OwlCyberSecurity - MANAGER
Edit File: 1733598318.M326755P1603439.cloudbhc.clouditzone.com,S=5379,W=5485
Return-Path: <JohnBlue@hola.com> Delivered-To: info@onebox.pk Received: from cloudbhc.clouditzone.com by cloudbhc.clouditzone.com with LMTP id dodOH22cVGdvdxgAZAThIw (envelope-from <JohnBlue@hola.com>) for <info@onebox.pk>; Sun, 08 Dec 2024 00:05:17 +0500 Return-path: <JohnBlue@hola.com> Envelope-to: info@onebox.pk Delivery-date: Sun, 08 Dec 2024 00:05:18 +0500 Received: from [185.213.229.124] (port=41461) by cloudbhc.clouditzone.com with esmtp (Exim 4.96.2) (envelope-from <JohnBlue@hola.com>) id 1tK06q-006j53-1L for info@onebox.pk; Sun, 08 Dec 2024 00:05:15 +0500 Received: from zipvghw ([25.22.100.50]) by 51262.com with MailEnable ESMTP; Sun, 8 Dec 2024 00:03:24 +0500 Received: (qmail 66501 invoked by uid 665); 8 Dec 2024 00:03:22 +0500 From: John Blue <JohnBlue@hola.com> To: info@onebox.pk Subject: You got hacked and recorded! Date: Sun, 8 Dec 2024 00:03:24 +0500 Message-ID: <665010.665010@51262.com> Mime-Version: 1.0 Content-type: text/plain; X-Spam-Status: No, score=4.5 X-Spam-Score: 45 X-Spam-Bar: ++++ X-Ham-Report: Spam detection software, running on the system "cloudbhc.clouditzone.com", has NOT identified this incoming email as spam. The original message has been attached to this so you can view it or label similar future email. If you have any questions, see root\@localhost for details. Content preview: Hi, today there are sadly some bad news for you. Your device was infected with my private malware, your browser wasn't updated / patched, in such case it's enough to just visit some website where my iframe is placed to get automatically infected, if [...] Content analysis details: (4.5 points, 5.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- 0.0 URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL was blocked. See http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block for more information. [URIs: invity.io] 0.0 URIBL_DBL_BLOCKED_OPENDNS ADMINISTRATOR NOTICE: The query to dbl.spamhaus.org was blocked due to usage of an open resolver. See https://www.spamhaus.org/returnc/pub/ [URIs: invity.io] 0.0 RCVD_IN_VALIDITY_SAFE_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to Validity was blocked. See https://knowledge.validity.com/hc/en-us/articles/20961730681243 for more information. [185.213.229.124 listed in sa-trusted.bondedsender.org] 0.0 T_SPF_PERMERROR SPF: test of record failed (permerror) 2.0 PYZOR_CHECK Listed in Pyzor (https://pyzor.readthedocs.io/en/latest/) 0.0 KAM_SHORT Use of a URL Shortener for very short URL 0.0 KAM_DMARC_STATUS Test Rule for DKIM or SPF Failure with Strict Alignment 2.0 RDNS_NONE Delivered to internal network by a host with no rDNS 0.0 BITCOIN_EXTORT_01 Extortion spam, pay via BitCoin 0.5 PDS_BTC_ID FP reduced Bitcoin ID 0.0 FSL_BULK_SIG Bulk signature with no Unsubscribe X-Spam-Flag: NO Hi, today there are sadly some bad news for you. Your device was infected with my private malware, your browser wasn't updated / patched, in such case it's enough to just visit some website where my iframe is placed to get automatically infected, if you want to find out more, Google: Drive-by exploit. My malware gave me full access to all your accounts, full control over your device and it also was possible to spy on you over your cam. If you think this is some bad joke, no, I know your password: Lahore.111! I collected all your private data and I RECORDED YOU (through your cam) SATISFYING YOURSELF! After that I removed my malware to not leave any traces and this email was sent from some hacked server. I can publish the video of you and all your private data on the whole web, the darknet, social networks, over email and send everything to all your contacts. You can stop me and only I can help you out in this situation. The only way to stop me, is to pay exactly $1800 in Bitcoin (BTC). It's a very good offer, compared to all that horrible shit that will happen if I publish everything. You can easily buy Bitcoin (BTC) here: https://cex.io/buy-bitcoins https://nexo.com/buy-crypto/bitcoin-btc https://bitpay.com/buy-bitcoin/?crypto=BTC https://paybis.com/ https://invity.io/buy-crypto You can send the Bitcoin (BTC) directly to my wallet, or install the free software: Atomicwallet, or: Exodus wallet, then receive and send to mine. My Bitcoin (BTC) wallet is: 1K67dnYSuzJEKQbGWxkPoDvbzfHLF3Lzxs Yes, that's how the wallet / address looks like, copy and paste it, it's (cAsE-sEnSEtiVE). I give you 3 days time to pay. As I got access to this email account, I will know if this email has already been read. After receiving the payment, I will remove everything and you can life your live in peace like before, don't worry, I keep my promise! Next time make sure that your device has the newsest security updates. ClientMailID: 6650105