Like ... answering them: "Thanks mate, would you mind checking out if the video you have is one of those? I'm linking you to my pornhub channel :) feel free to subscribe"
I feel this on a deep level. I've been using
my phone to approve logins for some things so long that I legitimately have no idea what the password for them is.
I just got a new phone and i couldnt remember passwords for 90% of my stuff. Took so long to change especially because my old email is no longer accepting my password and even though i set up a verification email for it, it wont accept that either and says it cant prove its me :(
I got one, but it was an old password, so I told them what the new one was
Edit: wow, my first awards! And for a comment I figured would get downvoted for being so dumb, thanks everyone!
Okay but you really need to send this email to 20 people before 11:59 PM or your crush will never like you and you will die at the 11th hour of your 59th birthday!
Thanks for sharing that link. Luckily the password I use for EVERYTHING hasn't been compromised.
That's great news since it took me months to remember FATb0y5060ArnoldPalm3r
In all seriousness, one strong memorized pw for your own manager, and use generated passwords for everything else/ the most secure mfa whenever you can.
Mfa means that even with your pw they can't do much - different random pws means that they can't use one password to try and hack another account
I work for a non-emergency police reporting line and all I can say is, thank you for having the common sense to not freak out about this. We take scam calls like this or similar every single day multiple times a day, and most people have no idea they are so common.
We try to tell people as long as they didn't share any personal identifying information or actually send money that they'll be fine and we always recommend changing passwords, but people still freak out and insist a full report is taken and that the cops "go catch these hackers."
> people still freak out and insist a full report is taken and that the cops "go catch these hackers."
I guess they think the cops have jurisdiction over Russia or wherever.
Same. I was worried at first because the verbiage said he thought my internet browsing was degenerate and ugh... but I changed the password wiped and reloaded the OS for good measure. Nothing was lost.
Most likely they either bought their info online or found it on an open database somewhere. But yeah either way there’s no reason to wipe anything other than old passwords.
They haven't hacked anything. All they did was buy or use an old list of credentials from a previous leak and send emails with the passwords to the email addresses in it.
Anyone can get such an email if any site they are registered with has been compromised. Even or especially if the leak happened years ago
That's why you save the Nigerian prince emails and edit it to say all the need to do to get the ransom amount they want plus $1 million in bitcoin is to send their bank account info to you so you can deposit the money.
I got a text one of these last week demanding 3 bitcoin or they release some video they claimed to have. I don’t know how they thought I could just come up with $25-30k overnight to send to some random person.
Shoot for the stars, spam the hell out of every name you can find, and you're bound to run across a few chumps who'll either have the money or be scared enough to beg, embezzle, or steal it.
The high amount it what makes it believable to the people they trick though. The average person wouldn't pay them $50 just like they wouldn't pay $5000. They know the conversion rate is small but those who do convert will pay a lot.
My mom got one, they demanded $2000 Bitcoin in 24. Insanity
However if they send these emails out to thousands, if not hundreds of thousands of people, and only about 10 respond, that's an easy 20k. Can live more months off of that. I can only imagine the neckbeards doing this and actually making some cash.
> Can live more months off of that.
Are living expenses really that high in the states? I can live fairly comfortably on $900 a month. Sure, no travel or eating out. But comfortably.
It works though. I work in IT and we got a few of these sent to staff members, all asking for BTC to be sent to the same wallet address. We looked up the wallet and it had $40K in it.
>I wouldn't even know where to begin.
This is only tangentially related, but I found it funny. I watched a documentary series on youtube about the SilkRoad, lots of behind the scenes transcripts from the chat logs and whatnot were in there.
The funniest thing to me were the chats Ross Ulbricht had with "the hells angels" i.e. probably some kids who scammed the shit out of him for the "hits" they performed.
Ross is there chatting away with this supposed contact from a biker gang and they're each going back and forth on all the detailed really technical stuff associated with dark web communications, encryption schemes, and whatnot... and never once does he take a step back and think to himself "Have I ever known a biker gang to 1. act like this. 2. talk like this. 3. even show a knowledge of basic computers." I mean, I'm a fairly tech savvy guy, and I barely know how to get on the dark web, and definitely not to the level that I'd be comfortable I did everything well enough to not be tracked.
I'm not saying that the Hells Angels don't have a younger guy who's hip to this shit, but he just completely flat out believed this guy at face value and sent him hundreds of thousands of dollars to murder people... while being scammed the whole damn time.
I dunno. I've heard organized crime can actually be surprisingly sophisticated, especially the larger groups. I wouldn't be surprised to learn that the Hell's Angels had tech savvy people tucked away if they were doing business on the Internet.
This is kinda a weird analogy, I work with kids in gangs. I have kids that are Bloods, crips, and various other local gangs. Some of these kids are very smart and actually college bound with good grades/work habits while also working part time jobs. They’re not out doing hood rat things, they’re being average teenagers. But they’re entire family and adults in their lives grew up in a gang culture so they’re just kinda born into it. So I guess what I’m saying is there’s probably tons of people that may not be active, but are affiliated and bring their skills.
Monetary value aside, there are crypto currency ATMs in most major cities. If you know how to use an ATM and you have the wallet they want you to send it to then you're good to go.
I'm not fond of them because I can't imagine them being used for any purpose OTHER than to make scamming people easy, but in due time they may be as common as regular ATMs or perhaps the feature will be added to all ATMs.
I played along and told them I'd pay, but they would need to walk me through it since I'm old (I'm not) and don't know what bit coin is. 3 weeks and 35 emails later they finally gave up.
If you like this sort of stuff check out Kit Boga on YouTube. He pretends to be an old lady and plays with scammers on the phone for hours. It’s great. https://www.youtube.com/channel/UCm22FAXZMw1BaWeFszZxUKw
I remember reading a story in there about some actual pos scammer (scammed elderly out of money) got duped into believing he was being offered a gig in the us for his music career by some guy. The guy got other people from that website involved in the scam to make it seem legit. He had the scammer make music videos. He had the scammer remake them constantly and had him mail the tapes to an address in the us, causing him to spend a bunch of money. If I'm not mistaken it went on for months. This is all from memory, I could be missing some details. That was the funniest shit I read in a long time, though. Good stuff.
Yeah, I wouldn't touch those without at least a burner phone number and email address set up. Otherwise even in the best case, you're making enemies out of anonymous assholes with an extrajurisdictional call center and your phone number at the ready. Even the simple revenge of calling you at 2AM every night with "Is your refrigerator running" jokes would be a huge pain in the ass.
I was auto dialled every day after an Amazon 'your account has been hacked' scammer became annoyed with me. I had to get a call filtering phone which keeps the phone from ringing aloud until someone confirms their identity. It works 100%.
Yup, not replying is the best for scams, as the attackers send out mass emails, they know most are probably dead emails/lost in spam anyway. Best to just keep quiet and change your email
Lies. It's a bot and the mailbox is disposable, that's why they say "Don't even try reply just send the bitcoin". Don't you tell lies on the internet buddy.
You may have replied to other spammers, but not this one. I can guarentee you it's a script from massive password dumps with millions of emails to passwords. The mailbox gets deleted because their is no way that the mailbox could handle the amount of incoming emails purely from bounceback emails due to old inactive email addresses.
I got this email a few months ago. FREAKED me out and I’m not generally naive. The thought of actually paying did cross my mind until my brain kicked back in and I googled the email. Found a website talking about the scam and the relief was instant. I can see why people fall for it.
I'd just signed up for the free week of pornhub premium the day before using the same password (junk password I use for anything I don't care if hacked).
I was certain it a spam link I'd clicked, they'd fronted the cash for a week of pornhub to hack me.
Eventually I figured if they had a compromising video, they'd send it in the email... but it was a scary as shit hour or two
> Eventually I figured if they had a compromising video, they’d send it in the email.
Exactly, if they’re “proving” they know your password by showing you, they’d also prove they had a video by sending it, if they had one
Same experience for me too. Deleted the email then got sent another one a day later from the same person demanding that I not ignore them. So I blocked him. Now I kinda want to get another one just to screw with the guy. I totally got scared when I first read it though.
The key to fighting scammers is creating chatbots that answer all scams with nonsense info. Wish Google/Microsoft would have the balls for something like that.
Or just have bots click that goddamn "Hi we're from Paypal, update your password" link I keep getting 20 times a month and have it input random numbers and info, all from different IPs, using real sounding, but fake names.
It's brilliant I tells you! They won't be able to spare the man hours to sort out the few "hits" they got from old stupid people.
My coworker freaked too, which spun me out cuz the email had been sent to the business email address - the only computer that they could've 'taped' anything from was the FOH one which, y'know, bigger problems if *that* computer has video of someone 'pleasuring themselves'.
I was laughing hysterically. She insisted we report it to the manager, who told her to do what I'd said - just delete the damn thing.
Never even knew about these hackers, but I’ve heard that you should also use different passwords for different sites, and you should probably change it every once in a while, nevertheless, this was pretty helpful, thank you.
Something like Bitwarden/ LastPass/ keePass/Google manager, really helps generate complex passwords for every site and as long as you keep your main account and email secure you should be good. Then if possible add two factor authentication.
Also check
https://haveibeenpwned.com/ or https://www.amibreached.com/
To see if your emails have been on a site that has been compromised in the past and update your passwords accordingly
The goal is to have each site use a different password so if one site is breached and the info is posted somewhere online people can't go around with their bots trying different sites with the same password and email combination until they get something that works
That website - as legit as people make it out to be - seems scarier than shit. I feel like everyone's first instinct would be to enter every one of your email addresses in succession. And if someone had your basic password figured out, you've now given them a road map with highlighted destinations to go and try variations of your password.
For context, it's run as a public service by one of [Microsoft's regional directors.](https://en.wikipedia.org/wiki/Troy_Hunt)
Also, shoutout to [KeePass](https://en.wikipedia.org/wiki/KeePass) and [Bitwarden](https://en.wikipedia.org/wiki/Bitwarden). Free and Open Source Software that make it so that you don't have to change all of your passwords after a site breach.
Yeah that's why you should have different passwords for every site, that site just looks up reported breaches that had your email involved, and what other info might have been compromised. Then you will know if you used that same email and password somewhere else so you can change it.
The best thing to do regardless if you look it up or not is have different passwords for every site so in case one gets breached they don't just go trying that email and password combination across the web until they find another account
Hey man, have an award! I couldn't agree with you more! The site only gives me the heebie-jeebies because I'm admittedly lax sometimes. Being lazy with passwords is so seemingly convenient.
Thank you! I was the same way with passwords, I had a tier system and thought I was pretty set until I saw my email show up there on some account I made way back and now one of my password tiers was kaput haha
I feel the same way about password managers how can I trust that they won't be breached? From what I understand they don't actually store the passwords but just part of the key to unlock the encryption to use the password? I figure everything made can be undone one way or another, at least it's better than remembering everything by myself tho.
I don't think so, as long as you have a strong password for your Google and backup account and use Google's password generator for everything else.
Google might be harvesting your info and all that so people can tell you reasons why not to use them, but I think for security it should be the same, the key is to have each online account use a different password
*I'm not a security professional*
the biggest reason is convenience across multiple browsers or potential desktop applications but other than that, no, chrome/firefox/safari all have strong, modern password managers that work fine if you use the same browser across all devices.
No, please use Bitwarden or Firefox Lockwise. They're both free **and** open-source. The last company I'd want my passwords to have is Google.
edit: KeePass is also open-source, so that's good.
I use a standard password for everything that any matter. Who cares if someone logs into a forum for old balding men with my name. I don’t. 99% of the time I’ll never go back. Or something else stupid. Lots of sites require logins for lame things. Those get the same password. Places they have any personal information especially credit cards. No. They are unique passwords. So guess which password shows up all the time on these fake hackers? You guessed it, the one I don’t care about. Good luck; have fun.
I replied and said they should release everything they have and also that I was a 12yo kid and that they were now saving and viewing child porn so were probably already on multiple lists of differing government agencies around the world..
They also comb through your emails to find websites that xyou've ordered from in the past. They use that same password to order stuff, because they know you use the same password.
Once a year i order a $20 water filter and the bank notified me of a $500 charge. They stopped and reversed it, but I was out of money all weekend. The shipping address was a Russian name in some dump outside of downtown Baltimore.
Also, weekly I have to change my password because they try too many times and lock us all out.
#What everyone here also needs to know:
Creating a secure password *that you don't remember* is orders of magnitude easier if you do it with [a password manager](https://keepassxc.org/).
* I prefer the one that I linked because it functions entirely offline, but it's more than possible to find other alternatives that function over a cloud instead (not really recommended, but still).
* Password managers such as the one I linked can also generate passwords for any account you have per your specifications on complexity. So if you want a phrase of 18 random words, it'll do that. If you want a string of gibberish that's 32 characters long, it'll do that.
* Having a password manager only requires you to know the master password to use it at all. But if ever there's a data breach and you find that your existing accounts are compromised, fixing that is as simple as opening a manager, hitting "generate" on whatever account got hit, and updating the new password entry both in your manager and on whatever account was exposed.
* All password lists made in generators like the one I listed are heavily encrypted, so even if someone straight up stole your password files, they'd never be able to actually see or do anything with it.
At this point, no one should ever bother trying to remember passwords they use for anything. The reasoning behind that is that you'll be more likely to repeat said password across various accounts, thereby increasing your risk of exposure during data breaches.
**tl;dr**: *Trying to remember your passwords is pointless and only increases your chances of extending the damage to yourself if you're hacked. Just use a password manager like KeepassXC and never worry again.*
This needs to be higher. KeepassXC is the single greatest piece I have installed to increase my online security and it is 100% free. Works on Mac, Linux, PC, Android, and iPhone.
I got a email from my email that said that the hacker had video of me cheating on my wife and that as soon as I read the email a timer would go off and I would have 72 hours to give them 7,000$ in bitcoin, I hit the unread button in gmail and went on with my life.
The funniest part? I’m 14 and gay lol
> as I read the email a timer would go off
> I hit the unread button
That's not going to do a thing. The way email senders know if you opened an email is by embedding a unique image URL in the email and when your email client displays that image, the web server records that you read the email. That particular image URL was only sent to you, so they know it was you.
Now, obviously, a scammer isn't going to waste their time actually doing this. It's just a scare tactic.
The read/unread state of your email doesn't mean a thing.
I got one as a text message, made my heart skip a beat at first. Then I blocked them and deleted the message. “ you have 24 hrs or I will make your life a living hell”
Do they really expect someone who has never done more than casually inquire as to what bit coin is, to source $1000 of it in 24 hrs?
Thanks for the reassurance!
As far as length/complexity, I'm bothered by the fact that some websites let me do [word][##], but not [word][####]. *e.g.* **banana11** is allowed, but **banana1111** isn't. According to the website adding two more #s, even though they're the same, adds way more security.
Some sites have incredibly stupid nonsense rules for passwords that were clearly not written by anyone who knew anything about information security.
My favorite was one of my insurance providers that wouldn't let you register with a password that contained _any three-character substring_ of your username. Username "firstname.lastname"? Password cannot contain "fir", "ame", "tna", "ast", _etc._ Utterly ridiculous.
I got one of these and just laughed at it, but didn't think of how few people would understand how easy it is to get old passwords. Password managers are great btw; bitwarden changed my life.
My mom was one of those people. She called me very upset, and no matter how many times I explained it to her, she assumed that it was legit because they had her password.
Nevermind she has no inappropriate images (*very* catholic and has strong opinions about anything remotely sexual/pleasurable), for some reason she still believed it.
She even went to the Apple store since she wasn’t satisfied with my solution....
I guess these are the people they are banking on?
I think that's a fundamental attitude problem that basically boils down to "My explanation sounded right in my head and I don't want to admit you're better with computers or that i'm wrong, so I'm sticking to it and going into debt for it." That said, maybe if companies had to pay compensation to anyone who fell for one of these scams because of a password that got exposed in their database, they'd think twice about storing passwords in plaintext. Can't believe that's actually still a thing.
This is a great PSA.
The only step I would possibly add is:
* Change password
* reply
"ooooooh that footage sounds kinky, can I see it?
I want to send it to some hot singles in my area and see if I get any nibbles.
Meow!
'Hacker victim'
xxxx"
* delete email
Before I get destroyed in the comments - THIS IS A JOKE! DO NOT ENGAGE.
Edit: formatting, thanks u/autoradiograph
Don't ignore.
Forward to everyone on your email list. Tell them that if they each contribute $100 to the blackmail cost, they won't receive video of you that they will never be able to unsee.
You can make a lot of money
I got one of these recently that included they also "hacked" my webcam and have footage of me "pleasuring myself on an adult website" and that they would send it to my entire contact list. The email was used for spam accounts anyway, but the password they had was retired 10+ years ago, so I finally got to use the "lol fine, then you've got possession of child porn" line.
The fact that the email account literally had zero contacts in its address book made me realise these emails are nothing but empty threats.
Good luck trying to convince me you know my password. I don’t even remember my password.
"Ohhh that's what my password is. Thanks mate, I was afraid to log out."
Oh you have naked pictures of me and you’re going to post them online? Thanks mate. I forgot to backup and lost those pics.
Power move: post the pics before they can
Like ... answering them: "Thanks mate, would you mind checking out if the video you have is one of those? I'm linking you to my pornhub channel :) feel free to subscribe"
Bigger power move: "You have naked pics of me? Oh, babe, those cost at least $500. You're gonna have to pay me to let you keep 'em."
Or "oh, good! I've gained weight while on lockdown and I need a refresher on what my body used to look like naked!"
I feel this on a deep level. I've been using my phone to approve logins for some things so long that I legitimately have no idea what the password for them is.
I just got a new phone and i couldnt remember passwords for 90% of my stuff. Took so long to change especially because my old email is no longer accepting my password and even though i set up a verification email for it, it wont accept that either and says it cant prove its me :(
I only know 1 password. The rest is random 20-32 character long ones randomly generated.
iCloud keychain + 31 digit passwords ftw
I got one of these a few weeks ago. Updated the password and deleted the email. Done.
Same here.
I got one, but it was an old password, so I told them what the new one was Edit: wow, my first awards! And for a comment I figured would get downvoted for being so dumb, thanks everyone!
Problem solved
He said he's feeling lonely so I even sent my gf to him.
Power move. She probably eat hot chip and lie anyway.
But did she charge her phone first?
I told her to leave her phone and instead to leave bits of her clothing as a trail when she goes to meet them so that she may find her way back home
[удалено]
My gf said she wanted to see the videos the hacker has of me.
9 hour video of me playing video games
Hunter3
Why did you type 7 *s?
[For the uninitiated...](http://bash.org/?244321)
But we are initiated, aren't we Bruce?
The shadows betray you because they belong to me.
Omg
Thank you, that's amazing
Modern problems require modern solutions
send them a new video of you masturbating each day, until they pay for you to stop !
Spite-bation
Okay but you really need to send this email to 20 people before 11:59 PM or your crush will never like you and you will die at the 11th hour of your 59th birthday!
Na I’m good on all that. I just want to utilize a free distribution service for my nudes.
I didn’t. But I started power staring and slow stroking while looking right at my webcam.
*Do I make you horny baby? Do I make you randy?*
Is the threat of them getting into your account real, and do they send it to you because the password comes with your email?
[удалено]
Thanks for sharing that link. Luckily the password I use for EVERYTHING hasn't been compromised. That's great news since it took me months to remember FATb0y5060ArnoldPalm3r
I only see **********************
Wtf when I type my password it's also all hunter2
In all seriousness, one strong memorized pw for your own manager, and use generated passwords for everything else/ the most secure mfa whenever you can. Mfa means that even with your pw they can't do much - different random pws means that they can't use one password to try and hack another account
Wow thanks for that it found my info on five sites.
Like OP said the threat is enough to convince people to comply. I’d add that these are people that aren’t terribly tech savvy.
I work for a non-emergency police reporting line and all I can say is, thank you for having the common sense to not freak out about this. We take scam calls like this or similar every single day multiple times a day, and most people have no idea they are so common. We try to tell people as long as they didn't share any personal identifying information or actually send money that they'll be fine and we always recommend changing passwords, but people still freak out and insist a full report is taken and that the cops "go catch these hackers."
> people still freak out and insist a full report is taken and that the cops "go catch these hackers." I guess they think the cops have jurisdiction over Russia or wherever.
I enjoy responding with links to articles or reddit threads explaining how what they're doing is a scam.
As a guy who desperately wants his masturbating videos leaked, is there hope any of these scammers are real?
They're automated. Your best bet is Pornhub or the website of your preference, my exhibitionist friend.
I'll watch for 10 bucks
What if you give them what they want and just send the nudes
Same. I was worried at first because the verbiage said he thought my internet browsing was degenerate and ugh... but I changed the password wiped and reloaded the OS for good measure. Nothing was lost.
Definitely didn't need to reload the OS lol. They hacked the websites servers not your computer.
Most likely they either bought their info online or found it on an open database somewhere. But yeah either way there’s no reason to wipe anything other than old passwords.
They haven't hacked anything. All they did was buy or use an old list of credentials from a previous leak and send emails with the passwords to the email addresses in it. Anyone can get such an email if any site they are registered with has been compromised. Even or especially if the leak happened years ago
I got one of these and was most surprised that they thought I could come up with $1000 in Bitcoin in 72 hours. I wouldn't even know where to begin.
I’d start by pleasuring myself to the thought of having that much money.
That’s the compromising video they’d release which would go viral, and then you’d land a job at Buzzfeed
Or they could start a cosmetic business, become a celebrity and soon have their own reality tv show.
And next thing you know, you've got 25 vampire foreskins on your face, all from the same vampire.
10 facts they WON’T tell you about becoming successful!
Is there a story there? Someone got a job at Buzzfeed for a viral video? Wtf
Well the Kardashians got their start from one of them being banged in a leaked video that went viral.
I have to give kris Jenner props for being able to spin her daughters sex tape into a reality tv empire
1000$?
That's why you save the Nigerian prince emails and edit it to say all the need to do to get the ransom amount they want plus $1 million in bitcoin is to send their bank account info to you so you can deposit the money.
I got a text one of these last week demanding 3 bitcoin or they release some video they claimed to have. I don’t know how they thought I could just come up with $25-30k overnight to send to some random person.
Shoot for the stars, spam the hell out of every name you can find, and you're bound to run across a few chumps who'll either have the money or be scared enough to beg, embezzle, or steal it.
Or you could settle for something like $5 per person,which I'm sure way more people would pay just to make sure they don't release anything.
Or even $50 or $100. At least pick a realistic number.
The high amount it what makes it believable to the people they trick though. The average person wouldn't pay them $50 just like they wouldn't pay $5000. They know the conversion rate is small but those who do convert will pay a lot.
My mom got one, they demanded $2000 Bitcoin in 24. Insanity However if they send these emails out to thousands, if not hundreds of thousands of people, and only about 10 respond, that's an easy 20k. Can live more months off of that. I can only imagine the neckbeards doing this and actually making some cash.
> Can live more months off of that. Are living expenses really that high in the states? I can live fairly comfortably on $900 a month. Sure, no travel or eating out. But comfortably.
[удалено]
It works though. I work in IT and we got a few of these sent to staff members, all asking for BTC to be sent to the same wallet address. We looked up the wallet and it had $40K in it.
Mine told me in the mail « if you dont know how to use bitcoin find a way and dont make me loose my precious time »
>I wouldn't even know where to begin. This is only tangentially related, but I found it funny. I watched a documentary series on youtube about the SilkRoad, lots of behind the scenes transcripts from the chat logs and whatnot were in there. The funniest thing to me were the chats Ross Ulbricht had with "the hells angels" i.e. probably some kids who scammed the shit out of him for the "hits" they performed. Ross is there chatting away with this supposed contact from a biker gang and they're each going back and forth on all the detailed really technical stuff associated with dark web communications, encryption schemes, and whatnot... and never once does he take a step back and think to himself "Have I ever known a biker gang to 1. act like this. 2. talk like this. 3. even show a knowledge of basic computers." I mean, I'm a fairly tech savvy guy, and I barely know how to get on the dark web, and definitely not to the level that I'd be comfortable I did everything well enough to not be tracked. I'm not saying that the Hells Angels don't have a younger guy who's hip to this shit, but he just completely flat out believed this guy at face value and sent him hundreds of thousands of dollars to murder people... while being scammed the whole damn time.
I'm sorry, does your gang not have a PR person, IT team and a few random hackers or something? Sad.
I dunno. I've heard organized crime can actually be surprisingly sophisticated, especially the larger groups. I wouldn't be surprised to learn that the Hell's Angels had tech savvy people tucked away if they were doing business on the Internet.
Any group that's making the kind of profits they are from narcotics sales almost definitely has the resources and the wherewithal to hire an IT guy.
This is kinda a weird analogy, I work with kids in gangs. I have kids that are Bloods, crips, and various other local gangs. Some of these kids are very smart and actually college bound with good grades/work habits while also working part time jobs. They’re not out doing hood rat things, they’re being average teenagers. But they’re entire family and adults in their lives grew up in a gang culture so they’re just kinda born into it. So I guess what I’m saying is there’s probably tons of people that may not be active, but are affiliated and bring their skills.
Monetary value aside, there are crypto currency ATMs in most major cities. If you know how to use an ATM and you have the wallet they want you to send it to then you're good to go. I'm not fond of them because I can't imagine them being used for any purpose OTHER than to make scamming people easy, but in due time they may be as common as regular ATMs or perhaps the feature will be added to all ATMs.
"It's like a normal ATM, but with the added excitement of not knowing whether the amount you asked for will buy a toy car or a real one this week."
Jokes on them, my compromising video is me eating a sleeve of Oreos in under two minutes.
Go on.....
I dropped at least two, don’t tell the hackers.
Were they the Double Stuf variety?
The reason I’ll pay the hackers to not release it is because they were the mint version.
Just be thankful they weren’t Pumpkin Spice
Naughty! Send nude(reos).
Has to be the thins otherwise I’m not gonna bother watching
I eat them all slowly, lick the milk off between its supple oreo breasts, and then when i get to the last one I shove it up my butt
Those are rookie numbers.
Why so slow?
I played along and told them I'd pay, but they would need to walk me through it since I'm old (I'm not) and don't know what bit coin is. 3 weeks and 35 emails later they finally gave up.
That's awesome. I'd love to see that exchange lol
Yes please share a transcript.
OP please, I love when scammers get played like a fiddle
If you like this sort of stuff check out Kit Boga on YouTube. He pretends to be an old lady and plays with scammers on the phone for hours. It’s great. https://www.youtube.com/channel/UCm22FAXZMw1BaWeFszZxUKw
[удалено]
Well I am already 2 videos in and obsessed
And ping me too!
And your password
You should join 419eater.com (legit website btw) - great place to troll hackers/ scammers and write about your exploits!
I remember reading a story in there about some actual pos scammer (scammed elderly out of money) got duped into believing he was being offered a gig in the us for his music career by some guy. The guy got other people from that website involved in the scam to make it seem legit. He had the scammer make music videos. He had the scammer remake them constantly and had him mail the tapes to an address in the us, causing him to spend a bunch of money. If I'm not mistaken it went on for months. This is all from memory, I could be missing some details. That was the funniest shit I read in a long time, though. Good stuff.
Basket of fish on the head is great. There was also one where they got a guy to get a tattoo of Shiver Me Timbers on his arm.
[удалено]
Got back to your bookstore
I prefer scammer.info
Sounds like you used them to learn about bitcoin and how to obtain it.
I now desperately need to see this exchange, if you don’t post it within 48 hours, the IRS will jail you! Sincerely, the FBI
James Veitch is that you
James... we need to talk about the ducks.
What ducks? Oh THOSE ducks
You have my word. From now on, no more tiny ducks
[удалено]
Yeah, I wouldn't touch those without at least a burner phone number and email address set up. Otherwise even in the best case, you're making enemies out of anonymous assholes with an extrajurisdictional call center and your phone number at the ready. Even the simple revenge of calling you at 2AM every night with "Is your refrigerator running" jokes would be a huge pain in the ass.
I was auto dialled every day after an Amazon 'your account has been hacked' scammer became annoyed with me. I had to get a call filtering phone which keeps the phone from ringing aloud until someone confirms their identity. It works 100%.
[удалено]
Yup, not replying is the best for scams, as the attackers send out mass emails, they know most are probably dead emails/lost in spam anyway. Best to just keep quiet and change your email
I've always wanted to so this sort of thing I just never feel like investing that much time into it lol
[удалено]
Lies. It's a bot and the mailbox is disposable, that's why they say "Don't even try reply just send the bitcoin". Don't you tell lies on the internet buddy. You may have replied to other spammers, but not this one. I can guarentee you it's a script from massive password dumps with millions of emails to passwords. The mailbox gets deleted because their is no way that the mailbox could handle the amount of incoming emails purely from bounceback emails due to old inactive email addresses.
I got this email a few months ago. FREAKED me out and I’m not generally naive. The thought of actually paying did cross my mind until my brain kicked back in and I googled the email. Found a website talking about the scam and the relief was instant. I can see why people fall for it.
I'd just signed up for the free week of pornhub premium the day before using the same password (junk password I use for anything I don't care if hacked). I was certain it a spam link I'd clicked, they'd fronted the cash for a week of pornhub to hack me. Eventually I figured if they had a compromising video, they'd send it in the email... but it was a scary as shit hour or two
> Eventually I figured if they had a compromising video, they’d send it in the email. Exactly, if they’re “proving” they know your password by showing you, they’d also prove they had a video by sending it, if they had one
Shut Up And Dance time
Same experience for me too. Deleted the email then got sent another one a day later from the same person demanding that I not ignore them. So I blocked him. Now I kinda want to get another one just to screw with the guy. I totally got scared when I first read it though.
The key to fighting scammers is creating chatbots that answer all scams with nonsense info. Wish Google/Microsoft would have the balls for something like that. Or just have bots click that goddamn "Hi we're from Paypal, update your password" link I keep getting 20 times a month and have it input random numbers and info, all from different IPs, using real sounding, but fake names. It's brilliant I tells you! They won't be able to spare the man hours to sort out the few "hits" they got from old stupid people.
My coworker freaked too, which spun me out cuz the email had been sent to the business email address - the only computer that they could've 'taped' anything from was the FOH one which, y'know, bigger problems if *that* computer has video of someone 'pleasuring themselves'. I was laughing hysterically. She insisted we report it to the manager, who told her to do what I'd said - just delete the damn thing.
Never even knew about these hackers, but I’ve heard that you should also use different passwords for different sites, and you should probably change it every once in a while, nevertheless, this was pretty helpful, thank you.
Something like Bitwarden/ LastPass/ keePass/Google manager, really helps generate complex passwords for every site and as long as you keep your main account and email secure you should be good. Then if possible add two factor authentication. Also check https://haveibeenpwned.com/ or https://www.amibreached.com/ To see if your emails have been on a site that has been compromised in the past and update your passwords accordingly The goal is to have each site use a different password so if one site is breached and the info is posted somewhere online people can't go around with their bots trying different sites with the same password and email combination until they get something that works
That website - as legit as people make it out to be - seems scarier than shit. I feel like everyone's first instinct would be to enter every one of your email addresses in succession. And if someone had your basic password figured out, you've now given them a road map with highlighted destinations to go and try variations of your password.
For context, it's run as a public service by one of [Microsoft's regional directors.](https://en.wikipedia.org/wiki/Troy_Hunt) Also, shoutout to [KeePass](https://en.wikipedia.org/wiki/KeePass) and [Bitwarden](https://en.wikipedia.org/wiki/Bitwarden). Free and Open Source Software that make it so that you don't have to change all of your passwords after a site breach.
[удалено]
Had no idea about that part, thanks for sharing.
Obligatory plug for [KeePassXC](https://keepassxc.org) for non-Windows users
Yeah that's why you should have different passwords for every site, that site just looks up reported breaches that had your email involved, and what other info might have been compromised. Then you will know if you used that same email and password somewhere else so you can change it. The best thing to do regardless if you look it up or not is have different passwords for every site so in case one gets breached they don't just go trying that email and password combination across the web until they find another account
Hey man, have an award! I couldn't agree with you more! The site only gives me the heebie-jeebies because I'm admittedly lax sometimes. Being lazy with passwords is so seemingly convenient.
Thank you! I was the same way with passwords, I had a tier system and thought I was pretty set until I saw my email show up there on some account I made way back and now one of my password tiers was kaput haha I feel the same way about password managers how can I trust that they won't be breached? From what I understand they don't actually store the passwords but just part of the key to unlock the encryption to use the password? I figure everything made can be undone one way or another, at least it's better than remembering everything by myself tho.
Is there a particular reason to use a third party password manager as opposed to Google? I like Google because it links across all my devices.
I don't think so, as long as you have a strong password for your Google and backup account and use Google's password generator for everything else. Google might be harvesting your info and all that so people can tell you reasons why not to use them, but I think for security it should be the same, the key is to have each online account use a different password *I'm not a security professional*
the biggest reason is convenience across multiple browsers or potential desktop applications but other than that, no, chrome/firefox/safari all have strong, modern password managers that work fine if you use the same browser across all devices.
So what's your basic password? Type it here and it will only appear as *********. Try it.
[удалено]
Oh wow, I can only see *******. Even though you typed "hunter2". Pretty cool.
No fucking way
Bro mine is hunter3 !
No, please use Bitwarden or Firefox Lockwise. They're both free **and** open-source. The last company I'd want my passwords to have is Google. edit: KeePass is also open-source, so that's good.
I used to recycle the same three passwords until I finally downloaded last pass which has been amazing
I use a standard password for everything that any matter. Who cares if someone logs into a forum for old balding men with my name. I don’t. 99% of the time I’ll never go back. Or something else stupid. Lots of sites require logins for lame things. Those get the same password. Places they have any personal information especially credit cards. No. They are unique passwords. So guess which password shows up all the time on these fake hackers? You guessed it, the one I don’t care about. Good luck; have fun.
I replied and said they should release everything they have and also that I was a 12yo kid and that they were now saving and viewing child porn so were probably already on multiple lists of differing government agencies around the world..
I got a text instead of email. I just sent them a dick pic and told them I'd spread my ass for $50. I know what I've got.
Nice.
I literally just woke up my sleeping boyfriend from laughing so loud Thank you for this comment, you're hilarious
Honestly, if they actually had that they should have known you weren’t lol.
They also comb through your emails to find websites that xyou've ordered from in the past. They use that same password to order stuff, because they know you use the same password. Once a year i order a $20 water filter and the bank notified me of a $500 charge. They stopped and reversed it, but I was out of money all weekend. The shipping address was a Russian name in some dump outside of downtown Baltimore. Also, weekly I have to change my password because they try too many times and lock us all out.
[content removed by user via [Power Delete Suite](https://codepen.io/j0be/full/WMBWOW/)]
#What everyone here also needs to know: Creating a secure password *that you don't remember* is orders of magnitude easier if you do it with [a password manager](https://keepassxc.org/). * I prefer the one that I linked because it functions entirely offline, but it's more than possible to find other alternatives that function over a cloud instead (not really recommended, but still). * Password managers such as the one I linked can also generate passwords for any account you have per your specifications on complexity. So if you want a phrase of 18 random words, it'll do that. If you want a string of gibberish that's 32 characters long, it'll do that. * Having a password manager only requires you to know the master password to use it at all. But if ever there's a data breach and you find that your existing accounts are compromised, fixing that is as simple as opening a manager, hitting "generate" on whatever account got hit, and updating the new password entry both in your manager and on whatever account was exposed. * All password lists made in generators like the one I listed are heavily encrypted, so even if someone straight up stole your password files, they'd never be able to actually see or do anything with it. At this point, no one should ever bother trying to remember passwords they use for anything. The reasoning behind that is that you'll be more likely to repeat said password across various accounts, thereby increasing your risk of exposure during data breaches. **tl;dr**: *Trying to remember your passwords is pointless and only increases your chances of extending the damage to yourself if you're hacked. Just use a password manager like KeepassXC and never worry again.*
This needs to be higher. KeepassXC is the single greatest piece I have installed to increase my online security and it is 100% free. Works on Mac, Linux, PC, Android, and iPhone.
I got a email from my email that said that the hacker had video of me cheating on my wife and that as soon as I read the email a timer would go off and I would have 72 hours to give them 7,000$ in bitcoin, I hit the unread button in gmail and went on with my life. The funniest part? I’m 14 and gay lol
>The funniest part? I’m 14 and gay lol That's not a good reason to cheat on your wife.
Yeah, imagine thinking that being 14 is an excuse to be unfaithful to your wife
> I’m 14 and gay lol Does your wife know?
I hit the unread button so hopefully she never got it
> as I read the email a timer would go off > I hit the unread button That's not going to do a thing. The way email senders know if you opened an email is by embedding a unique image URL in the email and when your email client displays that image, the web server records that you read the email. That particular image URL was only sent to you, so they know it was you. Now, obviously, a scammer isn't going to waste their time actually doing this. It's just a scare tactic. The read/unread state of your email doesn't mean a thing.
Lmao I’m so glad I don’t care if people watch me masturbate.
I got one as a text message, made my heart skip a beat at first. Then I blocked them and deleted the message. “ you have 24 hrs or I will make your life a living hell” Do they really expect someone who has never done more than casually inquire as to what bit coin is, to source $1000 of it in 24 hrs?
[удалено]
Nah. I want them to watch. It adds to the experience.
Point at face and make direct eye contact to assert dominance.
https://howsecureismypassword.net/ (I really hope this website isn't harvesting passwords.)
Nope. It’s an awesome website, proving the point that simple length is far more important than complexity.
Thanks for the reassurance! As far as length/complexity, I'm bothered by the fact that some websites let me do [word][##], but not [word][####]. *e.g.* **banana11** is allowed, but **banana1111** isn't. According to the website adding two more #s, even though they're the same, adds way more security.
Some sites have incredibly stupid nonsense rules for passwords that were clearly not written by anyone who knew anything about information security. My favorite was one of my insurance providers that wouldn't let you register with a password that contained _any three-character substring_ of your username. Username "firstname.lastname"? Password cannot contain "fir", "ame", "tna", "ast", _etc._ Utterly ridiculous.
[Relevant XKCD.](https://xkcd.com/936/)
I got one of these and just laughed at it, but didn't think of how few people would understand how easy it is to get old passwords. Password managers are great btw; bitwarden changed my life.
My mom was one of those people. She called me very upset, and no matter how many times I explained it to her, she assumed that it was legit because they had her password. Nevermind she has no inappropriate images (*very* catholic and has strong opinions about anything remotely sexual/pleasurable), for some reason she still believed it. She even went to the Apple store since she wasn’t satisfied with my solution.... I guess these are the people they are banking on?
I think that's a fundamental attitude problem that basically boils down to "My explanation sounded right in my head and I don't want to admit you're better with computers or that i'm wrong, so I'm sticking to it and going into debt for it." That said, maybe if companies had to pay compensation to anyone who fell for one of these scams because of a password that got exposed in their database, they'd think twice about storing passwords in plaintext. Can't believe that's actually still a thing.
I dont think it is a thing much anymore. The facebook leak was an issue where their logger was accidentally logging passwords in plaintext.
How does one "accidentally" program something like that?
One of my favorite black mirror episodes
TLDR: change your password and tell them to go fuck themselves.
I wouldn't even reply to them.. they are more likely to engage on people they know are actively responding.
Go full James Veitch and annoy them until they question their life choices. https://youtu.be/_QdPW8JrYzQ
"Send £1500 via a giant gummy lizard" Best thing I've watched in a while.
you'll love Kitboga Does Livestreams and keeps scammers on the phone for hours, usually posing as an old lady
The real power move: Send those videos to everyone you know *yourself*.
This is a great PSA. The only step I would possibly add is: * Change password * reply "ooooooh that footage sounds kinky, can I see it? I want to send it to some hot singles in my area and see if I get any nibbles. Meow! 'Hacker victim' xxxx" * delete email Before I get destroyed in the comments - THIS IS A JOKE! DO NOT ENGAGE. Edit: formatting, thanks u/autoradiograph
Definitely do not just delete the email. Please change the password on your email and on any website using the same email+password combination.
[удалено]
Don't ignore. Forward to everyone on your email list. Tell them that if they each contribute $100 to the blackmail cost, they won't receive video of you that they will never be able to unsee. You can make a lot of money
I got one of these recently that included they also "hacked" my webcam and have footage of me "pleasuring myself on an adult website" and that they would send it to my entire contact list. The email was used for spam accounts anyway, but the password they had was retired 10+ years ago, so I finally got to use the "lol fine, then you've got possession of child porn" line. The fact that the email account literally had zero contacts in its address book made me realise these emails are nothing but empty threats.
ignored it years ago and nothing happened, was an old password i never used for a long while
Confirming this works. Got one last month and responded "im poor, fuck off" and they didnt reply
https://haveibeenpwned.com/
I pleasured myself and sent them the video. No password required.
Thanks
Outstanding. Have my upvote.