2018-12-13 - RECENT BOMB THREAT EXTORTION (BOMBSTORTION) SPAM
- Example of the spam: 2018-12-13-bomb-extortion-malspam-1836-UTC.eml.zip 1.9 kB (1,879 bytes)
- Zip archives are password-protected with the standard password. If you don't know it, look at the "about" page of this website.
On Thursday 2018-12-13, several users on Twitter reported several bomb threat emails demanding payment in bitcoin. This was quickly reported as a spam campaign hoax. Upon closer review, these bomb threat emails closely resemble previous waves of "sextortion" spam reported during the past several months.
These recent bomb threat emails are the same type of extortion spam previously seen as pornography-themed blackmail messages. These newer bomb-themed messages follow the same general format and ask for a bitcoin payment in the same manner. The only difference is the story that's being told.
Since the previous waves were often nicknamed "sextortion" spam, I'm calling today's wave "bombstortion" spam.
I only found one example that I can share, but several instances of bombstortion spam were reported across the United States earlier today.
Subject line examples:
- Your building is under my control
- My device is inside your buidling
- You don't have much time
- Think twice
- $20,000 USD
Shown above: Screenshot of one example from this bomb threat extortion spam.
Shown above: Email headers from the same example of bomb threat extortion spam.
Shown above: An example tweeted by @BreakinNewz01 (link).
Shown above: An example tweeted by @alexiszotos (link).
Shown above: An example someone forwarded to the SANS Internet Storm Center (ISC).
Click here to return to the main page.