{"id":3284,"date":"2018-10-06T10:20:48","date_gmt":"2018-10-06T09:20:48","guid":{"rendered":"http:\/\/olivier.hoarau.org\/?p=3284"},"modified":"2018-10-06T10:20:48","modified_gmt":"2018-10-06T09:20:48","slug":"chantage-par-sextorsion","status":"publish","type":"post","link":"https:\/\/olivier.hoarau.org\/?p=3284","title":{"rendered":"Chantage par \u00ab\u00a0sextorsion\u00a0\u00bb"},"content":{"rendered":"

Comme tout le monde je re\u00e7ois un tas de spams et de tentatives de chantages en tout genre qui partent g\u00e9n\u00e9ralement directement dans la poubelle gr\u00e2ce \u00e0 mon arsenal de lutte anti-spam<\/a> et anti-virus en tout genre. Sauf que j’ai re\u00e7u r\u00e9cemment ce mail qui a attir\u00e9 mon attention :<\/p>\n

[pastacode lang=\u00a0\u00bbbash\u00a0\u00bb manual=\u00a0\u00bbHello!%0AI’m%20a%20member%20of%20an%20international%20hacker%20group.%0A%0AAs%20you%20could%20probably%20have%20guessed%2C%20your%20account%20olivier.hoarau%40funix.org%20was%20hacked%2C%20because%20I%20sent%20message%20you%20from%20your%20account.%0A%0ANow%20I%20have%20access%20to%20all%20your%20accounts!%0AFor%20example%2C%20your%20password%20for%20olivier.hoarau%40funix.org%3A%20mot-passe%20%0A%0AWithin%20a%20period%20from%20July%2031%2C%202018%20to%20October%203%2C%202018%2C%20you%20were%20infected%20by%20the%20virus%20we’ve%20created%2C%20through%20an%20adult%20website%20you’ve%20visited.%0ASo%20far%2C%20we%20have%20access%20to%20your%20messages%2C%20social%20media%20accounts%2C%20and%20messengers.%0AMoreover%2C%20we’ve%20gotten%20full%20damps%20of%20these%20data.%0A%0AWe%20are%20aware%20of%20your%20little%20and%20big%20secrets…yeah%2C%20you%20do%20have%20them.%20We%20saw%20and%20recorded%20your%20doings%20on%20porn%20websites.%20Your%20tastes%20are%20so%20weird%2C%20you%20know..%0A%0ABut%20the%20key%20thing%20is%20that%20sometimes%20we%20recorded%20you%20with%20your%20webcam%2C%20syncing%20the%20recordings%20with%20what%20you%20watched!%0AI%20think%20you%20are%20not%20interested%20show%20this%20video%20to%20your%20friends%2C%20relatives%2C%20and%20your%20intimate%20one…%0A%0ATransfer%20%24800%20to%20our%20Bitcoin%20wallet%3A%201PwENLsmQ2Z6b4EJfXDeeXKBj9v878uHRf%0AIf%20you%20don’t%20know%20about%20Bitcoin%20please%20input%20in%20Google%20%22buy%20BTC%22.%20It’s%20really%20easy.%0A%0AI%20guarantee%20that%20after%20that%2C%20we’ll%20erase%20all%20your%20%22data%22%20%0A%0AA%20timer%20will%20start%20once%20you%20read%20this%20message.%20You%20have%2048%20hours%20to%20pay%20the%20above-mentioned%20amount.%0A%0AYour%20data%20will%20be%20erased%20once%20the%20money%20are%20transferred.%0AIf%20they%20are%20not%2C%20all%20your%20messages%20and%20videos%20recorded%20will%20be%20automatically%20sent%20to%20all%20your%20contacts%20found%20on%20your%20devices%20at%20the%20moment%20of%20infection.%0A%0AYou%20should%20always%20think%20about%20your%20security.%0AWe%20hope%20this%20case%20will%20teach%20you%20to%20keep%20secrets.%0ATake%20care%20of%20yourself.\u00a0\u00bb message=\u00a0\u00bb\u00a0\u00bb highlight=\u00a0\u00bb\u00a0\u00bb provider=\u00a0\u00bbmanual\u00a0\u00bb\/]<\/p>\n

sauf que je vois qu’il y a un de mes mots de passe, n’y une ni deux, je modifie tout un stock de mots de passe que je n’avais pas chang\u00e9 depuis des ann\u00e9es (je sais, c’est mal). Heureusement que mon coffre fort \u00e0 mots de passe<\/a> me facilite la t\u00e2che.<\/p>\n

Il m’a fallu comprendre comment il avait r\u00e9cup\u00e9r\u00e9 cet ancien mot de passe. En fait le gars \u00e0 l’origine du mail ne sait pas amuser \u00e0 pirater mes comptes et encore moins mon PC (d’autant que sous linux je suis plut\u00f4t serein) mais il a r\u00e9cup\u00e9r\u00e9 mon compte sur une base de donn\u00e9es pirat\u00e9e d’identifiants qu’on peut trouver sur le darknet. Le risque existe n\u00e9anmoins qu’il tente avec ces identifiants de se connecter pour y faire je ne sais quoi qui pourrait me mettre dans l’embarras, d’autant plus si on utilise les m\u00eames identifiants pour plusieurs sites. j’ai d\u00e9couvert alors l’existence du site Have I Been pwnd<\/a>, en indiquant mon mail je vois qu’il se trouve dans deux bases de donn\u00e9es qui ont \u00e9t\u00e9 pirat\u00e9es par le pass\u00e9, celle de dailymotion qui s’est fait pirater en octobre 2016 avec ses 85 millions d’identifiants et de NemoWeb pirat\u00e9e en septembre 2016 avec 21Go de donn\u00e9es pirat\u00e9es contenant des informations d’acc\u00e8s aux newsgroups.<\/p>\n

Je vous invite donc \u00e0 v\u00e9rifier si vos identifiants n’ont pas \u00e9t\u00e9 compromis via ce site et \u00e0 faire le n\u00e9cessaire vite fait. Et si vous vous demandez ce que signifie pwnd, cela vient du jargon des hackers, pwn \u00e9quivaut \u00e0 compromette ou prendre le contr\u00f4le d’un ordinateur.<\/p>\n","protected":false},"excerpt":{"rendered":"

Comme tout le monde je re\u00e7ois un tas de spams et de tentatives de chantages en tout genre qui partent g\u00e9n\u00e9ralement directement dans la poubelle gr\u00e2ce \u00e0 mon arsenal de lutte anti-spam et anti-virus en tout genre. Sauf que j’ai re\u00e7u r\u00e9cemment ce mail qui a attir\u00e9 mon attention : [pastacode lang=\u00a0\u00bbbash\u00a0\u00bb manual=\u00a0\u00bbHello!%0AI’m%20a%20member%20of%20an%20international%20hacker%20group.%0A%0AAs%20you%20could%20probably%20have%20guessed%2C%20your%20account%20olivier.hoarau%40funix.org%20was%20hacked%2C%20because%20I%20sent%20message%20you%20from%20your%20account.%0A%0ANow%20I%20have%20access%20to%20all%20your%20accounts!%0AFor%20example%2C%20your%20password%20for%20olivier.hoarau%40funix.org%3A%20mot-passe%20%0A%0AWithin%20a%20period%20from%20July%2031%2C%202018%20to%20October%203%2C%202018%2C%20you%20were%20infected%20by%20the%20virus%20we’ve%20created%2C%20through%20an%20adult%20website%20you’ve%20visited.%0ASo%20far%2C%20we%20have%20access%20to%20your%20messages%2C%20social%20media%20accounts%2C%20and%20messengers.%0AMoreover%2C%20we’ve%20gotten%20full%20damps%20of%20these%20data.%0A%0AWe%20are%20aware%20of%20your%20little%20and%20big%20secrets…yeah%2C%20you%20do%20have%20them.%20We%20saw%20and%20recorded%20your%20doings%20on%20porn%20websites.%20Your%20tastes%20are%20so%20weird%2C%20you%20know..%0A%0ABut%20the%20key%20thing%20is%20that%20sometimes%20we%20recorded%20you%20with%20your%20webcam%2C%20syncing%20the%20recordings%20with%20what%20you%20watched!%0AI%20think%20you%20are%20not%20interested%20show%20this%20video%20to%20your%20friends%2C%20relatives%2C%20and%20your%20intimate%20one…%0A%0ATransfer%20%24800%20to%20our%20Bitcoin%20wallet%3A%201PwENLsmQ2Z6b4EJfXDeeXKBj9v878uHRf%0AIf%20you%20don’t%20know%20about%20Bitcoin%20please%20input%20in%20Google%20%22buy%20BTC%22.%20It’s%20really%20easy.%0A%0AI%20guarantee%20that%20after%20that%2C%20we’ll%20erase%20all%20your%20%22data%22%20%0A%0AA%20timer%20will%20start%20once%20you%20read%20this%20message.%20You%20have%2048%20hours%20to%20pay%20the%20above-mentioned%20amount.%0A%0AYour%20data%20will%20be%20erased%20once%20the%20money%20are%20transferred.%0AIf%20they%20are%20not%2C%20all%20your%20messages%20and%20videos%20recorded%20will%20be%20automatically%20sent%20to%20all%20your%20contacts%20found%20on%20your%20devices%20at%20the%20moment%20of%20infection.%0A%0AYou%20should%20always%20think%20about%20your%20security.%0AWe%20hope%20this%20case%20will%20teach%20you%20to%20keep%20secrets.%0ATake%20care%20of%20yourself.\u00a0\u00bb message=\u00a0\u00bb\u00a0\u00bb highlight=\u00a0\u00bb\u00a0\u00bb … Continuer la lecture de Chantage par \u00ab\u00a0sextorsion\u00a0\u00bb<\/span> →<\/span><\/a><\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"ngg_post_thumbnail":0,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_post_was_ever_published":false,"_share_on_mastodon":"0"},"categories":[5,6],"tags":[],"class_list":["post-3284","post","type-post","status-publish","format-standard","hentry","category-logiciels-libres","category-ma-vie"],"share_on_mastodon":{"url":"","error":""},"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/peOjJ-QY","jetpack_likes_enabled":true,"_links":{"self":[{"href":"https:\/\/olivier.hoarau.org\/index.php?rest_route=\/wp\/v2\/posts\/3284","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/olivier.hoarau.org\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/olivier.hoarau.org\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/olivier.hoarau.org\/index.php?rest_route=\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/olivier.hoarau.org\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=3284"}],"version-history":[{"count":1,"href":"https:\/\/olivier.hoarau.org\/index.php?rest_route=\/wp\/v2\/posts\/3284\/revisions"}],"predecessor-version":[{"id":3285,"href":"https:\/\/olivier.hoarau.org\/index.php?rest_route=\/wp\/v2\/posts\/3284\/revisions\/3285"}],"wp:attachment":[{"href":"https:\/\/olivier.hoarau.org\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=3284"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/olivier.hoarau.org\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=3284"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/olivier.hoarau.org\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=3284"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}