Common Bitcoin Phishing Message from online Scammers

by | Jun 5, 2020 | Email, Phishing, Scams and Spoofs, Spam, Web Hosting

Hacker phishingThe lost revenue to individuals and companies responding to and falling prey to these phishing messages is enormous. We in the web field lose considerable amounts of time that we could be working on websites answering queries about such matters. It is obviously part of the job – or as they say in the business world: the cost of doing business.

We at CharlesWorks want our website clients to be assured they are safe whenever possible. So whenever we can we want to mitigate the risk of phishing scams.

What you can do to Mitigate these Messages

Emails. The text in the sample phishing message below may show up as an email from yourself. This is usually quite disconcerting to most internet users. It invokes a feeling that the The scammers use the fact that this upsets most people to impress upon the user the legitimacy of the threat. In most cases the threat is simply a threat – nothing has been hacked. However, no one can absolutely guarantee that there is no legitimate hack of the website or emails. Your hosting provider can look to see if there is any evidence pointing to an actual hack. You should contact them to make sure. When such emails are received, the best course of action is to report them as phishing messages if your service provides an avenue to do so. If not, then report them to your email hosting company to find out how to best handle them. Aside from that, simply deleting them is the proper course of action.

Website Forms. Sometimes the text in the sample phishing message below shows after being entered in a form from your website instead of directly to you in an email. In such a case, you should NEVER report a message from the form on your own website as spam or phishing. If you report any of your website’s messages as spam, you run the risk of not getting the legitimate website messages your potential customers are sending. Instead, you should have a good reCAPTCHA or other spam catching software installed to deal with form spammers.

I am including the entire text of what appears to be a common phishing message below. The identifying information is *’d out (replaced with * characters) to maintain the privacy of the individual and/or company this was sent to. Note that most phishing messages have some common threads: create a sense of urgency and instill fear in the recipient. Always read through the content and most of the time you will realize what they are saying most likely couldn’t have applied to you – hence it is actually a generic message sent to thousands at the same time in the hopes of scaring someone (anyone) into doing the scammer’s bidding.

Sample of an Actual Very Common Phishing Message

From: *******@************.***
Sent: Friday, June 5, 2020 8:13 PM
To: *******@************.***
Subject: Your website ************.***, databases and emails has been hacked.


You may have noticed that we are using your company’s server to send this message, we have hacked into your https://***.************.*** site and extracted all of your databases and backed up all of your mailboxes.

How did this happen?

Our team found several vulnerabilities within your website and company computers that we were able to exploit. After finding them, we were able to obtain their database credentials and extract their complete data from their computers, from their site and copies of all emails in all their mailboxes with domain and finally we moved the information to a foreign server.

What does this mean?

We will systematically go through a series of steps to totally damage your reputation. First, your database will be leaked or sold to the highest bidder to be used for any purpose. Next, emails will be sent to all your customers, suppliers and business partners, stating that all of their information has been sold or leaked and your https://***.************.*** site was at fault for leaking the information and damaging the reputation of all your customers and providers. Lastly, any links you have indexed in search engines will be de-indexed based on the blackhat techniques we used in the past to de-index our targets, not to mention getting your business on every blacklist in the country.

How do I stop this?

We are willing to forget about destroying the reputation of your site and company for a small fee. The current fee is $2,500 USD in Bitcoins.

Send the amount in Bitcoin to the following address:


Once you have made your payment, we will automatically be informed of it. At the precise moment that you have read this message, you have a period of 72 hours to make the payment, or I guarantee that the reputation of your company will be completely destroyed. The proof that we have access and all your data is that this message has been sent using your company’s servers.

How do I get Bitcoins?

You can easily buy bitcoins through various websites.

What happens if I don’t pay?

If you decide not to pay, we will launch the attack after 72 hours and keep it until you do, there is no countermeasure to this, you will just end up wasting more money trying to find a solution. We will completely destroy your reputation with your customers, your suppliers, your partners, on google and the entire country.

This is not a hoax, do not try to reason or negotiate, we will not read any answers. Once you’ve paid, we’ll stop what we were doing, we’ll destroy all data taken from your site, your databases, your mailboxes, and you’ll never hear from us again.

Keep in mind that the payment with Bitcoin is anonymous and no one will know that you have complied. The time is running.

Staying Safe

Most of these types of scams are apparent to those of us who work in these fields. However, as the scammers progress they get better and better at tricking people into clicking on things and ultimately getting them to infect their own devices! The golden rule is to not click on anything in emails unless you are absolutely certain about who they are from, etc.

In closing, I always want folks to know that they should be feel comfortable contacting the people who handle their email about email issues – and the people who handle their website about possible issues with their website. Our CharlesWorks clients are always welcome to call 603-924-9867 or email us at about anything web or email related. It’s why we are here: for you!


CLICK HERE to find your domain name!   CLICK HERE to transfer your domain name!



24 hour (1) Accessibility (2) Accounting (1) Advertising (15) AdWare (1) Alex Johnson (2) Alignment (1) Android (2) Anti-Virus (1) Antivirus (1) Antrim Computer Repair and Service (3) APC Back-UPS (1) Appearance (2) Apple Mail (4) Apple Mobile Mail (2) Attachments (1) Audit (1) Authorized (1) Autoresponder (5) Availability (1) Backups (1) Badges (3) Bank Account (1) Bank Statement (1) Battery Backup (2) Better Business Bureau (3) Bob Hill (1) Bookkeeper (1) Branding (8) Budget (2) Business (26) Business Management (1) Catalog (1) Categories (1) Charles Oropallo (1) CharlesWorks (42) Cherryl Jensen (1) Chrome (1) Cloud (1) Code (2) Communicating (1) Competition (1) Computer (2) Computer Cache (1) Computer Hardware (1) Computer Security (2) Constant Contact (1) Consultation (1) Contact Information (2) Content (1) Content Management (33) Content Management System (1) Copiers (1) Copy Machine (1) Coronavirus (2) Courteous (1) COVID-19 (3) Credibility (9) Credit Card (1) Credit Card Processing (1) CSS (9) Customer Service (2) Database (1) Debian (1) Design (45) Design Expertise (1) Desktop (1) Dialup (1) DirectAdmin (4) Directions (1) DIVI (7) DNS (2) Do-it-Yourself (1) Documentation (1) Domains (18) Domain Transfers (5) E-Commerce (1) ecommerce (1) Elementor (1) Email (63) Email Lists (4) Email Management (2) Email marketing (3) Etiquette (3) Eudora 6 (1) Exchange (1) Expanding (1) Facebook (1) Financial (1) Finish (1) Firefox (1) Fonts (1) Forms (2) Forms Protection (1) Fraud (2) Galaxy S4 (1) General Info (1) Gmail (1) GoDaddy (1) Google (1) Google Adwords Certified Partner (1) Google Chrome (2) Groups (1) Happy Holidays (1) Hardware Help (1) Hill Specialty Networks (1) Hosting (1) Images (1) IMAP (1) include (1) Infected (1) Information (32) insert pages (1) install (1) Internet Browsing Errors (1) Internet Consultant (1) Internet Explorer (1) Joomla! (1) Keywords (2) Laptop (1) Legibility (1) Linux (9) Logging on (1) Macintosh (1) Mail 6.0 (1) Mail 2011 (2) Make-Over (1) Malicious (1) Malware (1) Marketing (8) Matt Burke (3) MDaemon (3) MelbourneIT (2) menu (1) Merchant (1) meta (1) Microsoft (1) Microsoft Edge (1) Microsoft Hosted Exchange (5) Microsoft Live (2) Mobile Email Setup (1) Monadnock Region (1) Mozilla Firefox (2) MySQL (1) Nathan Wesley (1) Netscape (1) Netscape Messenger (1) Office Copiers (1) OfficeLive (1) Online (1) Outlook (9) Outlook 2010 (2) Outlook Express (1) PayPal (1) Pay Per Click (2) PC (1) Personal (1) Peter Harris (1) Peter Harris Creative (1) Phishing (2) PHP (3) pixel (1) plugins (1) Pop Email (1) Popularity (1) Portfolio (1) Power Grid Failure (1) PPC (1) Prevent Fraud (1) Privacy (1) Private (1) Product (6) products (1) Professional (5) Projects (2) Protect (1) Protection (1) QR codes (1) Quality (2) QuickBooks (1) Reconciliation (1) Reduce Risk (1) Register (1) Reliability (2) Renew (1) Reseller (2) Resolution (1) Restrict User Access (1) Results (1) Review (2) Risk (1) Robin Snow (1) Roundcube (1) Safe (1) Samsung (2) Scam (16) Scammer (16) Search (1) Search and Replace (1) Search Engine Optimization (SEO) (20) Security (24) Security Risk (1) Selling (1) Servers (2) Service (11) Shopping Cart (1) Site (1) SmarterMail (9) Social Engineering (1) Social Networking (1) Software (1) Solutions for Today (1) Spam (1) Spam Filtering (15) Spammer (1) Spyware (2) SquirrelMail (1) SSL (8) Statistics (2) Stats (2) Stone Pond Technology (1) Storage (1) Support (1) Tablet (1) Target Market (1) Technical Help (1) Testimonials (9) The CW Corner (1) Thom Little (1) Thom Little Associates (1) Thunderbird (3) Thunderbird 10 (2) TLD (1) Topic (1) Top Level Domains (3) Transaction (2) Transfer Data (1) Transfer Funds (1) Typography (1) Update (2) Uploading (1) UPS System (2) Up to Date (1) Virus (2) Viruses (1) Vista (1) Web (1) Web-Over (1) Web Development (99) Web Hoster (1) Web Hosting (2) Web Hosting Company (1) Web Mail (1) Webmail (8) Webmaster (10) Web Presence (26) Website (110) Website Development (1) websites (2) Web Stats (1) Web terms (1) Web Writing (1) Windows 7 (2) Windows Mail (6) Windows XP (1) WooCommerce (5) WordPress (88) WordPress Updates (1) Working Remote (2) Writing (1) YouTube (1)
Protected by CleanTalk Anti-Spam