Phishing Alert Reminder: Scam Using Stolen Passwords to Extort Money is Not Credible | Information Technology | University of Pittsburgh
!

You are here

Phishing Alert Reminder: Scam Using Stolen Passwords to Extort Money is Not Credible

Wednesday, April 22, 2020 - 20:38

Pitt Information Technology has observed a resurgence in an email phishing scam first seen in 2018 in which the scammer threatens to release evidence that the recipient visited an adult website unless the recipient pays a ransom. The scammer demands payment to a Bitcoin address within a short time period—typically between 24 and 72 hours. The scammer indicates they will delete all information about the recipient once they receive payment.  

Some variations of the scam may also include a password offered as “proof” that the scammer has compromising information about the recipient. In many cases, it is a compromised password used by the recipient many years ago, possibly on a non-Pitt site such as LinkedIn or Facebook.

Regardless, there is no indication that the perpetrators of this scam possess any compromising information about the recipients.

How to protect yourself from phishing scams:

Examples of this scam in the news:

Please contact the Technology Help Desk at 412-624-HELP (4357) if you have any questions regarding this announcement.