I've been getting some interesting email recently. They are the new standard bin jobs, not phishing (although I'm sure once they have your email confirmed, that will soon come) but from various senders puporting to have hacked my PC "6 months ago" and followed me to "intimate" sites and having supposedly taken over my webcam (you know - the one I don't have) and taken revealing photo's and if I don't pay them $xxx in bitcoin within 48 hours, they will send the photo's to everyone in my contacts list.
Of course, it's bullshit, and the normal attempt at making gullible suckers pay up. I've had three of these, all supposedly from different people, but all with the exact same wording - just the amount to pay is different.
What spiked my interest was the password they claimed I used. It may just be coincidence, but the password they claim they have 'hacked' is always the same - and it's one that I recognised, but from a long time ago.
This email address I am receiving the messages on has been on spammers lists for a very long time - I know that anyway, it's what it's there for (a webmail account I only use for joining forums and for etailers I don't yet know or trust) and it's been on the haveibeenpwned
list for a long time. I get all manner of crap on it that just goes straight to the junk bin, most of in unread.
Having now looked back through my old passwords, I find that the one they keep quoting is one I used for filefront. Of course, they are hoping that the recipients are one of the silly people who use the same password on different sites, I guess (if it isn't in fact just a coincidence).
I'm wondering if anyone here has received similar messages, and if you can, see if the password they say they know is one you have actually used somewhere, and if it is from filefront.
Pure curiosity, and maybe just to help others, as there is nothing to be done about it now - but it would be interesting to find out.