Cybercriminals take sextortion threats to new level

K V Kurmanath Updated - November 14, 2024 at 12:42 PM.

Hackers use victims’ names, addresses, and Google Maps to make them pay hefty amounts. They even use QR codes to keep the ransom anonymous and quick

Sextortion scams have taken a disturbing turn, evolving from generic threats to highly personalised attacks that exploit victims’ deepest fears. Cybercriminals are even sending an image of Google Maps to the victim’s place, sending shivers down the spine of the victims.

The cybercriminals are now leveraging stolen personal data, including names, addresses, and even photos of victims’ homes, to make their threats more credible and induce panic.

This alarming trend has seen extortion demands skyrocket, with some victims facing demands of thousands of dollars in cryptocurrency.

Cybersecurity experts at Barracuda found that extortion demands are increasing from a few hundred to thousands of dollars in cryptocurrency, and criminals are making victims pay with QR codes.

These attacks, which account for a significant portion of targeted phishing attempts, often begin with the criminals claiming to possess explicit images or videos of the victim. To lend credibility to their threats, they include personal details that leave victims feeling exposed and vulnerable. Sextortion is a type of blackmail where criminals attempt to extort money from victims by threatening to release what they claim are explicit images or videos taken from the victim’s computer unless demands are met.

“Sextortion emails are usually sent to thousands of people at a time, as part of larger spam campaigns, but their individual impact can be devastating in terms of monetary loss and personal distress,” Kyle Blanker, manager, software engineering at Barracuda.

“To avoid being caught by security tools and filters and increase the chances of success, attackers vary and personalize their messages to appear convincing and terrify the victim into paying,” Blanker says.

Financial consequences

The financial consequences of these attacks can be devastating, but the emotional toll is often even more profound. Victims may experience anxiety, depression, and a sense of violation. The use of QR codes for payment has also made it easier for victims to comply with demands, further fueling this illicit industry.

Security experts warn that these attacks are becoming increasingly sophisticated and difficult to detect. Attackers often use compromised email accounts to make their messages appear legitimate, and the variations in personalized content make it harder for spam filters to identify patterns. 

How to avert trouble

To protect themselves, individuals and organizations must adopt a multi-faceted approach to security. This includes investing in AI-powered email protection, implementing account takeover protection, and conducting proactive investigations of suspicious emails. Additionally, security awareness training is crucial to educate employees about sextortion scams and how to respond to them. 

As cybercriminals continue to refine their tactics, it is important for individuals and organisations remain vigilant and take proactive steps to protect themselves from these increasingly sophisticated and malicious attacks.

Published on November 14, 2024 05:50

This is a Premium article available exclusively to our subscribers.

Subscribe now to and get well-researched and unbiased insights on the Stock market, Economy, Commodities and more...

You have reached your free article limit.

Subscribe now to and get well-researched and unbiased insights on the Stock market, Economy, Commodities and more...

You have reached your free article limit.
Subscribe now to and get well-researched and unbiased insights on the Stock market, Economy, Commodities and more...

TheHindu Businessline operates by its editorial values to provide you quality journalism.

This is your last free article.