Comments
Sextortion scams have taken a disturbing turn, evolving from generic threats to highly personalised attacks that exploit victims’ deepest fears. Cybercriminals are even sending an image of Google Maps to the victim’s place, sending shivers down the spine of the victims.
The cybercriminals are now leveraging stolen personal data, including names, addresses, and even photos of victims’ homes, to make their threats more credible and induce panic.
This alarming trend has seen extortion demands skyrocket, with some victims facing demands of thousands of dollars in cryptocurrency.
Cybersecurity experts at Barracuda found that extortion demands are increasing from a few hundred to thousands of dollars in cryptocurrency, and criminals are making victims pay with QR codes.
These attacks, which account for a significant portion of targeted phishing attempts, often begin with the criminals claiming to possess explicit images or videos of the victim. To lend credibility to their threats, they include personal details that leave victims feeling exposed and vulnerable. Sextortion is a type of blackmail where criminals attempt to extort money from victims by threatening to release what they claim are explicit images or videos taken from the victim’s computer unless demands are met.
“Sextortion emails are usually sent to thousands of people at a time, as part of larger spam campaigns, but their individual impact can be devastating in terms of monetary loss and personal distress,” Kyle Blanker, manager, software engineering at Barracuda.
“To avoid being caught by security tools and filters and increase the chances of success, attackers vary and personalize their messages to appear convincing and terrify the victim into paying,” Blanker says.
Financial consequences
The financial consequences of these attacks can be devastating, but the emotional toll is often even more profound. Victims may experience anxiety, depression, and a sense of violation. The use of QR codes for payment has also made it easier for victims to comply with demands, further fueling this illicit industry.
- Also read: Maharashtra Elections 2024: Political parties in the State find AI less effective for campaigning
Security experts warn that these attacks are becoming increasingly sophisticated and difficult to detect. Attackers often use compromised email accounts to make their messages appear legitimate, and the variations in personalized content make it harder for spam filters to identify patterns.
How to avert trouble
To protect themselves, individuals and organizations must adopt a multi-faceted approach to security. This includes investing in AI-powered email protection, implementing account takeover protection, and conducting proactive investigations of suspicious emails. Additionally, security awareness training is crucial to educate employees about sextortion scams and how to respond to them.
As cybercriminals continue to refine their tactics, it is important for individuals and organisations remain vigilant and take proactive steps to protect themselves from these increasingly sophisticated and malicious attacks.
Comments
Comments
Comments have to be in English, and in full sentences. They cannot be abusive or personal. Please abide by our community guidelines for posting your comments.
We have migrated to a new commenting platform. If you are already a registered user of TheHindu Businessline and logged in, you may continue to engage with our articles. If you do not have an account please register and login to post comments. Users can access their older comments by logging into their accounts on Vuukle.