Puppy Linux Discussion Forum Forum Index Puppy Linux Discussion Forum
Puppy HOME page : puppylinux.com
"THE" alternative forum : puppylinux.info
 
 FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 

The time now is Mon 10 Dec 2018, 15:57
All times are UTC - 4
 Forum index » Off-Topic Area » Security
"Honor Hacker" blackmail for 793$ in Bitcoin [SOLVED]
Post new topic   Reply to topic View previous topic :: View next topic
Page 2 of 2 [27 Posts]   Goto page: Previous 1, 2
Author Message
rockedge


Joined: 11 Apr 2012
Posts: 881
Location: Connecticut, United States

PostPosted: Tue 04 Dec 2018, 12:22    Post subject:  

no worries ...totally fake and is fishing....one of my honey traps received like 30 of these all showing either the same email sent as received or a series of gmail addresses. the password shown on all of them is the same and was a user name and never used as a password.

all my cameras are placed in a forest and not a single machine has a built in camera.

And notice the wording.......what router --- what server was modified and what does the email address shown in the email have do do with my router? My email provider and server is someplace in Googleland.

if one knows how all this works you can see what is written is difficult at best to achieve
Back to top
View user's profile Send private message Visit poster's website 
musher0

Joined: 04 Jan 2009
Posts: 13147
Location: Gatineau (Qc), Canada

PostPosted: Tue 04 Dec 2018, 16:44    Post subject:  

Thanks, rockedge.

@all:
Yesterday evening I received another e-mail from myself, that I didn't
write. Couldn't have, the charset is ibm852!!! Of course I didn't
understand a word.

I opened it and looked at the message source. Tried traceroute on the
origin: apparently I was in Eastern Europe when I wrote to myself! So I
was here and perhaps in Bratislava at the same time. This is beginning to
be funny!

Anyway, installed Lynis (https://cisofy.com/downloads/lynis)
and chkrootkit (http://www.chkrootkit.org), and ran them.
They are not anti-virus tools in the traditional sense, but using them can
be quite reassuring.

Also followed the instructions from this ubuntu thread:
https://askubuntu.com/questions/587872/chkrootkit-scanner-detected-possible-klm-trojan

Everything looks ok on this xenialPup-706.

I hope the above info can be helpful to someone.

BFN.

_________________
musher0
~~~~~~~~~~
Je suis né pour aimer et non pas pour haïr. (Sophocle) /
I was born to love and not to hate. (Sophocles)
Back to top
View user's profile Send private message 
greengeek


Joined: 20 Jul 2010
Posts: 5328
Location: Republic of Novo Zelande

PostPosted: Thu 06 Dec 2018, 01:12    Post subject:  

ITSMERSH wrote:
How big is your disk?
i think this is a bit rude to ask another man. Just leave it to the imagination. Don't be a pervert
Twisted Evil
Back to top
View user's profile Send private message 
Burn_IT


Joined: 12 Aug 2006
Posts: 3321
Location: Tamworth UK

PostPosted: Thu 06 Dec 2018, 08:23    Post subject:  

And has it really been bitten several million times??
_________________
"Just think of it as leaving early to avoid the rush" - T Pratchett
Back to top
View user's profile Send private message 
Flash
Official Dog Handler


Joined: 04 May 2005
Posts: 13108
Location: Arizona USA

PostPosted: Thu 06 Dec 2018, 12:50    Post subject:  

I use pass phrases. They're easier to remember, or at least type without making a mistake, and nearly as hard to guess as a collection of randomly generated characters. The only problem is, some websites won't accept spaces as characters.
Back to top
View user's profile Send private message 
perdido


Joined: 09 Dec 2013
Posts: 1060
Location: ¿Altair IV , Just north of Eeyore Junction.?

PostPosted: Thu 06 Dec 2018, 13:13    Post subject:  

Flash wrote:
I use pass phrases. They're easier to remember, or at least type without making a mistake, and nearly as hard to guess as a
collection of randomly generated characters. The only problem is, some websites won't accept spaces as characters.


If you type your pass phrase into gtk checksum utility there are a variety of different characters, you can choose a short checksum or a long
checksum as your password.

Using the imagination makes the possibilities endless and easy to remember.

.
Back to top
View user's profile Send private message 
Flash
Official Dog Handler


Joined: 04 May 2005
Posts: 13108
Location: Arizona USA

PostPosted: Thu 06 Dec 2018, 19:07    Post subject:  

Thanks! I hadn't thought of that.
Back to top
View user's profile Send private message 
musher0

Joined: 04 Jan 2009
Posts: 13147
Location: Gatineau (Qc), Canada

PostPosted: Fri 07 Dec 2018, 04:40    Post subject:  

I received an Italian version.
Raw source attached as a zip file, if anyone wants to do forensics on it.

BFN.
mime.data-Italian.txt.zip
Description 
zip

 Download 
Filename  mime.data-Italian.txt.zip 
Filesize  2.56 KB 
Downloaded  4 Time(s) 

_________________
musher0
~~~~~~~~~~
Je suis né pour aimer et non pas pour haïr. (Sophocle) /
I was born to love and not to hate. (Sophocles)
Back to top
View user's profile Send private message 
mikeb


Joined: 23 Nov 2006
Posts: 11209

PostPosted: Fri 07 Dec 2018, 11:24    Post subject:  

I think this spammer is mean as he or she does not give an address to send our loving thoughts to,

mike
Back to top
View user's profile Send private message 
foxpup


Joined: 29 Jul 2016
Posts: 613
Location: europa near northsea

PostPosted: Fri 07 Dec 2018, 12:03    Post subject:  

I just checked the 2 IP's and the bitcoin wallet.
The IP's are in Fort Lauderdale, Florida and somewhere near Moscow, Russia. It probably leads to nothing.
The wallet is just 2 days old and has received more than 1 bitcoin in total from about 15 victims, which is a substantial amount of money and victims.
Back to top
View user's profile Send private message 
foxpup


Joined: 29 Jul 2016
Posts: 613
Location: europa near northsea

PostPosted: Fri 07 Dec 2018, 12:09    Post subject:  

For the bitcoin wallet in the first mail it adds up to more than 4 bitcoins in a week from 30 victims!
Back to top
View user's profile Send private message 
musher0

Joined: 04 Jan 2009
Posts: 13147
Location: Gatineau (Qc), Canada

PostPosted: Fri 07 Dec 2018, 13:59    Post subject:  

Thanks, guys.

This hacker sure has a high standard of living...

_________________
musher0
~~~~~~~~~~
Je suis né pour aimer et non pas pour haïr. (Sophocle) /
I was born to love and not to hate. (Sophocles)
Back to top
View user's profile Send private message 
Display posts from previous:   Sort by:   
Page 2 of 2 [27 Posts]   Goto page: Previous 1, 2
Post new topic   Reply to topic View previous topic :: View next topic
 Forum index » Off-Topic Area » Security
Jump to:  

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum


Powered by phpBB © 2001, 2005 phpBB Group
[ Time: 0.1215s ][ Queries: 13 (0.0114s) ][ GZIP on ]