Beware: Bitcoin Extortion Scam Part 01

This is a public awareness on a Bitcoin Extortion Scam that I encountered here in my blog. Below is the content of the email they sent me:

xxx

From: *redacted*@menardconnect.com
To: *redacted*@menardconnect.com
Date: 7 Mar 2019 hh:mm:ss +0x00

Subject: Security Alert. Your accounts was hacked by criminal group.

Hi, your account has been infected! Renew the password this time!

You do not know anything about me and you may be probably surprised for what reason you’re reading this particular letter, proper?

I’m hacker who exploitedyour emailand all devicesnot so long ago.
Never try out to msg me or alternatively seek for me, it’s impossible,
because I forwarded you this message using YOUR hacked account.

I’ve installed special program on the adult videos (porno) site
and guess that you visited this site to have fun (you understand what I mean).

While you have been keeping an eye on video clips,
your internet browser started out to act like a RDP (Remote Control)
having a keylogger that provided me access to your screen and network camera.

Then, my softobtainedall information.
You have typed passcodes on the online resources you visited, I caught them.
Surely, you are able change each of them, or have already modified them.
However it doesn’t matter, my program renews needed data regularly.

What actually I have done?
I generated a reserve copy of every your system. Of all the files and each contact.
I formed a dual-screen videofile.
The first part displays the film that you were watching (you have got an interesting preferences, ahahhh…),
and the second screen displays the recording from your own camera.

What exactly should you do?
Clearly, I think, $761(USD) will be a fair price for our small riddle.
You will make the deposit by bitcoins
(if you do not understand this, go searching “how to purchase bitcoin” in any search engine).

My bitcoin wallet address: 1PAcoXVyzBDRryyg3MAmBQhDuofNYu55Uo
(It is cAsE sensitive, so copy and paste it).

Important:
You will have 2 days in order to make the payment.
(I have an unique pixel in this letter, and at the moment I understand that you’ve read through this email).

To tracethe reading of a messageand the actionsin it, I utilizea Facebook pixel.

Thanks to them. (That whichis usedfor the authorities may helpus.)

In case I fail to get bitcoins,
I shall undoubtedly send your video files to each of your contacts, along with relatives, co-workers, etc?

xxx

Nice try Mr. Hax0r! But sorry no BTC now, so next time try asking for some XMR and the blogger may reconsider 🙂 .

Will have part 2 article soon because this Mr. Hax0r here seems to have victimized some website owner so this one need some follow up soon.

Again: beware of this Bitcoin Extortion Scam!

TrendLabs Security Intelligence Blog: Cryptocurrency-Mining Malware: 2018’s New Menace?

Cryptocurrency-Mining Malware: 2018’s New Menace?
By Menard Osena

Will cryptocurrency-mining malware be the new ransomware? The popularity and increasing real-world significance of cryptocurrencies are also drawing cybercriminal attention — so much so that it appears to keep pace with ransomware’s infamy in the threat landscape. In fact, cryptocurrency mining was the most detected network event in devices connected to home routers in 2017.

Full post -> TrendLabs Security Intelligence Blog: Cryptocurrency-Mining Malware: 2018’s New Menace?

It’s been 4 years na pala since my last blog post at TrendLabs Security Intelligence Blog, and I really feel great that I’m writing again there. I am still not decided if my other follow up insights will be for menardconnect.com or for AVSecurityProductManager.com but definitely there will be some follow up posts at #TrendLabs #Security Intel Blog and my blogs… Soon!

But for now just let me do a repost and some shoutouts and mentions 🙂

Special thanks to John, JR, Dianne, Bri, Caloy, Kerr and Gelo. You guys rock!
And some waves and hugs to my TrendLabs CoreTech XRS Ops Team 🙂 I love you all!

Watch out for the follow up posts soon 🙂

On Bitcoin, Hacking and the Philippines

I am seeing lots of social media activity from my online Pinoy friends about Bitcoin, Cryptocurrencies, and hacking and oh boy I’m really amazed that we’ve got lots of pinoy experts on BTC and crypto and hacking now  na ha! Hehehe!

Honestly I think this is good and bad! Good, that there is an increasing interest in this topic and therefore more meaningful conversations can follow. Bad, because I see a lot of FUD (fear, uncertainty, doubt) out there about bitcoin and crypto (re: Bitcoin is EVIL), and I believe that FUD = misinformation and will not be helpful for all if it is not properly put into its place.

Disclaimer: I do not claim to be an expert on Bitcoin and cryptocurrency. I am just fortunate that in my line of work I am exposed to the good and bad of Bitcoin and cryptos. And as GI Joe series taught me “…Now you know… and knowing is half the battle” so I’m posting my thoughts here at  menardconnect.com.

So first, before we spread FUD about bitcoin,cryptocurrencies and hacking, please do read about Mt. Gox and Bitfinex. I was looking for related materials on this topic and found the following links below can give a pretty good start…

from The Verge:
Mt. Gox crumbles: all the news on Bitcoin’s biggest bankruptcy scandal

and from Ars:
A brief history of Bitcoin hacks and frauds

If you want to read a more recent hax then read about bitthumb

Then compute the fiat values, know the risks, research more, learn and decide. And please don’t be GOXED!

xxx

To end this post, remember GI Joe “Now you know… And knowing is half the battle…”

Will try to post more about bitcoin and cryptocurrency (maybe my thoughts on ETH, XMR, Calata, ICOs, and the worx) here at menardconnect soon (maybe this can be a multi-part post).