Author Topic: Avast Data Breach or ?  (Read 9828 times)

0 Members and 1 Guest are viewing this topic.

REDACTED

  • Guest
Avast Data Breach or ?
« on: July 12, 2018, 10:35:05 PM »
I received email today  -  definitely a phishing attempt   but something different.    Here is a Copy :

----------------------------

I am aware,  ( REMOVED)   , is your password. you don't know me and you are most likely thinking why you're getting this e mail, correct?

The answer is, I installed a malware on the adult video clips (porn) and guess what, you visited this site to experience fun (you know what I mean). While you were watching videos, your browser started operating as a Rdp (Remote desktop) having a key logger which gave me access to your display screen and webcam. Just after that, my software program collected every one of your contacts from messenger, social networks, as well as email.

What exactly did I do?
I made a double-screen video. First part displays the video you were watching (you've got a good taste lmao), and 2nd part shows the recording of your cam.

Exactly what should you do?
Well, in my opinion, $1900 is a reasonable price tag for our little secret. You'll make the payment through Bitcoin (if you don't know this, search "how to buy bitcoin" in google).

BTC ADDRESS: 1CE3Qk4aWoxEnXVTjQgFeBsmo4Cw3AAgXA
(It is CASE sensitive, so copy and paste it)

Notice:
You have one day in order to make the payment. (I have a unique pixel in this email message, and at this moment I know that you've read through this message). If I don't receive the Bitcoins, I will certainly send out your video to all of your contacts including family members, co-workers, and so on. nevertheless, if I do get paid, I'll erase the video immediately. If you really want proof, reply with "yes!" and I definitely will send out your video to your 15 friends. It is a non-negotiable offer, so kindly do not ruin my time and yours by responding to this email.   

-----------------

Obviously a phishing attempt as I have no web cam  and have no such site history.   BUT  what alarms me is the password they gave  WAS  my avast forums password .

Has Avast had a Breach  or  ??   
If it were just a random made up password attempting to scare someone I would just laugh it off.   I tried to find a way to contact Avast about it but they are so email isolated.

I have given my password to no one  and did not use it on any other sites. 

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37509
  • Not a avast user
Re: Avast Data Breach or ?
« Reply #1 on: July 12, 2018, 11:00:13 PM »
Quote
Has Avast had a Breach  or  ??   
avast blog 2014  >>  https://blog.avast.com/2014/05/26/avast-forum-offline-due-to-attack/


If you want to check for infections, follow instructions and attach requested logs  >>  https://forum.avast.com/index.php?topic=194892.0


Quote
BUT  what alarms me is the password they gave  WAS  my avast forums password .
Change password  >>  https://my.norton.com/extspa/idsafe?path=pwd-gen




Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37509
  • Not a avast user
« Last Edit: July 12, 2018, 11:41:54 PM by Pondus »

REDACTED

  • Guest
Re: Avast Data Breach or ?
« Reply #3 on: July 13, 2018, 05:50:03 AM »
I received it too. I have never visited a pornography website in my life and don't use my webcam, so am not worried except for one thing. How did this creep get my real Avast password?

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37509
  • Not a avast user
Re: Avast Data Breach or ?
« Reply #4 on: July 13, 2018, 07:45:41 AM »
Quote
How did this creep get my real Avast password?
Check here and read the result at the bottom if compromised

check e-mail >> https://haveibeenpwned.com/
Pwned Passwords  >>  https://haveibeenpwned.com/Passwords

My forum mail is listed as compromised from avast forum attack 2014, password is not as i have changed it

I guess that is why i recive mail from people that want to give me money   ;D   >>  https://forum.avast.com/index.php?topic=81030.0







Offline Majhoul

  • Newbie
  • *
  • Posts: 11
Re: Avast Data Breach or ?
« Reply #5 on: July 13, 2018, 03:29:45 PM »
Quote
How did this creep get my real Avast password?
Check here and read the result at the bottom if compromised

check e-mail >> https://haveibeenpwned.com/
Pwned Passwords  >>  https://haveibeenpwned.com/Passwords

How reliable is this site?  I've just fed it a series of made-up nonexistent email addresses and it reported every one of them as "pwned".  It suggests to me that this is just a marketing operation for their security products.

Offline DavidR

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 88900
  • No support PMs thanks
Re: Avast Data Breach or ?
« Reply #6 on: July 13, 2018, 03:35:29 PM »
You are likely to find lots of emails that aren't actually in existence as bots could be generating random emails on speculation.

Personally I never use sites like this I'm a trusting sole (NOT), who is to know if the site has been pwned/hacked.
Windows 10 Home 64bit/ Acer Aspire F15/ Intel Core i5 7200U 2.5GHz, 8GB DDR4 memory, 256GB SSD, 1TB HDD/ avast! free 24.2.6105 (build 24.2.8918.824) UI 1.0.799/ Firefox, uBlock Origin, uMatrix/ MailWasher Pro/ Avast! Mobile Security

Offline CraigB

  • Avast Überevangelist
  • Serious Graphoman
  • *****
  • Posts: 11239
  • No support PM's thanks
Re: Avast Data Breach or ?
« Reply #7 on: July 13, 2018, 03:35:49 PM »
I received email today  -  definitely a phishing attempt   but something different.    Here is a Copy :

----------------------------

I am aware,  ( REMOVED)   , is your password. you don't know me and you are most likely thinking why you're getting this e mail, correct?

The answer is, I installed a malware on the adult video clips (porn) and guess what, you visited this site to experience fun (you know what I mean). While you were watching videos, your browser started operating as a Rdp (Remote desktop) having a key logger which gave me access to your display screen and webcam. Just after that, my software program collected every one of your contacts from messenger, social networks, as well as email.

What exactly did I do?
I made a double-screen video. First part displays the video you were watching (you've got a good taste lmao), and 2nd part shows the recording of your cam.

Exactly what should you do?
Well, in my opinion, $1900 is a reasonable price tag for our little secret. You'll make the payment through Bitcoin (if you don't know this, search "how to buy bitcoin" in google).

BTC ADDRESS: 1CE3Qk4aWoxEnXVTjQgFeBsmo4Cw3AAgXA
(It is CASE sensitive, so copy and paste it)

Notice:
You have one day in order to make the payment. (I have a unique pixel in this email message, and at this moment I know that you've read through this message). If I don't receive the Bitcoins, I will certainly send out your video to all of your contacts including family members, co-workers, and so on. nevertheless, if I do get paid, I'll erase the video immediately. If you really want proof, reply with "yes!" and I definitely will send out your video to your 15 friends. It is a non-negotiable offer, so kindly do not ruin my time and yours by responding to this email.   

-----------------

Obviously a phishing attempt as I have no web cam  and have no such site history.   BUT  what alarms me is the password they gave  WAS  my avast forums password .

Has Avast had a Breach  or  ??   
If it were just a random made up password attempting to scare someone I would just laugh it off.   I tried to find a way to contact Avast about it but they are so email isolated.

I have given my password to no one  and did not use it on any other sites.
I received the exact same email late last night, the password mentioned was also my old Avast password which was changed years ago, it's obviously taken this long for the information that was compromised from the Avast hack in late 2014 to do the rounds  ::)
« Last Edit: July 13, 2018, 05:00:09 PM by CraigB »

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37509
  • Not a avast user
Re: Avast Data Breach or ?
« Reply #8 on: July 13, 2018, 05:12:58 PM »
Quote
How reliable is this site?
You are not the first one to ask   ;)    (google search)

If there was a problem it would be on security websites like "krebs on security" and others but have not seen any
Also the guy who made it "Troy Hunt" is a know security researcher





Offline digmor crusher

  • Sr. Member
  • ****
  • Posts: 214
Re: Avast Data Breach or ?
« Reply #9 on: July 13, 2018, 08:38:15 PM »
Got the same email yesterday, suspected it was a result of the Avast breach. Not good Avast.

Offline Michael (alan1998)

  • Massive Poster
  • ****
  • Posts: 2768
  • Volunteer
Re: Avast Data Breach or ?
« Reply #10 on: July 14, 2018, 02:05:24 PM »
Got the same email yesterday, suspected it was a result of the Avast breach. Not good Avast.

Unfortunately, Avast is not the first AV company to be hacked, and they certainly won't be the last.

I'll remind all of you guys. If the information they have is really that crucial, they won't email you. Emails can be tracked. What they'll do is use that password to access other information.  I had two of my passwords breached in the last week. (Still not sure how they got the second one as it'd never been used elsewhere.)

No, they'll just straight up steal whatever they can (In this case, the contents of my Bank's chequing account) and run as fast as they digitally can. If you DO get hacked, don't panic - for me it was a call to the bank, Paypal (where the breach originated) and a call to the RCMP with information regarding where the idiot lived. Change all of your passwords from a secure computer (for me, I wiped every device in my house, reset my router to factory defaults) and then changed my PWs to 20+ character long passwords. I got all my money back (which wasn't much as I've always feared someone hacking my Paypal.)

Oh, I also wrote a very long message to my bank about their online security (which is nothing but a joke). Mandated fixed-length passwords (all passwords are 6, yes SIX characters long). No symbols. Needless to say, I ripped them a new one in that email. They have some excuse along the lines of "Oh, but your bank card number is randomly generated & not easily tracable" Yup, right up until it gets pickpocketed. It'd would take them about a day to crack your banks password (on a modern system using SHA512 encryption). They also have the standard "reset your password" option if you forget it. Those are based on questions that are so commonly social engineered on Social Media (FB, usually). It's not mandated for you to physically walk into a bank to change it.

At least the tellers that I dealt with at the bank were understanding and agreed with my concerns.
VOLUNTEER

Senior Security Analyst; Sys Admin (Linux); Forensics/Incident Response.

Security is a mindset, not an application. Think BEFORE you click.

Offline mchain

  • Avast Evangelist
  • Ultra Poster
  • ***
  • Posts: 5564
  • Spartan Warrior
Re: Avast Data Breach or ?
« Reply #11 on: July 14, 2018, 06:32:52 PM »
@ Michael (alan1998),

Sheesh, what a sense of outrage and violation!  Good you caught the perp and notified the authorities rather than handle it yourself. 

Yup, Avast is not the first nor the last to be hacked; all websites are potential targets. 

[OT]  As polonus often points out, web site security is mostly shoddily implemented and not updated or addressed in a timely manner.

Always remember:  One party is a victim and the other is the perpetrator.  Don't blame the victim if they have taken proper precautions and help address their issues if they didn't.
Windows 10 Home 64-bit 22H2 Avast Premier Security version 24.1.6099 (build 24.1.88821.762)  UI version 1.0.797
 UI version 1.0.788.  Windows 11 Home 23H2 - Windows 11 Pro 23H2 Avast Premier Security version 24.2.6105 (build 24.1.8918.827) UI version 1.0.801

Offline NON

  • Japanese User
  • Avast Überevangelist
  • Ultra Poster
  • *****
  • Posts: 5477
  • Whatever will be, will be.
Re: Avast Data Breach or ?
« Reply #12 on: July 15, 2018, 05:37:08 AM »
I got the same message too, its mail address and password is certainly from the old compromised forum.

BTW the set of address/password in the mail I received is the account for testing (having short password and rarely used). My main account (with longer password) seems not compromised yet. They may be used brute-force attack to crack the hashed passwords.
« Last Edit: July 15, 2018, 05:41:54 AM by NON »
Desktop: Win10 Pro 22H2 64bit / Core i5-7400 3.0GHz / 32GB RAM / Avast 23 Premium Beta(Icarus) / Comodo Firewall
Notebook: Win10 Pro 22H2 64bit / Core i5-3340M 2.7GHz / 12GB RAM / Avast 23 Free / Windows Firewall Control
Server: Win11 Pro 23H2 64bit / Core i3-4010U 1.7GHz / 12GB RAM / Avast One 23 Essential

Avast の設定について解説しています。よろしければご覧ください。

REDACTED

  • Guest
Re: Avast Data Breach or ?
« Reply #13 on: July 15, 2018, 11:32:10 PM »
Me too:
____________________
De : Ace Mcaleavey <jgcesarohemphillsx@outlook.com>
Envoyé : jeudi 12 juillet 2018 21h09
Objet : RE: [motdepasse]

I am aware, [motdepasse], is your password. you do not know me and you are most likely wondering why you're getting this email, right?

Actually, I installed a malware on the adult vids (pornography) and do you know what, you visited this web site to experience fun (you know what I mean). While you were watching videos, your internet browser began functioning as a Rdp (Remote desktop) having a key logger which gave me accessibility to your display and also cam. Right after that, my software collected all of your contacts from messenger, fb, and email.

What did I do?
I have made a double-screen video. First part shows the video you were watching (you have a nice taste hehe), and 2nd part displays the recording of your web cam.

What should you do?
Well, in my opinion, $1200 is a reasonable price for our little secret. You will make the payment through Bitcoin (if you don't know this, search "how to buy bitcoin" in google).

BTC ADDRESS: 1CE3Qk4aWoxEnXVTjQgFeBsmo4Cw3AAgXA
(It is case sensitive, so copy and paste it)

Important:
You have one day in order to make the payment. (I have a specific pixel within this e-mail, and right now I know that you've read this e mail). If I do not receive the BitCoins, I will certainly send out your video recording to all of your contacts including family members, coworkers, and many others. nevertheless, if I receive the payment, I'll destroy the video immediately. If you want to have proof, reply with "yes!" and I definitely will send out your video to your 14 contacts. It's a non-negotiable one time offer, so kindly don't waste my personal time and yours by replying to this message.
« Last Edit: July 16, 2018, 10:15:23 AM by gui78120 »

Offline essexboy

  • Malware removal instructor
  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 40589
  • Dragons by Sasha
    • Malware fixes
Re: Avast Data Breach or ?
« Reply #14 on: July 16, 2018, 02:42:09 PM »
It was a hacked database somewhere as I received one as well.  But the password referenced was one I have not used for many, many years and I do not think I used it on this forum ...  But as I have no camera on my pc I would love to see the pictures of me :)  P.s they want $1800 from me, mayhap they think I am rich