NOTE: These guys are really fishing in the dark. Don't fall for these scare tactics, it's all a giant scam designed to scare you into turning over info/money. Note the really bad English. I'll be contacting this bank to let them know their email system was exploited.
From: "Mail Delivery System" <noreply@cisco.com> To: s.com 07:19:35 CDT, Sunday 04 August 2019
Message ID: <a2e054$iug0m@esa2.tcfbank.iphmx.com>
Return Path: <>
Reply To:
MIME Version: 1.0
Content Type: multipart/report; report-type=delivery-status; boundary="1Bq0K.5ZqcQKYxU.2tZrQvUoUPA.5IXh9yt"
Received:
from mx1-us1.ppe-hosted.com (unknown [10.7.66.31]) by pure.maildistiller.com with ESMTPS id CFB572C0056 for <s.com>; Sun, 4 Aug 2019 12:19:34 +0000 (UTC)
from esa2.tcfbank.iphmx.com (esa2.tcfbank.iphmx.com [68.232.142.213]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mx1-us1.ppe-hosted.com with ESMTPS id B5249940065 for <s.com>; Sun, 4 Aug 2019 12:19:34 +0000 (UTC)
from localhost by esa2.tcfbank.iphmx.com; 04 Aug 2019 07:19:28 -0500
The following message to <adrianmaxwell@tcfbank.com> was undeliverable.
The reason for the problem:
5.1.0 - Unknown address error 550-'Invalid recipient <adrianmaxwell@tcfbank.com> (#5.1.1)'
Hi, dear user of tcfbank.com
We have installed one RAT software into you device
For this moment your email account is hacked too.
Changed your password? You're doing great!
But my software recognizes every such action. I'm updating passwords!
I'm always one step ahead....
So... I have downloaded all confidential information from your system and I got some more evidence.
The most interesting moment that I have discovered are videos records where you masturbating.
I posted EternalBlue Exploit modification on porn site, and then you installed my malicious code (trojan) on your operation system.
When you clicked the button Play on porn video, at that moment my trojan was downloaded to your device.
After installation, your front camera shoots video every time you masturbate, in addition, the software is synchronized with the video you choose.
For the moment, the software has harvrested all your contact information from social networks and email addresses.
If you need to erase all of your collected data and video with your enjoy, send me $600(usd) in BTC (crypto currency).
This is my Bitcoin wallet: 15GWKdT8e1o6GcDTZMQZRiZng2Q6dLX8Aw
You have 48 hours after reading this letter.
After your transaction I will erase all your data.
Otherwise, I will send video with your pranks to all your colleagues, friends and relatives!!!
P.S. I'm asking you - not to answer this letter because the sender's address is fake, just to keep me incognito.
And henceforth be more careful!
Please visit only secure sites!
Bye,Bye...
'From' Header: "Mail Delivery System" <noreply@cisco.com>
Subject: Delivery Status Notification (Failure)
Timestamp: 07:19:35 CDT, Sunday 04 August 2019
Message-ID: <a2e054$iug0m@esa2.tcfbank.iphmx.com>
Client IP Address: 68.232.142.213
Client GeoIP Lookup: United States
Email Size: 4.4 kB
Encrypted? No
No comments:
Post a Comment