Puppy Linux Discussion Forum Forum Index Puppy Linux Discussion Forum
Puppy HOME page : puppylinux.com
"THE" alternative forum : puppylinux.info
 
 FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 

The time now is Fri 24 May 2019, 19:30
All times are UTC - 4
 Forum index » Off-Topic Area » Security
"Honor Hacker" blackmail for 793$ in Bitcoin [SOLVED]
Post new topic   Reply to topic View previous topic :: View next topic
Page 2 of 2 [30 Posts]   Goto page: Previous 1, 2
Author Message
rockedge


Joined: 11 Apr 2012
Posts: 1039
Location: Connecticut, United States

PostPosted: Tue 04 Dec 2018, 12:22    Post subject:  

no worries ...totally fake and is fishing....one of my honey traps received like 30 of these all showing either the same email sent as received or a series of gmail addresses. the password shown on all of them is the same and was a user name and never used as a password.

all my cameras are placed in a forest and not a single machine has a built in camera.

And notice the wording.......what router --- what server was modified and what does the email address shown in the email have do do with my router? My email provider and server is someplace in Googleland.

if one knows how all this works you can see what is written is difficult at best to achieve
Back to top
View user's profile Send private message Visit poster's website 
musher0

Joined: 04 Jan 2009
Posts: 14154
Location: Gatineau (Qc), Canada

PostPosted: Tue 04 Dec 2018, 16:44    Post subject:  

Thanks, rockedge.

@all:
Yesterday evening I received another e-mail from myself, that I didn't
write. Couldn't have, the charset is ibm852!!! Of course I didn't
understand a word.

I opened it and looked at the message source. Tried traceroute on the
origin: apparently I was in Eastern Europe when I wrote to myself! So I
was here and perhaps in Bratislava at the same time. This is beginning to
be funny!

Anyway, installed Lynis (https://cisofy.com/downloads/lynis)
and chkrootkit (http://www.chkrootkit.org), and ran them.
They are not anti-virus tools in the traditional sense, but using them can
be quite reassuring.

Also followed the instructions from this ubuntu thread:
https://askubuntu.com/questions/587872/chkrootkit-scanner-detected-possible-klm-trojan

Everything looks ok on this xenialPup-706.

I hope the above info can be helpful to someone.

BFN.

_________________
musher0
~~~~~~~~~~
Je suis né pour aimer et non pas pour haïr. (Sophocle) /
I was born to love and not to hate. (Sophocles)
Back to top
View user's profile Send private message 
greengeek


Joined: 20 Jul 2010
Posts: 5509
Location: Republic of Novo Zelande

PostPosted: Thu 06 Dec 2018, 01:12    Post subject:  

ITSMERSH wrote:
How big is your disk?
i think this is a bit rude to ask another man. Just leave it to the imagination. Don't be a pervert
Twisted Evil
Back to top
View user's profile Send private message 
Burn_IT


Joined: 12 Aug 2006
Posts: 3488
Location: Tamworth UK

PostPosted: Thu 06 Dec 2018, 08:23    Post subject:  

And has it really been bitten several million times??
_________________
"Just think of it as leaving early to avoid the rush" - T Pratchett
Back to top
View user's profile Send private message 
Flash
Official Dog Handler


Joined: 04 May 2005
Posts: 13224
Location: Arizona USA

PostPosted: Thu 06 Dec 2018, 12:50    Post subject:  

I use pass phrases. They're easier to remember, or at least type without making a mistake, and nearly as hard to guess as a collection of randomly generated characters. The only problem is, some websites won't accept spaces as characters.
Back to top
View user's profile Send private message 
perdido


Joined: 09 Dec 2013
Posts: 1280
Location: ¿Altair IV , Just north of Eeyore Junction.?

PostPosted: Thu 06 Dec 2018, 13:13    Post subject:  

Flash wrote:
I use pass phrases. They're easier to remember, or at least type without making a mistake, and nearly as hard to guess as a
collection of randomly generated characters. The only problem is, some websites won't accept spaces as characters.


If you type your pass phrase into gtk checksum utility there are a variety of different characters, you can choose a short checksum or a long
checksum as your password.

Using the imagination makes the possibilities endless and easy to remember.

.
Back to top
View user's profile Send private message 
Flash
Official Dog Handler


Joined: 04 May 2005
Posts: 13224
Location: Arizona USA

PostPosted: Thu 06 Dec 2018, 19:07    Post subject:  

Thanks! I hadn't thought of that.
Back to top
View user's profile Send private message 
musher0

Joined: 04 Jan 2009
Posts: 14154
Location: Gatineau (Qc), Canada

PostPosted: Fri 07 Dec 2018, 04:40    Post subject:  

I received an Italian version.
Raw source attached as a zip file, if anyone wants to do forensics on it.

BFN.
mime.data-Italian.txt.zip
Description 
zip

 Download 
Filename  mime.data-Italian.txt.zip 
Filesize  2.56 KB 
Downloaded  44 Time(s) 

_________________
musher0
~~~~~~~~~~
Je suis né pour aimer et non pas pour haïr. (Sophocle) /
I was born to love and not to hate. (Sophocles)
Back to top
View user's profile Send private message 
mikeb


Joined: 23 Nov 2006
Posts: 11254

PostPosted: Fri 07 Dec 2018, 11:24    Post subject:  

I think this spammer is mean as he or she does not give an address to send our loving thoughts to,

mike
Back to top
View user's profile Send private message 
foxpup


Joined: 29 Jul 2016
Posts: 834
Location: europa near northsea

PostPosted: Fri 07 Dec 2018, 12:03    Post subject:  

I just checked the 2 IP's and the bitcoin wallet.
The IP's are in Fort Lauderdale, Florida and somewhere near Moscow, Russia. It probably leads to nothing.
The wallet is just 2 days old and has received more than 1 bitcoin in total from about 15 victims, which is a substantial amount of money and victims.
Back to top
View user's profile Send private message 
foxpup


Joined: 29 Jul 2016
Posts: 834
Location: europa near northsea

PostPosted: Fri 07 Dec 2018, 12:09    Post subject:  

For the bitcoin wallet in the first mail it adds up to more than 4 bitcoins in a week from 30 victims!
Back to top
View user's profile Send private message 
musher0

Joined: 04 Jan 2009
Posts: 14154
Location: Gatineau (Qc), Canada

PostPosted: Fri 07 Dec 2018, 13:59    Post subject:  

Thanks, guys.

This hacker sure has a high standard of living...

_________________
musher0
~~~~~~~~~~
Je suis né pour aimer et non pas pour haïr. (Sophocle) /
I was born to love and not to hate. (Sophocles)
Back to top
View user's profile Send private message 
6502coder


Joined: 23 Mar 2009
Posts: 622
Location: Western United States

PostPosted: Sat 15 Dec 2018, 19:29    Post subject:  

It just keeps getting worse...

https://www.zdnet.com/article/bomb-threat-scammers-are-now-threatening-to-throw-acid-on-victims/
Quote:

[December 13th's] massive spam campaign that sent bomb threats to hundreds of thousands of users across the US and Canada, and caused evacuations of buildings across several cities, was carried out by the same group of spammers responsible for the recent wave of sextortion scams, two cyber-security firms said on Friday.

[emphasis mine]
Back to top
View user's profile Send private message 
musher0

Joined: 04 Jan 2009
Posts: 14154
Location: Gatineau (Qc), Canada

PostPosted: Sat 15 Dec 2018, 20:03    Post subject:  

Thanks for the additional info, 6502coder.
_________________
musher0
~~~~~~~~~~
Je suis né pour aimer et non pas pour haïr. (Sophocle) /
I was born to love and not to hate. (Sophocles)
Back to top
View user's profile Send private message 
foxpup


Joined: 29 Jul 2016
Posts: 834
Location: europa near northsea

PostPosted: Sun 16 Dec 2018, 05:48    Post subject:    

6502coder wrote:
It just keeps getting worse...
Well, it is almost Christmass, isn't it. Confused Sad
Back to top
View user's profile Send private message 
Display posts from previous:   Sort by:   
Page 2 of 2 [30 Posts]   Goto page: Previous 1, 2
Post new topic   Reply to topic View previous topic :: View next topic
 Forum index » Off-Topic Area » Security
Jump to:  

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum


Powered by phpBB © 2001, 2005 phpBB Group
[ Time: 0.0522s ][ Queries: 13 (0.0153s) ][ GZIP on ]