the same email today, apparently generated from my own account and it left me in a complete state of shock. Of course, I know that there are no nasty videos of me but I'm not that tech savvy and don't know what if Deep Fake technology is possible. It is some comfort to know that this a generic scam and I will not pay the $400 blackmail. 

The hacked email account was a secondary email that I've had for 30+ years and although pwn says 4x data breeches 5+ years ago, the pw was different then. In fact, the password (in use yesterday) was not shared across any other sites and only used for this single email address. although I accept that it could be regarded as weak or moderate. I've now changed the password again to a more secure one and changed the security question. My Facebook account was taken over yesterday which used the same email address but a different password. 

I have reported this threat to the Police but I'm reaching out to the Forum Team for help. I've now read the previous posts that suggest an Internal VM leak and the truth is that I raised a complaint just last week on VM using this very email address, which has not yet been answered.

Michael, (a loyal customer since Feb 1996)

Hi silversurfer,

Thank you for reaching out to us in our community and welcome, srry to hear you have also received an Email regards being hacked and someone having your details, so I can help I will send you an invite into a private chat, once received please click on the purple envelope to accept.

Regards

Paul.

Hi silversurfer,

Thank you for the update advising this has now been picked up, if you don't hear anything or need any further support, please do not hesitate to reach back out.

Regards

Paul.

Received the same email Tuesday quoting my current VM password that VM made me change a few months ago. I never opened the email, just loked at the contents in webmail and change my password immediately. Email contents don't apply to me - don't have a web cam / don't do porn / don't use social media. However, If I could change my password using forgotten password the so could scammer. I don't replicate any passwords across different sites.

I noticed the previous quoted link to VM phishing reports is broken. Have never been able to forward suspcious emails or contents because VM immediately stop the email being sent as spam.