經歷過 阿唯 LikeCoin 被 hack 一役，看到類似東西都很敏感。昨天晚上，收到一封由我自己的電郵地址傳給我自己的郵件，個心真係離一離。因為內裡有我以前用過的 password，倍添真實。
I greet you!
I have bad news for you.
07/08/2018 — on this day I hacked your operating system and got full access to your account xxxxx
On that day your account (xxxxx) password was: xxxxx
It is useless to change the password, my malware intercepts it every time.
How it was:
In the software of the router to which you were connected that day, there was a vulnerability.
I first hacked this router and placed my malicious code on it.
When you entered in the Internet, my trojan was installed on the operating system of your device.
After that, I made a full dump of your disk (I have all your address book, history of viewing sites, all files, phone numbers and addresses of all your contacts).
A month ago, I wanted to lock your device and ask for a small amount of money to unlock.
But I looked at the sites that you regularly visit, and came to the big delight of your favorite resources.
I’m talking about sites for adults.
I want to say — you are a big pervert. You have unbridled fantasy!
After that, an idea came to my mind.
I made a screenshot of the intimate website where you have fun (you know what it is about, right?).
After that, I took off your joys (using the camera of your device). It turned out beautifully, do not hesitate.
I am strongly belive that you would not like to show these pictures to your relatives, friends or colleagues.
I think $917 is a very small amount for my silence.
Besides, I spent a lot of time on you!
I accept money only in Bitcoins.
My BTC wallet: 12ziVv4aQkZTA1gj86Y9uYQByG4CcdVcTA
You do not know how to replenish a Bitcoin wallet?
In any search engine write “how to send money to btc wallet”.
It’s easier than send money to a credit card!
For payment you have a little more than two days (exactly 50 hours).
Do not worry, the timer will start at the moment when you open this letter. Yes, yes .. it has already started!
After payment, my virus and dirty photos with you self-destruct automatically.
Narrative, if I do not receive the specified amount from you, then your device will be blocked, and all your contacts will receive a photos with your “joys”.
I want you to be prudent.
– Do not try to find and destroy my virus! (All your data is already uploaded to a remote server)
– Do not try to contact me (this is not feasible, I sent you an email from your account)
– Various security services will not help you; formatting a disk or destroying a device will not help either, since your data is already on a remote server.
P.S. I guarantee you that I will not disturb you again after payment, as you are not my single victim.
This is a hacker code of honor.
From now on, I advise you to use good antiviruses and update them regularly (several times a day)!
Don’t be mad at me, everyone has their own work.
騙徒手法層出不窮，如果電腦本身有 cam，有看丁圖習慣，又沒有換 password，可能真的會因為害怕而入錢到 BTC Wallet。不過想深一層，就算真的中招，看丁圖時頂多只會看到面部表情，不會看到條丁呀，如果真的被公開發放「看丁圖時的丁圖」，死口不認，又如何？
Black Mirror 第三季其中一集 Shut Up and Dance 也是談及「看丁圖時的丁圖」被發放的問題。好片重溫後看見男主角其實做錯了一件事，就是開著電腦並在電腦面前除褲，這樣就被確認是要去丁，難怪被人勒索。如此大錯特錯的行為，大家不要學。就算要丁， 記得封著 cam（其實沒有甚麼事情的話，為了網絡安全都要把 cam 封著），坐好才開電腦呀！又或者開 Tor Browser 再丁就最安全了。
回到這次主題的正事。假如你收到這類電郵，第一件事就是要找 Google 大神查找是否曾有這些問題出現。例如這封電郵原來在數天前經已有外國網站報導，並說明這是某次 Google 和 LinkedIn 被 hack 的結果，更教你使用各種 malware 查找軟件去驗證自己的電郵是否真的已中毒。要記著，無知才是恐懼的元兇。
查看這個 12ziVv4aQkZTA1gj86Y9uYQByG4CcdVcTA 地址，內裡一元也沒有，要不是只用來招呼我，就是沒有人中計，騙徒都不易做的呢。