I have recieved a Bitcoin E-Mail Scam

[bitcoinermatt]

Hi, I just received following scam email with my real (old) password in the subject line.

The first lines of text are as follows:

"I'm going to cut to the chase. I'm aware xxx is your pass word. Most importantly, I know your secret and I've proof of your secret. You don't know me and nobody paid me to investigate you. "

Blabla...

Demanding $1900.

I found this site has other variants of the scam email: https://krypt3ia.wordpress.com/2018/07/16/extortion-phish-your-password-is-xxxx/

I'm currently trying to find out which of the site leaked that password. I'm suspecting the linkedin.com leak, where I used that password, but some linkedin leak checkers do not list that password. I can't remember if I used same password elsewhere (I think not).

The site https://haveibeenpwned.com/ and https://haveibeenpwned.com/Passwords lists both my mail and password as leaked and about 4 lists (datasets) are included.

I'm trying to download the various SHA1 password datasets and figure out what leak was that. Linkedin is my prime suspect now.

[jackg]

How do you plan on working it out?

If it was already leaked then the people trying to crack your password should be able to test yours against the leaked data (assuming it was correctly stored with a salt when obtained from LinkedIn)...  Can you work out the first time it was leaked also (if you've found 4 some might be other people using the same password in the past).

[bitcoinermatt]

How do you plan on working it out?

If it was already leaked then the people trying to crack your password should be able to test yours against the leaked data (assuming it was correctly stored with a salt when obtained from LinkedIn)...  Can you work out the first time it was leaked also (if you've found 4 some might be other people using the same password in the past).

It was an older password anyway so I don't really care. I might try to find out when the leak occured tho.

[Dave1]

There was a reported Another Day, Another Hack: 117 Million LinkedIn Emails And Passwords.

[jackg]

There was a reported Another Day, Another Hack: 117 Million LinkedIn Emails And Passwords.

Was that four years ago?

The site says "4 years later...  The 2012 leak"

[boyptc]

I've received the same blackmail through email but I don't believe their script. As if they wholly know my password. The email was leaked but I can't remember where it came from, can't remember the sites that I've signed up for.

They can't do anything if you're quick to change the password or totally abandon that email.

[DeathAngel]

I get spam emails that are bitcoin related all the time, most of them are just chancers, desperately hoping to get lucky & successfully scam people. This seems more serious though, if I was you I’d just block the sender, change all passwords & potentially use different devices incase one you currently use is compromised.

[peter0425]

This is why we must Use different Emails and password ,and much better that never use a legit name instead alias unless really needed .

Because this Sites can't promise our security as user,and they can just do whatever they wanted to our accounts since it is easy to pretend that somebody cracked their site and took the data's in which the reality is Inside Job.

[onooks]

The bitcoin scam emails will increase tremendously in the comming year due to the spike in bitcoin interest.

[Mauser]

Wow, 1900 USD is a hefty sum. Honestly, scammer become more and more afressuve. Imagine just one poor soul paying that money and the scammer is set for a few months. It's good that you share that scheme, we need protect each other and try to avoid anyone falling for these tricks. Scammers are the worst kind of prople. I really enjoy the videos where people troll scammers so they waste a lot of time and can't troll anyone else.

[OgNasty]

Don’t even waste your time reading these emails. It’s like asking a telemarketer for more information.