A new scam is doing the rounds: you get an email saying someone has been watching you on your webcam surfing adult websites and ‘doing inappropriate things’ and threatening to send a video to your family and friends. All you have to do to prevent it is pay a sum of money, usually via bitcoin. What lends this email a whiff of truth is that it contains one of your passwords. Should you panic?
In short, no. Over the past few years, many big-name sites, such as LinkedIn, Facebook, Evernote and even our own Ster-Kinekor, have experienced privacy breaches. Some of these have resulted in lists of usernames, emails and passwords being sold on the ‘dark web’ to fraudsters who can use them in scam emails such as those currently being sent out. So while these fraudsters may have one of your passwords, the chances of them actually having hacked your webcam and been spying on you is very low.
You can check if your security has been compromised on this website.
The first thing you should do (after reporting the email as spam, blocking the sender and deleting it), is change all your passwords, starting with the one that’s been compromised. We’re betting that that one password probably unlocks your access to more than one website - a bad habit you should break.
Here’s how to change your password on:
‘Password’ won’t cut it. Neither will ‘Passw0rd’. It’s time to branch out a little to trick the tricksters.
Your password should:
Also consider activating 2-factor authentication on sites that offer it, such as Google. That means you’ll not only need your password, but also a second method of sign-in, such as a One-Time Pin (OTP) that you’ll receive on your phone. So even if the hackers get hold of your password, they won’t be able to sign in to your account.
There are many password managers out there designed to tackle this exact problem. By using a password manager, you’ll only have to remember one password for all your websites, not 20+. Some password managers that are commonly recommended are LastPass, 1Password and Dashlane - there are free and premium, paid versions, depending on what you need.
A password manager will remember all your passwords for you, and a good one should work across devices, and autofill forms and logins to make life easier. Most also generate random passwords for you, so they’re super secure. LastPass, for example, not only stores passwords but also payment cards, bank account details, and important notes.