Virgin Media Virgin Media Community

Teknophobe · ‎07-04-2022

I received the below email 3 days ago and have followed all of the instructions at https://www.virginmedia.com/help/security/why-is-my-virgin-media-email-hacked

(I've removed the password and my email address from the below mail but the password was correct!!!? the email was sent to me from my own email address 😞 ). I've also forwarded the mail to report phishing at uk gov etc

I've scanned my computer - no malware found, no forwarding instructions ... so how the hell did they get hold of my password?? None of my non VM accounts (with different passwords) have been hacked (so far). I know VM had a security breach in 2020 but claimed no passwords were stolen. If they didnt get my password from me .. and I dont think they did, they must have got it from VM? Fortunately, no damage (so far) - have you seen anything like this before?

Thanks

Teknophobe

Date: 01 May 2030 at 08:15
Subject: ALERT! I'm hacked you and stolen you information

Hey

I have to share bad news with you.

Approximately few months ago I have gained access to your devices, which you use for internet browsing.
After that, I have started tracking your internet activities.
Some time ago I hacked you and got access to your email accounts

address deleted
Obviously, I have easily hack to log in to your email.

Your password: (deleted)

One week later, I have already installed Trojan virus to Operating Systems of all the devices that you use to access your email.
In fact, it was not really hard at all (since you were following the links from your inbox emails).
All ingenious is simple. 😃
This software provides me with access to all the controllers of your devices (e.g., your microphone, video camera and keyboard).
I have downloaded all your information, data, photos, web browsing history to my servers.
I have access to all your messengers, social networks, emails, chat history and contacts list.
My virus continuously refreshes the signatures (it is driver-based), and hence remains invisible for antivirus software.

Likewise, I guess by now you understand why I have stayed undetected until this letter...

While gathering information about you, I have discovered that you are a big fan of adult websites.
You really love visiting porn websites and watching exciting videos, while enduring an enormous amount of pleasure.
Well, I have managed to record a number of your dirty scenes and montaged a few videos, which show the way you **bleep** and reach orgasms.

If you have doubts, I can make a few clicks of my mouse and all your videos will be shared to your friends, colleagues and relatives.
I have also no issue at all to make them available for public access.
I guess, you really don't want that to happen, considering the specificity of the videos you like to watch, (you perfectly know what I mean) it will cause a true catastrophe for you.

Let's settle it this way:
You transfer $400 USD to me (in bitcoin equivalent according to the exchange rate at the moment of funds transfer), and once the transfer is received, I will delete all this dirty stuff right away.
After that we will forget about each other. I also promise to deactivate and delete all the harmful software from your devices. Trust me, I keep my word.

This is a fair deal and the price is quite low, considering that I have been checking out your profile and traffic for some time by now.
In case, if you don't know how to purchase and transfer the bitcoins - you can use any modern search engine.

Here is my bitcoin wallet: bc1qc7uw3ll3zj83c0jk5cryduns6f3rlju3ac4v6p

Things you need to avoid from doing:
*Do not reply me (I have created this email inside your inbox and generated the return address).
*Do not try to contact police and other security services. In addition, forget about telling this to you friends. If I discover that (as you can see, it is really not so hard, considering that I control all your systems) - your video will be shared to public right away.
*Don't try to find me - it is absolutely pointless. All the cryptocurrency transactions are anonymous.
*Don't try to reinstall the OS on your devices or throw them away. It is pointless as well, since all the videos have already been saved at remote servers.

Things you don't need to worry about:
*That I won't be able to receive your funds transfer.
- Don't worry, I will see it right away, once you complete the transfer, since I continuously track all your activities (my trojan virus has got a remote-control feature, something like TeamViewer).
*That I will share your videos anyway after you complete the funds transfer.
- Trust me, I have no point to continue creating troubles in your life. If I really wanted that, I would do it long time ago!

Everything will be done in a fair manner!

One more thing... Don't get caught in similar kind of situations anymore in future!
My advice - keep changing all your passwords on a frequent basis

Bossman2 · ‎10-11-2023

Ive just checked and I think thats something the company itself needs to do

goslow · ‎10-11-2023

If you have been a victim yourself, you can report to ICO as an individual (you mention on page 1 above you had an account taken over)

https://ico.org.uk/make-a-complaint/data-protection-complaints/data-protection-complaints/

You do have to have complained to VM first of all using VM's formal complaints process

https://www.virginmedia.com/help/complaints

Chances are the VM complaint will be turned around quickly with a nonsense gobbledegook 'resolution' which will allow you to proceed to ICO.

The ICO is certainly not quick (a process likely to last months rather than weeks) but I found them useful in the past where they were able to act on a data protection issue for me where the company involved was simply ignoring all contact. After the company was contacted by the ICO, the matter was resolved within a week or two.

Bossman2 · ‎10-11-2023

The issue with this is that there is no cast iron proof due to the fact the email addresses have already been breached externally, this is something Virgin need to sort out internally if they actually value their customers, it wouldn't be that difficult for them to do, they simply need to collate a list of all the people who've had this template then get the IT department to see who has accessed the accounts and if its one person doing it, the name will stand out, even 2 or 3 people would stand out.

If they had any integrity as a company, this would already have been done behind closed doors or maybe now I've explained the process and resolution they may have a lightbulb moment and investigate but I'm not holding my breath on that one

goslow · ‎10-11-2023

Your earlier posts suggest you have evidence that the mechanism for access is an internal one within VM.

If you believe that your account has been accessed through illegal activity, which you suggest is due to the involvement of VM employees, then a third-party investigation by ICO is the only way to go.

You should put your evidence before the ICO and let the ICO do its work.

Bossman2 · ‎10-11-2023

I'll do it this evening when I'm home as it will be a lengthy message with my findings

Sabrina_B · ‎11-11-2023

Hi @Bossman2 👋.

Thanks for reaching out to us. Apologies for the issues that your email address. We can certainly assist you, we would need to bring you in for a private message to discuss this and resolve.

Please look out for the envelope on the top right of your web browser or if you are using a mobile device, it will be located under your profile icon.

Thanks.

Sabrina

Bossman2 · ‎11-11-2023

Hi Sabrina, the whole Virgin account has since been closed down as it was my partners account, I now have my own account, if you want any I fo about this, send me a DM and i'll be happy to discuss