The slime also evolves, apparently. Today https://nxdomain.no/~peter/wankstortion/20250416_jevkisca@teksavvy.com_me@pmg-pub-smtp1.teksavvy.com.txt (https://nxdomain.no/~peter/wankstortion/20250416_jevkisca@teksavvy.com_me@pmg-pub-smtp1.teksavvy.com_original_base64.txt) inboxed, as far as I can recall the first #wankstortion message received here over #IPv6 (and likely inboxed for that reason, bypassing the IPv4 only #spamd).

See "The Despicable, No Good, Blackmail Campaign Targeting ... Imaginary Friends?" https://nxdomain.no/~peter/despicable_no_good_blackmail.html and links therein for some background #cybercrime #scams #sextortion #bitcon #bitcoin #cryptotulips #cryptocurrency #extortion #teksavvy

Looking for something else entirely I notice there is a #wankstortion campaign in progress (~600 hosts) targeting (of course) the imaginary friends aka spamtraps, again.

Is that even worth reporting on in more detail these days?

(data accumulating in https://nxdomain.no/~peter/wankstortion/ as usual, previous reported in https://nxdomain.no/~peter/despicable_no_good_blackmail.html, MO repeating)

Oh, the "professional hacker" claims to have incriminating evidence on a mail alias' activities - https://nxdomain.no/~peter/wankstortion/20250304_posing_as_owner-editors_170.233.34.226_editors@undeadly.org.txt - if anyone else has had something like this inbox, please point them at https://nxdomain.no/~peter/despicable_no_good_blackmail.html #spam #scams #sextortion #wankstortion #cybercrime

This morning had me notice a new episode of the type described in "The Despicable, No Good, Blackmail Campaign Targeting ... Imaginary Friends?" https://nxdomain.no/~peter/despicable_no_good_blackmail.html (or prettified, tracked https://bsdly.blogspot.com/2022/12/the-despicable-no-good-blackmail.html), the first in quite a while, I might add.

Data so far to be perused at https://nxdomain.no/~peter/wankstortion/20241009/ (now refreshed & gzipped).

I thought #wankstortion had gone out of style, but one inboxed here today, likely because the sending system was in the #lyse #altibox IP range like our house systems are. Added to the archive https://nxdomain.no/~peter/wankstortion/ (also linked from this piece https://nxdomain.no/~peter/despicable_no_good_blackmail.html or with G's trackers https://bsdly.blogspot.com/2022/12/the-despicable-no-good-blackmail.html) #bitcon #bitcoin #scams #spam #cryptocurrency #cryptoscam

I take this https://nxdomain.no/~peter/wankstortion/20240502_likely_wankstortion_bounce_systemadministrator_at_193.248.136.91_posing_as_bsdly@bsdly.net_bsdly@bsdly.net.txt as a sign another misdirected #wankstortion campaign is in progress (cf https://nxdomain.no/~peter/despicable_no_good_blackmail.html or tracked https://bsdly.blogspot.com/2022/12/the-despicable-no-good-blackmail.html) #sextortion #spam #scam #bitcoin #bitcon

OOH, a new #wankstortion variety just managed to inbox here - https://nxdomain.no/~peter/wankstortion/20240327_for_your_own_safety_i_highly_recomment_reading_this_mail.txt - for more on this *strange* phenomenon, see https://nxdomain.no/~peter/despicable_no_good_blackmail.html or with trackers https://bsdly.blogspot.com/2022/12/the-despicable-no-good-blackmail.html (and links therein) #sextortion #blackmail #cybercrime #scams #security

A post in my linkedin feed reminded me that when I first wrote about #wankstortion (aka #sextortion) spam back in 2019, it was a well-known and well-explored problem and we had quickly concluded that the only thing those jokers had was a list of mail addresses. And of course that list had a goodly chunk of my #spamtraps in it.

For some reason, these campaigns keep turning up. My 2022 piece https://www.nxdomain.no/~peter/despicable_no_good_blackmail.html (or with trackers https://bsdly.blogspot.com/2022/12/the-despicable-no-good-blackmail.html) has links to the older story too.

I just noticed

40.83.2.68 - - [05/Aug/2023:12:27:44 +0200] "GET /~peter/wankstortion/20210106_wankstortion_message73e86b03477f2%40hireassociation.co.uk_i_recorded_you_bsdly%40bsdly.net.txt HTTP/1.1" 200 6746 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.0; +https://openai.com/gptbot)"

- will we see "convincing" #wankstortion coming out of #openai #gptbot? (background - https://bsdly.blogspot.com/2022/12/the-despicable-no-good-blackmail.html trackerless https://www.nxdomain.no/~peter/despicable_no_good_blackmail.html) #sextortion #scams #spam

The number of trapped hosts swelled rather suddenly yesterday and it appears to be at least three separate campaigns targeting our imaginary friends much like https://bsdly.blogspot.com/2022/12/the-despicable-no-good-blackmail.html (or trackerless https://nxdomain.no/~peter/despicable_no_good_blackmail.html).

My question is, would it be worth the time to extract and publish the data? #spam #sextortion #wankstortion #scams #cybercrime

Even mindless scams evolve.

For the first time since january a #wankstortion spam inboxed, wankstortion/20230312_settle_your_debt_peter\@bsdly.net.txt and was added to the archive.

This time they reference a CVE for the oddest reason.

Anyway for the general case my previous writeup https://nxdomain.no/~peter/despicable_no_good_blackmail.html still applies (https://bsdly.blogspot.com/2022/12/the-despicable-no-good-blackmail.html or https://medium.com/coinmonks/the-despicable-no-good-blackmail-campaign-targeting-imaginary-friends-9a75952096a4 for nicer format but trackers).

The Despicable, No Good, Blackmail Campaign Targeting … Imaginary Friends? https://link.medium.com/eBe2bHaP9vb #wankstortion #extortion #sextortion #cybercrime #blackmail #OpenBSD #spamd #scams #greytrapping #fraud #spamtraps #spam #bitcoin

That grumpy BSD guy: The Despicable, No Good, Blackmail Campaign Targeting ... Imaginary Friends?

https://nxdomain.no/~peter/despicable_no_good_blackmail.html

or with trackers https://bsdly.blogspot.com/2022/12/the-despicable-no-good-blackmail.html

#wankstortion #extortion #sextortion #cybercrime #blackmail #OpenBSD #spamd #onlinescams #greytrapping #fraud #spamtraps #spam #bitcoin #security

My last ever piece about this silliness, I sincerely hope.

Yet another #wankstortion scam campaign, one that actually managed to inbox here. Should I bother to update that article yet again?

That grumpy BSD guy: The 'sextortion' Scams: The Numbers Show That What We Have Is A Failure Of Education https://bsdly.blogspot.com/2020/02/the-sextortion-scams-numbers-show-that.html or trackerless https://nxdomain.no/~peter/the_numbers_show_we_have_a_failure.html My 2020 piece, updated with data on several newer campaigns including the ongoing one. #sextortion #cybercrime #spam #bitcoin #bitcon #wankstortion

At the moment at least 170 hosts have been identified as sending dirty video extortion mail (aimed at my spamtraps), see the newest files in https://nxdomain.no/~peter/wankstortion/ for more detail. Might blog later, see https://bsdly.blogspot.com/2020/02/the-sextortion-scams-numbers-show-that.html or https://nxdomain.no/~peter/the_numbers_show_we_have_a_failure.html (trackerless) about earlier attempts #sextortion #wankstortion #cybercrime #spam #scam #extortion

A new w**kstortion campaign is making the news again here (.no).

For that reason I guess a repeat of this is in order:

The 'sextortion' Scams: The Numbers Show That What We Have Is A Failure Of Education https://bsdly.blogspot.com/2020/02/the-sextortion-scams-numbers-show-that.html #scam #spam #sextortion #wankstortion