I know your password, its XXXXXXXXX

Imagine you receive an email containing your password that you use , it looks something like this:

I'm aware, XXXXXX is your password. You don't know me and you're probably thinking why you are getting this mail, right? Well, I actually placed a malware on the adult video clips (porn) web site and guess what, you visited this website to experience fun (you know what I mean). While you were watching video clips, your internet browser started out working as a RDP (Remote Desktop) with a key logger which gave me access to your display screen as well as web camera. Just after that, my software program gathered every one of your contacts from your Messenger, Facebook, and email. What did I do? I made a double-screen video. First part shows the video you were watching (you have a nice taste lmao), and 2nd part displays the recording of your webcam. Exactly what should you do? Well, I believe, $2900 is a fair price tag for our little secret. You'll make the payment by Bitcoin (if you do not know this, search "how to buy bitcoin" in Google). BTC Address: 1HpXtDRumKRhaFTXXXXXXXXXX (It is cAsE sensitive, so copy and paste it) Important: You now have one day to make the payment. (I have a special pixel within this email message, and now I know that you have read this e mail). If I do not receive the BitCoins, I will definitely send out your video recording to all of your contacts including close relatives, co-workers, and many others. Nevertheless, if I receive the payment, I'll destroy the video immediately. If you need evidence, reply with "Yes!" and I will send your video to your 10 friends. It is a non-negotiable offer, therefore do not waste my time and yours by responding to this message.

Now, you may be rather scared and also wondering how the hell this all happened and if this is really true.

An immediate answer is NO. The probability is that this “hacker” has simply bought your password and email of the dark web. Sadly due to data breaches millions of passwords and email adresses have been compromised.

You can check if this is the case by visiting haveibeenpwned.com to confirm this. The likelihood is that you have accounts on a website that has had a data breach, and therefore someone has taken advantage of this and bought/found your info.

What should I do?

Change your password. I also suggest using a password manager like Bitwardern or LeePass . Also, it might be an idea to run a quick security check on your PC, to find out if anything is on there that shouldn’t be. And finally if you really want, put some duct tape over your face cam (if duct tape isn’t your thing you can buy camera covers for your laptop on amazon or at a local store).

What you should NOT do is pay them. If you pay them they are much more likely to scam you again.

What happens if they send the clip?

The probability is that there is no clip, though if something happens you are just going to have a hard time explaining.

Further Reading/Sources/Acknowledgments

Inspiration — https://www.youtube-nocookie.com/watch?v=1JDCbq9Uq5o

Email Example — https://www.actionfraud.police.uk/alert/alert-cyber-criminals-send-victims-their-own-passwords-in-new-sextortion-scam