Did you receive the e-mail titled “The decision to suspend your account. Waiting for payment.“? Since you are reading this article, then probably Yes. And here comes the main question: Is the email real? Scary, right? This email is nothing more than a phishing scam.
“The decision to suspend your account. Waiting for payment.” email scam
Thousands of people around the world have received this email spam, so you are one of many. In this fraudulent message the someone claims to have installed Trojan on your device and made a video while you were engaged in visiting an adult (pornography) website, then threats to send the screenshot to everyone in your address book if you don’t pay a $614 ransom through bitcoin (BTC wallet: 19rvCcYfSwPUSvJJKNyTyRFi5vxt6zaqJC).
The original “The decision to suspend your account. Waiting for payment.” email spam with the ransom note:
Hi, stranger! I know the ***, this is your password, and I sent you this message from your account. If you have already changed your password, my malware will be intercepts it every time. You may not know me, and you are most likely wondering why you are receiving this email, right? In fact, I posted a malicious program on adults (pornography) of some websites, and you know that you visited these websites to enjoy (you know what I mean). While you were watching video clips, my trojan started working as a RDP (remote desktop) with a keylogger that gave me access to your screen as well as a webcam. Immediately after this, my program gathered all your contacts from messenger, social networks, and also by e-mail. What I've done? I made a double screen video. The first part shows the video you watched (you have good taste, yes ... but strange for me and other normal people), and the second part shows the recording of your webcam. What should you do? Well, I think $614 (USD dollars) is a fair price for our little secret. You will make a bitcoin payment (if you don't know, look for "how to buy bitcoins" on Google). BTC Address: 19rvCcYfSwPUSvJJKNyTyRFi5vxt6zaqJC (This is CASE sensitive, please copy and paste it) Remarks: You have 2 days (48 hours) to pay. (I have a special code, and at the moment I know that you have read this email). If I don't get bitcoins, I will send your video to all your contacts, including family members, colleagues, etc. However, if I am paid, I will immediately destroy the video, and my trojan will be destruct someself. If you want to get proof, answer "Yes!" and resend this letter to youself. And I will definitely send your video to your any 18 contacts. This is a non-negotiable offer, so please do not waste my personal and other people's time by replying to this email.
This email spam appears to be sent from your own email address, giving the perception of being legitimate. Spammers use your email address to commit your mailbox is hacked (such as potential identity theft). But do not be fooled. Email spoofing has been around for a long time! Scammers use it in phishing attacks to force users into thinking they have received mail message from a friend or trusted person.
What to do if you get the “The decision to suspend your account. Waiting for payment.” email scam.
Do not panic! If you have received the email scam, then simply ignore this fraudulent message. Follow some easy steps listed below!
- Do not to pay the ransom! If the email scam make money for its creators, then your payment will only increase attacks against you.
- Do not respond to the email spam.
- If the password emailed to you is one that you still use, then stop using it and change it right now!
- Avoid clicking links in email.
- Scan your computer for malware.
- Install an anti-phishing software.
- If you receive an email scam that is similar but not the same as the example above, make sure you remove any personal info in this message, then post it as comment on this blog post.
How to scan your computer for malware
MalwareBytes AntiMalware highly recommended, because it can detect security threats such adware and malware which most ‘classic’ antivirus applications fail to pick up on. You can use this utility to scan for malware even if you have an antivirus or any other security program.
Visit the page linked below to download MalwareBytes AntiMalware (MBAM). Save it to your Desktop.
326384 downloads
Author: Malwarebytes
Category: Security tools
Update: April 15, 2020
After the download is complete, close all software and windows on your PC system. Open a directory in which you saved it. Double-click on the icon that’s named mb3-setup like below.
When the installation starts, you will see the “Setup wizard” which will help you install Malwarebytes on your PC.
Once installation is complete, you will see window as on the image below.
Now press the “Scan Now” button to perform a system scan for malware related files, folders and registry keys. This task may take quite a while, so please be patient. While the MalwareBytes AntiMalware (MBAM) application is scanning, you may see number of objects it has identified as threat.
Once the scan is finished, MalwareBytes Free will produce a list of malware and other security threats. Review the results once the utility has done the system scan. If you think an entry should not be quarantined, then uncheck it. Otherwise, simply click “Quarantine Selected” button.
The Malwarebytes will now remove malware and other kinds of potential threats like adware and PUPs and move items to the program’s quarantine. When disinfection is finished, you may be prompted to restart your machine.
The following video explains tutorial on how to remove hijacker infection, adware and other malware with MalwareBytes AntiMalware.
How to protect your computer from phishing web-sites
In order to increase your security and protect your computer against misleading, phishing and malicious websites, you need to run ad blocker application that stops an access to harmful web pages. Moreover, the application can block the display of annoying ads, which also leads to faster loading of web-pages and reduce the consumption of web traffic.
Please go to the link below to download AdGuard. Save it on your Windows desktop.
26627 downloads
Version: 6.4
Author: © Adguard
Category: Security tools
Update: November 15, 2018
After the download is finished, double-click the downloaded file to start it. The “Setup Wizard” window will show up on the computer screen as displayed below.
Follow the prompts. AdGuard will then be installed and an icon will be placed on your desktop. A window will show up asking you to confirm that you want to see a quick guidance as displayed on the screen below.
Press “Skip” button to close the window and use the default settings, or click “Get Started” to see an quick guide that will allow you get to know AdGuard better.
Each time, when you start your computer, AdGuard will start automatically and stop unwanted ads, as well as other malicious or misleading web pages. For an overview of all the features of the program, or to change its settings you can simply double-click on the AdGuard icon, which can be found on your desktop.
Hello!
I have very bad news for you.
11/10/2018 – on this day I hacked your OS and got full access to your account ***
So, you can change the password, yes… But my malware intercepts it every time.
How I made it:
In the software of the router, through which you went online, was a vulnerability.
I just hacked this router and placed my malicious code on it.
When you went online, my trojan was installed on the OS of your device.
After that, I made a full dump of your disk (I have all your address book, history of viewing sites, all files, phone numbers and addresses of all your contacts).
A month ago, I wanted to lock your device and ask for a not big amount of btc to unlock.
But I looked at the sites that you regularly visit, and I was shocked by what I saw!!!
I’m talk you about sites for adults.
I want to say – you are a BIG pervert. Your fantasy is shifted far away from the normal course!
And I got an idea….
I made a screenshot of the adult sites where you have fun (do you understand what it is about, huh?).
After that, I made a screenshot of your joys (using the camera of your device) and glued them together.
Turned out amazing! You are so spectacular!
I’m know that you would not like to show these screenshots to your friends, relatives or colleagues.
I think $782 is a very, very small amount for my silence.
Besides, I have been spying on you for so long, having spent a lot of time!
Pay ONLY in Bitcoins!
My BTC wallet: 1AaSQ56Uzp6p5rU3hsPU8UNLZ5w6EVoyCK
You do not know how to use bitcoins?
Enter a query in any search engine: “how to replenish btc wallet”.
It’s extremely easy
For this payment I give you two days (48 hours).
As soon as this letter is opened, the timer will work.
After payment, my virus and dirty screenshots with your enjoys will be self-destruct automatically.
If I do not receive from you the specified amount, then your device will be locked, and all your contacts will receive a screenshots with your “enjoys”.
I hope you understand your situation.
– Do not try to find and destroy my virus! (All your data, files and screenshots is already uploaded to a remote server)
– Do not try to contact me (this is not feasible, I sent you an email from your account)
– Various security services will not help you; formatting a disk or destroying a device will not help, since your data is already on a remote server.
P.S. You are not my single victim. so, I guarantee you that I will not disturb you again after payment!
This is the word of honor hacker
I also ask you to regularly update your antiviruses in the future. This way you will no longer fall into a similar situation.
Do not hold evil! I just do my job.
Have a nice day!
Hi!
As you may have noticed, I sent you an email from your account.
This means that I have full access to your account.
I’ve been watching you for a few months now.
The fact is that you were infected with malware through an adult site that you visited.
If you are not familiar with this, I will explain.
Trojan Virus gives me full access and control over a computer or other device.
This means that I can see everything on your screen, turn on the camera and microphone, but you do not know about it.
I also have access to all your contacts and all your correspondence.
Why your antivirus did not detect malware?
Answer: My malware uses the driver, I update its signatures every 4 hours so that your antivirus is silent.
I made a video showing how you satisfy yourself in the left half of the screen, and in the right half you see the video that you watched.
With one click of the mouse, I can send this video to all your emails and contacts on social networks.
I can also post access to all your e-mail correspondence and messengers that you use.
If you want to prevent this,
transfer the amount of $754 to my bitcoin address (if you do not know how to do this, write to Google: “Buy Bitcoin”).
My bitcoin address (BTC Wallet) is: 1GdSHQ4aE7zUD8HDqVJDEwU9dxn3LfJLMK
After receiving the payment, I will delete the video and you will never hear me again.
I give you 48 hours to pay.
I have a notice reading this letter, and the timer will work when you see this letter.
Filing a complaint somewhere does not make sense because this email cannot be tracked like my bitcoin address.
I do not make any mistakes.
If I find that you have shared this message with someone else, the video will be immediately distributed.
Best regards!
New bitcoin address (BTC Wallet) is: 1NUFhwLSmJPnjBNyjtuFPje54UG9AH1Ruc
Hello,
I have to share bad news with you.
Approximately a few months ago, I gained access to your devices, which you use for internet browsing. After that, I have started tracking your internet activities.
Here is the sequence of events:
Some time ago, I purchased access to email accounts from hackers (nowadays, it is quite simple to buy it online). I have easily managed to log in to your email account ***.
One week later, I have already installed the Cobalt Strike Beacon on the Operating Systems of all the devices you use to access your email. It was not hard at all (Google Zero-day exploits). All ingenious is simple. 🙂
This software provides me with Initial Access to all your devices.
I have downloaded all your information, data, photos, videos, documents, files, web browsing history to my servers. I have access to all your messengers, social networks, emails, chat history, and contacts list.
My virus continuously refreshes the signatures (it is driver-based) and hence remains invisible for antivirus software. Likewise, I guess by now you understand why I have stayed undetected until this letter.
While gathering information about you, i have discovered that you are a big fan of adult websites. You love visiting porn websites and watching exciting videos while enduring an enormous amount of pleasure. Well, i have managed to record a number of your dirty scenes and montaged a few videos, which show how you masturbate and reach orgasms.
If you have doubts, I can make a few clicks of my mouse, and all your videos will be shared with your friends, colleagues, coworkers, and relatives. I also have no issue at all with making them available for public access (leaked and exposed all data). General Data Protection Regulation (GDPR): Under the rules of the law, you face a heavy fine or arrest. I guess you don’t want that to happen. Considering the specificity of the videos you like to watch (you perfectly know what I mean), it will cause a real catastrophe for you.
Let’s settle it this way:
You transfer $1884 USD to me (in Bitcoin equivalent according to the exchange rate at the moment of funds transfer), and once the transfer is received, I will delete all this dirty stuff right away. After that, we will forget about each other. I also promise to deactivate and delete all the harmful software from your devices. Trust me. I keep my word.
That is a fair deal, and the price is relatively low, considering that I have been checking out your profile and traffic for some time by now. If you don’t know how to purchase and transfer Bitcoin – you can use any modern search engine.
You need to send that amount here Bitcoin wallet:
13grPbgnh5 mXmMuwneUqnGJ8bd ywvXFecG
It is cAsE seNsiTivE, To Get A Valid Bitcoin Address You Must Remove Space In The Wallet Address. You have 2 days in order to make the payment from the moment you opened this email.
Do not try to find and destroy my virus! (All your data is already uploaded to a remote server).
Do not try to contact me. Various security services will not help you; formatting a disk or destroying a device will not help either, since your data is already on a remote server.
This is an APT Hacking Group. Don’t be mad at me, everyone has their own work.
I will monitor your every move until I get paid.
If you keep your end of the agreement, you won’t hear from me ever again.
Everything will be done fairly!
One more thing. Don’t get caught in similar kinds of situations anymore in the future!
My advice: keep updating your antivirus software frequently.