We help IT Professionals succeed at work.
Get Started

Personal Account Security Issue

358 Views
1 Endorsement
Last Modified: 2018-10-29
2FA enabled, password already changed and I didn't receive any security alert which Gmail sent me whenever I logon to new devices to check the activity.

Received the below message in my personal Gmail account.

-------------------------------------

Hello!
I'm a member of an international hacker group.

As you could probably have guessed, your account XXXXX@gmail.com was hacked, because I sent message you from your account.

Now I have access to all your accounts!
For example, your password for XXXXX@gmail.com: PASSWORD

Within a period from July 31, 2018 to October 3, 2018, you were infected by the virus we've created, through an adult website you've visited.
So far, we have access to your messages, social media accounts, and messengers.
Moreover, we've gotten full damps of these data.

We are aware of your little and big secrets...yeah, you do have them. We saw and recorded your doings on porn websites. Your tastes are so weird, you know..

But the key thing is that sometimes we recorded you with your webcam, syncing the recordings with what you watched!
I think you are not interested show this video to your friends, relatives, and your intimate one...

Transfer $800 to our Bitcoin wallet: 1F5csJmyf3yJs5s25tZmYKoFXznR452er9
If you don't know about Bitcoin please input in Google "buy BTC". It's really easy.

I guarantee that after that, we'll erase all your "data" :)

A timer will start once you read this message. You have 48 hours to pay the above-mentioned amount.

Your data will be erased once the money are transferred.
If they are not, all your messages and videos recorded will be automatically sent to all your contacts found on your devices at the moment of infection.

You should always think about your security.
We hope this case will teach you to keep secrets.
Take care of yourself.

-------------------------------------------------

How is it possible when 2FA enabled and the password he/she send me is years and years ago i have used. Without OTP who he/she can log and send this email to me.

I don't have webcam and how smartly he/she bluffing.

Do i need to be worried?

Any suggestions..
Comment
Watch Question
CERTIFIED EXPERT
Distinguished Expert 2019
Commented:
This problem has been solved!
Unlock 3 Answers and 18 Comments.
See Answers
Why Experts Exchange?

Experts Exchange always has the answer, or at the least points me in the correct direction! It is like having another employee that is extremely experienced.

Jim Murphy
Programmer at Smart IT Solutions

When asked, what has been your best career decision?

Deciding to stick with EE.

Mohamed Asif
Technical Department Head

Being involved with EE helped me to grow personally and professionally.

Carl Webster
CTP, Sr Infrastructure Consultant
Ask ANY Question

Connect with Certified Experts to gain insight and support on specific technology challenges including:

  • Troubleshooting
  • Research
  • Professional Opinions
Did You Know?

We've partnered with two important charities to provide clean water and computer science education to those who need it most. READ MORE