From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from nannyjob2.servers.prgn.misp.co.uk (nannyjob2.servers.prgn.misp.co.uk [87.247.240.107]) by sourceware.org (Postfix) with ESMTPS id 9CAB0384640D for ; Fri, 1 Jan 2021 19:44:56 +0000 (GMT) DMARC-Filter: OpenDMARC Filter v1.3.2 sourceware.org 9CAB0384640D Authentication-Results: sourceware.org; dmarc=none (p=none dis=none) header.from=nannyjob.co.uk Authentication-Results: sourceware.org; spf=pass smtp.mailfrom=messagee60454b539459@nannyjob.co.uk dkim-signature: v=1; a=rsa-sha256; d=nannyjob.co.uk; s=s1024; c=relaxed/relaxed; q=dns/txt; h=From:Subject:Date:Message-ID:To:MIME-Version:Content-Type:Content-Transfer-Encoding; bh=0cFJME0BqZlq7p0dOJ17Nf0wMALLDKf9uSWzOBv1YKI=; b=mlbvFLCvV7dcH8ZLIfvyyrsg9YY2TGXRHdLIDddY8gDphyyidy647ASTQeGUD458ddLdbzDOSdTMDkxXknZ+HjcjAUqrYjWyfX32wtxsINZBfTdpTpvpULw4Ai79UBczDnX7CmYXwvyEAia0dEgSwZZWKEFNhicKAjcCsqTICME= Received: from kglink (Unknown [160.174.129.174]) by nannyjob2.servers.prgn.misp.co.uk with ESMTPA ; Fri, 1 Jan 2021 19:44:18 +0000 Date: Fri, 1 Jan 2021 20:44:40 +0100 To: bunsen@sourceware.org From: John Smith Subject: I recorded you Message-ID: <4qxfz9vMiTSRvxwr5oIsQ0yQ8j6mHVb0rrvMpfNpsIk@kglink> X-Mailer: PHPMailer 6.0.7 (https://github.com/PHPMailer/PHPMailer) MIME-Version: 1.0 X-Spam-Status: No, score=4.2 required=5.0 tests=BAYES_60, DKIM_SIGNED, DKIM_VALID, DKIM_VALID_AU, DKIM_VALID_EF, FROM_LOCAL_HEX, HTML_MESSAGE, KAM_COUK, LIKELY_SPAM_BODY, RCVD_IN_MSPIKE_H3, RCVD_IN_MSPIKE_WL, SPF_HELO_NONE, SPF_PASS, TXREP autolearn=no autolearn_force=no version=3.4.2 X-Spam-Level: **** X-Spam-Checker-Version: SpamAssassin 3.4.2 (2018-09-13) on server2.sourceware.org Content-Type: text/plain; charset=us-ascii X-Content-Filtered-By: Mailman/MimeDel 2.1.29 X-BeenThere: bunsen@sourceware.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Bunsen mailing list List-Unsubscribe: , List-Archive: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 01 Jan 2021 19:44:58 -0000 Hi! I know that you visit regularly PRONOGRAPHIC movies! Your smartphone got infected and this gave me access to record with your camera and the microphone without your knowledge while you satisfy yourself! Here is the deal... you have to pay me 800$ value in BIT C0lN I will release the video with you doing... you know what to your contacts. My sneaky app that was installed had also a second function, to extract all your contacts from emails, phone book list, social media friends and so on. Did I got the passwords? Neah, any smart-phone have like a virus detection tool build-in and they scan for what kind of activity an app can have, so... Trying to extract passwords? Very bad, it may get detected! Using the camera and extracting all the contacts without user permission? No problem! Ok! So in order to buy some coins go and search on Google for "Buy BIT C0lN instantly" and use the next address to send the coins: Address: 1 A 7 B r r S q 4 e N R 7 P 7 r Z A E W v 9 v v f a E V C D 1 U 9 E Amount: 0.027 Very important! My address which is Case Sensitive was split with spaces, and you have to manually remove all spaces and the result it has to be a string of 34 characters long also it will start with "1" also it will end with "E". Use the string without spaces to send my coins! You have a few days! Ok... to uninstall my sneaky app apply a reset with factory settings. Use Google for "Reset to factory settings [your phone model]". Also maybe you think that I got your passwords, you can change them! To avoid getting infected next time, your browser and your OS must to be updated regularry! Also maybe you will consider to stop with this habbit of watching videos like this... it makes a mess in your brain. After you sent the coins maybe you will receive those emails simply ignore them. My compromised machines are programmed to send this message multiple times.