こんにちは。
以下のようなメールが来ました。
パスワードを破ったとは、本当でしょうか？
ソースをコピペします。アドレスの一部は●で伏せています。

From - Thu Nov 1 09:35:48 2018
X-Account-Key: account5
X-UIDL: 1540720759.95836.msv3.zenno.net,S=3530
X-Mozilla-Status: 0001
X-Mozilla-Status2: 00000000
X-Mozilla-Keys:
Return-Path: <●●●@hyper.cx>
Delivered-To: ●●●@hyper.cx
Received: (qmail 95831 invoked from network); 28 Oct 2018 18:59:19 +0900
Received: from unknown (HELO mgw2.zenno.net) (192.168.0.147)
by msv3.zenno.net with SMTP; 28 Oct 2018 18:59:19 +0900
Received: from mgw2.zenno.net (localhost [127.0.0.1])
by mgw2.zenno.net (Postfix) with ESMTP id 09FF63ACAF
for <●●●@hyper.cx>; Sun, 28 Oct 2018 18:59:19 +0900 (JST)
Received: from mgw2.zenno.net ([127.0.0.1])
by mgw2.zenno.net (mgw2.zenno.net [127.0.0.1]) (amavisd-new, port 10024)
with ESMTP id COpYeVbbRtif for <●●●@hyper.cx>;
Sun, 28 Oct 2018 18:59:18 +0900 (JST)
X-Envelope: S25R_match
Received: from [195.246.59.3] (unknown [195.246.59.3])
by mgw2.zenno.net (Postfix) with ESMTP id 49EEB3ACA1
for <●●●@hyper.cx>; Sun, 28 Oct 2018 18:59:02 +0900 (JST)
Message-ID: <666643197889960864677370@hyper.cx>
From: <●●●@hyper.cx>
To: <●●●@hyper.cx>
Subject: ●●●@hyper.cx is compromised. Password must be changed
Date: 28 Oct 2018 12:41:54 +0100
MIME-Version: 1.0
Content-type: text/plain;
charset="ibm852"
Content-transfer-encoding: 8bit
X-Mailer: Ktjysg xccngtl

Hello!

I'm a programmer who cracked your email account and device about half year ago.
You entered a password on one of the insecure site you visited, and I catched it.

Of course you can will change your password, or already made it.
But it doesn't matter, my rat software update it every time.

Please don't try to contact me or find me, it is impossible, since I sent you an email from your email account.

Through your e-mail, I uploaded malicious code to your Operation System.
I saved all of your contacts with friends, colleagues, relatives and a complete history of visits to the Internet resources.
Also I installed a rat software on your device and long tome spying for you.

You are not my only victim, I usually lock devices and ask for a ransom.
But I was struck by the sites of intimate content that you very often visit.

I am in shock of your reach fantasies! Wow! I've never seen anything like this!
I did not even know that SUCH content could be so exciting!

So, when you had fun on intime sites (you know what I mean!)
I made screenshot with using my program from your camera of yours device.
After that, I jointed them to the content of the currently viewed site.

Will be funny when I send these photos to your contacts! And if your relatives see it?
BUT I'm sure you don't want it. I definitely would not want to ...

I will not do this if you pay me a little amount.
I think $817 is a nice price for it!

I accept only Bitcoins.
My BTC wallet: 17XHRucfd4kx3W5ty7ySLGiKHqmPUUdpus

If you have difficulty with this - Ask Google "how to make a payment on a bitcoin wallet". It's easy.
After receiving the above amount, all your data will be immediately removed automatically.
My virus will also will be destroy itself from your operating system.

My Trojan have auto alert, after this email is looked, I will be know it!

You have 2 days (48 hours) for make a payment.
If this does not happen - all your contacts will get crazy shots with your dirty life!
And so that you do not obstruct me, your device will be locked (also after 48 hours)

Do not take this frivolously! This is the last warning!
Various security services or antiviruses won't help you for sure (I have already collected all your data).

Here are the recommendations of a professional:
Antiviruses do not help against modern malicious code. Just do not enter your passwords on unsafe sites!

I hope you will be prudent.
Bye.

返信する

こんにちは

最近はやりの迷惑メールです
当方のアカウント情報は漏洩したりしていませんが
ご利用のパスワードそのものが書かれていた場合は
他社サービスと同じパスワードを使用している場合は
パスワードの変更を行ってください。
正しいパスワードが書かれていない場合はゴミ箱へどうぞ

返信する

こんにちは。
回答ありがとうございます。
パスワードを使い回してはいませんが
念の為、変更しておきました。
お騒がせしました。

返信する

こんにちは。
私のところにもずっと来ています。
一度ご確認をいただけますと幸いです。
よろしくお願いいたします。

返信する

こんにちは。
以下、メールを転載いたします。
よろしくお願いいたします。

From: <●●●@hyper.cx>
To: "▲▲▲（パスワード記載）" <●●●@hyper.cx>
Date: 24 Jan 2019 16:33:16 +0800
Subject: Security Notice. Someone have access to you system.

I'll begin with the most important.

I hacked your device and then got access to all your accounts... Including ●●●@hyper.cx.
It is easy to check - I wrote you this email from your account.
Also I have an old password for the hacking day: ▲▲▲（パスワード記載）

Moreover, I know your intim secret, and I have proof of this.
You do not know me personally, and no one paid me to check you.

It is just a coincidence that I discovered your mistake.
In fact, I posted a malicious code (exploit) to an adult site, and you visited this site...

While watching a video Trojan virus has been installed on your device through an exploit.
This darknet software working as RDP (remote-controlled desktop), which has a keylogger,
which gave me access to your microphone and webcam.
Soon after, my software received all your contacts from your messenger, social network and email.

At that moment I spent much more time than I should have.
I studied your love life and created a good video series.
The first part shows the video that you watched,
and the second part shows the video clip taken from your webcam (you are doing inappropriate things).

Honestly, I want to forget all the information about you and allow you to continue your daily life.
And I will give you two suitable options. Both are easy to do.
First option: you ignore this email.
The second option: you pay me $700(USD).

Let's look at 2 options in detail.

The first option is to ignore this email.
Let me tell you what happens if you choose this path.
I will send your video to your contacts, including family members, colleagues, etc.
This does not protect you from the humiliation that you and
your family need to know when friends and family members know about your unpleasant details.

The second option is to pay me. We will call this "privacy advice."
Now let me tell you what happens if you choose this path.
Your secret is your secret. I immediately destroy the video.
You continue your life as if none of this has happened.

Now you might think: "I'll call to police!"
Undoubtedly, I have taken steps to ensure that this letter cannot be traced to me,
and it will not remain aloof from the evidence of the destruction of your daily life.
I don't want to steal all your savings.
I just want to get compensation for my efforts that I put in to investigate you.
Let us hope that you decide to create all this in full and pay me a fee for confidentiality.
You make a Bitcoin payment (if you don't know how to do it, just enter "how to buy bitcoins" in Google search)

Shipping amount: $700(USD).
Getting Bitcoin Addresses: 1FVuyuSN41aa3JN9sn8qkuD2PmaMEMHHnc
(This is sensitive, so copy and paste it carefully)

Don't tell anyone what to use bitcoins for. The procedure for obtaining bitcoins can take several days, so do not wait.

I have a spetial code in Trojan, and now I know that you have read this letter.
You have 48 hours to pay.
If I don't get BitCoins, I'll send your video to your contacts, including close relatives, co-workers, and so on.
Start looking for the best excuse for friends and family before they all know.
But if I get paid, I immediately delete the video.

This is a one-time offer that is non-negotiable, so do not waste my and your time.
Time is running out.

Bye!

返信する

こんにちは。
以下、同様に転記いたします。
よろしくお願いいたします。

From: <●●●@hyper.cx>
To: <●●●@hyper.cx>
Date: 8 Mar 2019 19:32:56 +0000
Subject:Security Alert. Your account was compromissed. Password must be changed.

Hi, your account has been infected! Renew the password this time!

You do not know anything about me and you may be probably surprised for what reason you're reading this particular letter, proper?

I'm hacker who exploitedyour emailand all devicesnot so long ago.
Never try out to msg me or alternatively seek for me, it's impossible,
because I forwarded you this message using YOUR hacked account.

I've installed special program on the adult videos (porno) site
and guess that you visited this site to have fun (you understand what I mean).

While you have been keeping an eye on video clips,
your internet browser started out to act like a RDP (Remote Control)
having a keylogger that provided me access to your screen and network camera.

Then, my softobtainedall information.
You have typed passcodes on the online resources you visited, I caught them.
Surely, you are able change each of them, or have already modified them.
However it doesn't matter, my program renews needed data regularly.

What actually I have done?
I generated a reserve copy of every your system. Of all the files and each contact.
I formed a dual-screen videofile.
The first part displays the film that you were watching (you have got an interesting preferences, ahahhh...),
and the second screen displays the recording from your own camera.

What exactly should you do?
Clearly, I think, $706(USD) will be a fair price for our small riddle.
You will make the deposit by bitcoins
(if you do not understand this, go searching "how to purchase bitcoin" in any search engine).

My bitcoin wallet address: 12s4cfoNTzT68gSdxLjmSRT3qdvaqwDWNz
(It is cAsE sensitive, so copy and paste it).

Important:
You will have 2 days in order to make the payment.
(I have an unique pixel in this letter, and at the moment I understand that you've read through this email).

To tracethe reading of a messageand the actionsin it, I utilizea Facebook pixel.

Thanks to them. (That whichis usedfor the authorities may helpus.)

In case I fail to get bitcoins,
I shall undoubtedly send your video files to each of your contacts, along with relatives, co-workers, etc?

返信する

こんにちは、またきました
今度は、変な日本語です。
善野さま、ランサムウェアに感染した痕跡はありませんか？

Return-Path: <●●@hyper.cx>
Delivered-To: ●●@hyper.cx
Received: (qmail 6414 invoked from network); 21 Apr 2019 23:18:38 +0900
Received: from unknown (HELO mgw2.zenno.net) (192.168.0.147) by msv3.zenno.net with SMTP; 21 Apr 2019 23:18:38 +0900
Received: from mgw2.zenno.net (localhost [127.0.0.1]) by mgw2.zenno.net (Postfix) with ESMTP id 354E23ACB2 for <●●@hyper.cx>; Sun, 21 Apr 2019 23:18:38 +0900 (JST)
Received: from mgw2.zenno.net ([127.0.0.1]) by mgw2.zenno.net (mgw2.zenno.net [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Hz2IXbvAPZEu for <●●@hyper.cx>; Sun, 21 Apr 2019 23:18:38 +0900 (JST)
Received: from customer-mred-97.static.metrored.net.mx (unknown [187.187.224.97]) by mgw2.zenno.net (Postfix) with ESMTP id 1FEC43ACA2 for <●●@hyper.cx>; Sun, 21 Apr 2019 23:18:25 +0900 (JST)
X-Envelope: S25R_match
Message-ID: <988607374811721264093340@●●.cx>
From: <●●@hyper.cx>
To: <●●@hyper.cx>
Subject: ●●@hyper.cx ハッキングされています！ すぐにパスワードを変更してください！
Date: 21 Apr 2019 02:58:23 -0600
MIME-Version: 1.0
Content-type: multipart/alternative; boundary="---3935A2FD11AE6A4E42D58A66D91D3935"
X-Mailer: Khfydi umdryi

こんにちは！

私はあなたに悪い知らせがあります。
2018年6月28日 - この日、私はあなたのオペレーティングシステムをハッキングし、あなたのアカウント（●●@hyper.cx）にフルアクセスできました。

それはどうだった：
その日接続していたルータのソフトウェアには、脆弱性が存在しました。
私は最初にこのルータをハックし、その上に悪質なコードを置いた。
インターネットに接続すると、私のトロイの木馬はあなたのデバイスのオペレーティングシステムにインストールされました。

その後、私はあなたのディスクの完全なデータを保存しました（私はすべてあなたのアドレス帳、サイトの閲覧履歴、すべてのファイル、電話番号、あなたのすべての連絡先のアドレス）を持っています。

あなたのデバイスをロックしたかったのです。ロックを解除するために、私はお金がほしいと思った。
しかし、私はあなたが定期的に訪れるサイトを見ました, そしてあなたのお気に入りのリソースから大きなショックを受けました。
私は大人のためのサイトについて話しています。

私は言う - あなたは大きな変態です。 無限のファンタジー！

その後、アイデアが私の頭に浮かんだ。
私はあなたが楽しんでいる親密なウェブサイトのスクリーンショットを作った (私はあなたの喜びについて話しています、あなたは理解していますか？).
その後、私はあなたの喜びの写真を作った (あなたのデバイスのカメラを使って). すべてが素晴らしくなった！

あなたの親戚、友人、同僚にこの写真を見せたくないと強く信じています。
私は$879が私の沈黙のために非常に小さいと思う。
それに、私はあなたに多くの時間を費やしました！

私はBitcoinsだけを受け入れる。
私のBTCウォレット： 1DAqDrtZ1XzwKtXPMHf41WXv6QT62uttxK

Bitcoinウォレットを補充する方法がわからないのですか？
どの検索エンジンでも、「btc walletにお金を送る方法」と書いてください。
クレジットカードに送金するよりも簡単です！

お支払いの場合は、ちょうど2日以上（正確には50時間）をご提供します。
心配しないで、タイマーはこの手紙を開いた瞬間に始まります。はい、はい。それはすでに始まっています！

支払い後、私のウイルスと汚れた写真は自動的に自己破壊されます。
私はあなたから指定された金額を受け取っていない場合、あなたのデバイスはブロックされ、あなたのすべての連絡先は、あなたの "喜び"と写真を受信します。

私はあなたが賢明であることを望みます。
- 私のウイルスを見つけて破壊しようとしないでください！ （すべてのデータはすでにリモートサーバーにアップロードされています） - 私に連絡しようとしないでください（これは実現可能ではありません、私はあなたのアカウントからメールを送りました）
- 様々なセキュリティサービスはあなたを助けません。 あなたのデータは既にリモートサーバー上にあるので、ディスクのフォーマットやデバイスの破壊は役に立ちません。

P.S. 私は支払い後にあなたに再び邪魔をしないことを保証します。
これはハッカーの名誉のコードです。

これからは、良いアンチウィルスを使用し、定期的に更新することをお勧めします（1日に数回）！

私に怒らないでください、誰もが自分の仕事をしています。
お別れ。

返信する

こんにちは

以下のように専門機関も発表されています
http://www.itmedia.co.jp/news/articles/1808/14/news045.html

返信する

こんにちは
最近多いですよね、連日いろんな言語で届きます
どこからか漏れたのか総当たりで見つけられたのか、どちらにしろ今後も手を変え品を変えで来るでしょうし困りものですね

返信する