A new sextortion scheme that is making the rounds is believed to be making use of an old data breach. The scheme threatens to release compromising information if a $2,000 ransom isn’t paid within 24 hours. The wording of the message being sent to victims is unusual, indicating that the threat actor behind the messages likely does not speak English as their first language. They claim to have spyware on the victim’s machine and have access to their Facebook contacts, phone contacts, and their online activity going back 178 days. One of the recipients of the message stated that the only details about them the actors got right was their email address. It is believed that the email came from the Ashley Madison breach which took place back in 2015.
When evaluating a Managed Detection & Response (MDR) service there are 5 critical components that