From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org X-Spam-Level: X-Spam-Status: No, score=0.7 required=3.0 tests=BAYES_40,DKIMWL_WL_MED, DKIM_SIGNED,DKIM_VALID,HEADER_FROM_DIFFERENT_DOMAINS,PDS_BTC_ID,SPF_HELO_NONE, SPF_PASS autolearn=no autolearn_force=no version=3.4.0 Received: from mail.kernel.org (mail.kernel.org [198.145.29.99]) by smtp.lore.kernel.org (Postfix) with ESMTP id 209E4C433ED for ; Tue, 11 May 2021 05:02:32 +0000 (UTC) Received: by mail.kernel.org (Postfix) id E9C9661278; Tue, 11 May 2021 05:02:31 +0000 (UTC) X-Greylist: delayed 91 seconds by postgrey-1.34 at mail.kernel.org; Tue, 11 May 2021 05:02:31 UTC DMARC-Filter: OpenDMARC Filter v1.3.2 mail.kernel.org B0BB86128C Authentication-Results: mail.kernel.org; dmarc=none (p=none dis=none) header.from=microsoft-security.com Authentication-Results: mail.kernel.org; spf=pass smtp.mailfrom=bounces+1740671-8452-linux-firmware=kernel.org@sendgrid.net Received: from wrqvfwzx.outbound-mail.sendgrid.net (wrqvfwzx.outbound-mail.sendgrid.net [149.72.249.234]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mail.kernel.org (Postfix) with ESMTPS id B0BB86128C for ; Tue, 11 May 2021 05:02:31 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=sendgrid.net; h=from:subject:mime-version:to:content-type:content-transfer-encoding; s=smtpapi; bh=akkDiwHxJZt4CZBha9918mCeFVIZ20mKLruOjhCi5Go=; b=PzkaPN88YfNFqmVwRBpJG0mn2gA2ifJe2mD88+gKKONx4N7nVI0ECzsOyNr7jYJDFRwS ir4NVPMm5l3ctC2Waj0vAB46rA3swQTx7EiQaPi2ZzdTOPuwisVw3mZ84sTGmlbOfYw+89 It6EZJdtM/0r45JnXqGMFZ/47iGyGvQvg= Received: by filterdrecv-7d6dbcd9df-9fpsr with SMTP id filterdrecv-7d6dbcd9df-9fpsr-1-609A0F8B-57 2021-05-11 05:00:59.307025908 +0000 UTC m=+383083.313427660 Received: from [141.98.10.137] (unknown) by geopod-ismtpd-6-1 (SG) with ESMTP id _sye0MFGRVaPP6qWQNBbZg for ; Tue, 11 May 2021 05:00:59.028 +0000 (UTC) From: hacker@microsoft-security.com Subject: Payment from your account Date: Tue, 11 May 2021 05:00:59 +0000 (UTC) Message-ID: <20210511070100.42B0F5329A395BDC@microsoft-security.com> MIME-Version: 1.0 X-SG-EID: =?us-ascii?Q?uSY1l75g=2FQr4l0VJ4JkOUamD6RzWTqyuShY1kpgv5z1dmHyF+b35J8IlfTvMQe?= =?us-ascii?Q?8jDkmpj2sz9E+kTYEw+cVTacKskMi7jOXtR2Rvs?= =?us-ascii?Q?5Vgn3I6fNYqVauJFv71Q6oiek88lYMOSI+yUKJa?= =?us-ascii?Q?HGmNyL3=2F+pPbrmb99rzXbF23ub5H8IK1vBq=2FMmQ?= =?us-ascii?Q?BqPxjixFFohouhIDFOohp7JUkmhUlK0KNdz6E9k?= =?us-ascii?Q?PVTj4fE90Y9GWqIZk=3D?= List-Id: To: linux-firmware@kernel.org X-Entity-ID: 5e5LV3asdCRSlV5VvB/6yA== Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: quoted-printable Greetings! I have to share bad news with you. Approximately few months ago I have gained access to your=20 devices, which you use for internet browsing. After that, I have started tracking your internet activities. Here is the sequence of events:=A0 Some time ago I have purchased access to email accounts from=20 hackers (nowadays, it is quite simple to purchase such thing=20 online). Obviously, I have easily managed to log in to your email account=20 (linux-firmware@kernel.org). One week later, I have already installed Trojan virus to=20 Operating Systems of all the devices that you use to access your=20 email. In fact, it was not really hard at all (since you were following=20 the links from your inbox emails). All ingenious is simple. =3D) This software provides me with access to all the controllers of=20 your devices (e.g., your microphone, video camera and keyboard). I have downloaded all your information, data, photos, web=20 browsing history to my servers. I have access to all your messengers, social networks, emails,=20 chat history and contacts list. My virus continuously refreshes the signatures (it is driver- based), and hence remains invisible for antivirus software. Likewise, I guess by now you understand why I have stayed=20 undetected until this letter... While gathering information about you, I have discovered that you=20 are a big fan of adult websites. You really love visiting porn websites and watching exciting=20 videos, while enduring an enormous amount of pleasure. Well, I have managed to record a number of your dirty scenes and=20 montaged a few videos, which show the way you masturbate and=20 reach orgasms. If you have doubts, I can make a few clicks of my mouse and all=20 your videos will be shared to your friends, colleagues and=20 relatives. I have also no issue at all to make them available for public=20 access. I guess, you really don't want that to happen, considering the=20 specificity of the videos you like to watch, (you perfectly know=20 what I mean) it will cause a true catastrophe for you. Let's settle it this way: You transfer $2000 USD to me (in bitcoin equivalent according to=20 the exchange rate at the moment of funds transfer), and once the=20 transfer is received, I will delete all this dirty stuff right=20 away. After that we will forget about each other. I also promise to=20 deactivate and delete all the harmful software from your devices.=20 Trust me, I keep my word. This is a fair deal and the price is quite low, considering that=20 I have been checking out your profile and traffic for some time=20 by now. In case, if you don't know how to purchase and transfer the=20 bitcoins - you can use any modern search engine. Here is my bitcoin wallet: 1NyCowey2g1k3XJkov9vept4DC9hFJ6Nv6 You have less than 48 hours from the moment you opened this email=20 (precisely 2 days). Things you need to avoid from doing: *Do not reply me (I have created this email inside your inbox and=20 generated the return address). *Do not try to contact police and other security services. In=20 addition, forget about telling this to you friends. If I discover=20 that (as you can see, it is really not so hard, considering that=20 I control all your systems) - your video will be shared to public=20 right away.=A0 *Don't try to find me - it is absolutely pointless. All the=20 cryptocurrency transactions are anonymous. *Don't try to reinstall the OS on your devices or throw them=20 away. It is pointless as well, since all the videos have already=20 been saved at remote servers. Things you don't need to worry about: *That I won't be able to receive your funds transfer. - Don't worry, I will see it right away, once you complete the=20 transfer, since I continuously track all your activities (my=20 trojan virus has got a remote-control feature, something like=20 TeamViewer). *That I will share your videos anyway after you complete the=20 funds transfer. - Trust me, I have no point to continue creating troubles in your=20 life. If I really wanted that, I would do it long time ago!=A0 Everything will be done in a fair manner! One more thing... Don't get caught in similar kind of situations=20 anymore in future! My advice - keep changing all your passwords on a frequent basis