OwlCyberSecurity - MANAGER

Edit File: 1733622632.M560583P1705020.cloudbhc.clouditzone.com,S=4691,W=4787

Return-Path: <JohnBlue@hola.com> Delivered-To: info@onebox.pk Received: from cloudbhc.clouditzone.com by cloudbhc.clouditzone.com with LMTP id 2bxYIGj7VGc8BBoAZAThIw (envelope-from <JohnBlue@hola.com>) for <info@onebox.pk>; Sun, 08 Dec 2024 06:50:32 +0500 Return-path: <JohnBlue@hola.com> Envelope-to: info@onebox.pk Delivery-date: Sun, 08 Dec 2024 06:50:32 +0500 Received: from karven.elcat.kg ([212.42.99.217]:62174) by cloudbhc.clouditzone.com with esmtp (Exim 4.96.2) (envelope-from <JohnBlue@hola.com>) id 1tK6RI-0079YC-1g for info@onebox.pk; Sun, 08 Dec 2024 06:50:32 +0500 Received: from trhlwdq ([208.188.56.242]) by 46443.com with MailEnable ESMTP; Sun, 8 Dec 2024 07:54:29 +0600 Received: (qmail 75245 invoked by uid 752); 8 Dec 2024 07:54:27 +0600 From: John Blue <JohnBlue@hola.com> To: info@onebox.pk Subject: You got hacked and recorded! Date: Sun, 8 Dec 2024 07:54:29 +0600 Message-ID: <752453.752453@46443.com> Mime-Version: 1.0 Content-type: text/plain; X-Spam-Status: No, score=4.5 X-Spam-Score: 45 X-Spam-Bar: ++++ X-Ham-Report: Spam detection software, running on the system "cloudbhc.clouditzone.com", has NOT identified this incoming email as spam. The original message has been attached to this so you can view it or label similar future email. If you have any questions, see root\@localhost for details. Content preview: Hi, today there are sadly some bad news for you. Your device was infected with my private malware, your browser wasn't updated / patched, in such case it's enough to just visit some website where my iframe is placed to get automatically infected, if [...] Content analysis details: (4.5 points, 5.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- 0.0 URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL was blocked. See http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block for more information. [URIs: invity.io] 2.0 PYZOR_CHECK Listed in Pyzor (https://pyzor.readthedocs.io/en/latest/) 0.0 KAM_DMARC_STATUS Test Rule for DKIM or SPF Failure with Strict Alignment 1.0 KAM_LAZY_DOMAIN_SECURITY Sending domain does not have any anti-forgery methods 0.0 KAM_SHORT Use of a URL Shortener for very short URL 0.0 FSL_BULK_SIG Bulk signature with no Unsubscribe 0.5 PDS_BTC_ID FP reduced Bitcoin ID 1.0 BITCOIN_EXTORT_01 Extortion spam, pay via BitCoin X-Spam-Flag: NO Hi, today there are sadly some bad news for you. Your device was infected with my private malware, your browser wasn't updated / patched, in such case it's enough to just visit some website where my iframe is placed to get automatically infected, if you want to find out more, Google: Drive-by exploit. My malware gave me full access to all your accounts, full control over your device and it also was possible to spy on you over your cam. If you think this is some bad joke, no, I know your password: Lahore.111! I collected all your private data and I RECORDED YOU (through your cam) SATISFYING YOURSELF! After that I removed my malware to not leave any traces and this email was sent from some hacked server. I can publish the video of you and all your private data on the whole web, the darknet, social networks, over email and send everything to all your contacts. You can stop me and only I can help you out in this situation. The only way to stop me, is to pay exactly $1800 in Bitcoin (BTC). It's a very good offer, compared to all that horrible shit that will happen if I publish everything. You can easily buy Bitcoin (BTC) here: https://cex.io/buy-bitcoins https://nexo.com/buy-crypto/bitcoin-btc https://bitpay.com/buy-bitcoin/?crypto=BTC https://paybis.com/ https://invity.io/buy-crypto You can send the Bitcoin (BTC) directly to my wallet, or install the free software: Atomicwallet, or: Exodus wallet, then receive and send to mine. My Bitcoin (BTC) wallet is: 1K67dnYSuzJEKQbGWxkPoDvbzfHLF3Lzxs Yes, that's how the wallet / address looks like, copy and paste it, it's (cAsE-sEnSEtiVE). I give you 3 days time to pay. As I got access to this email account, I will know if this email has already been read. After receiving the payment, I will remove everything and you can life your live in peace like before, don't worry, I keep my promise! Next time make sure that your device has the newsest security updates. ClientMailID: 7524533