SOLVED security attack: "Your Website Has Been Compromised"

Questions and discussion about web design, search engine optimisation and hosting
Santeri
Posts: 325
Joined: 2017-7-5 09:58

Unread post by Santeri » 2022-11-3 10:08

The following blackmail letter is demanding US $3000 worth of bitcoins deposited to a crypto wallet. Otherwise they threaten to release the website's database "destr0ying y0ur site’s reputati0n" and "any links that y0u have indexed in the search engines will be de-indexed based 0ff of blackhat techniques".
Subject: Your Website Has Been Compromised
Website Has Been HackedYour Site Has Been Hacked
PLEASE FoRWARD THIS EMAIL To SoMEoNE IN Y0UR C0MPANY WH0 iS ALLoWED T0 MAKE IMPORTANT DECISIoNS!
We have hacked y0ur website https://nomadtravelbooks.com and extracted your databases.
How did this happen?
0ur team has found a vulnerability within your site that we were able t0 expl0it. After finding the vulnerability we were able t0 get y0ur database credentials and extract y0ur entire database and m0ve the inf0rmation t0 an offsh0re server.
What does this mean?
We will systematically go thr0ugh a series of steps 0f t0tally damaging y0ur reputation. First your database will be leaked 0r s0ld t0 the highest bidder which they will use with whatever their intentions are. Next if there are e-mails f0und they will be e-mailed that their inf0rmati0n has been sold 0r leaked and y0ur site https://nomadtravelbooks.com was at fault thusly damaging y0ur reputation and having angry cust0mers/associates with whatever angry cust0mers/associates do. Lastly any links that y0u have indexed in the search engines will be de-indexed based 0ff of blackhat techniques that we used in the past to de-index our targets.
H0w d0 i st0p this?
We are willing t0 refrain from destr0ying y0ur site’s reputati0n f0r a small fee. The current fee is $3000 in bitcoins (0.15 BTC).
Please send the bitcoin to the foll0wing Bitcoin address (C0py and paste as it is case sensitive):
3B6cvHmNkFVZNCtBiqnXFaLZsfUxSP6jAi
 0nce y0u have paid we will automatically get informed that it was your payment. Please n0te that y0u have t0 make payment within 3 days after opening this e-mail or the database leak, e-mails dispatched, and de-index of your site WiLL start!
H0w d0 i get Bitcoins?
Y0u can easily buy bitcoins via several websites or even 0ffline from a Bitcoin-ATM.
What if i don’t pay?
if you decide not to pay, we will start the attack at the indicated date and uph0ld it until you do, there’s no c0unter measure t0 this, you will 0nly end up wasting m0re money trying t0 find a solution. We will completely destr0y y0ur reputation am0ngst go0gle and y0ur customers.
This is n0t a h0ax, do n0t reply to this email, don’t try to reason or neg0tiate, we will n0t read any replies. 0nce y0u have paid we will stop what we were d0ing and you will never hear fr0m us again!
Please note that Bitcoin is an0nymous and n0 one will find out that y0u have complied. Finally d0n't reply as this email is unm0nit0red.
Don't pay them anything. That email is a scam.

The website they targeted doesn't even have a database. They are just randomly sending that spam just like the porn blackmail emails earlier.
Image They have not succeeded in scamming anyone yet as their crypto wallet is empty and has no transactions.