NSFW: Due to the nature of some scams, combined with the language used by scammers, some topics covered here may be considered Not Safe For Work (NSFW). The following post is an example of this, we recommend waiting until the setting is appropriate before continuing through the thread.
What Is The Pegasus Sextortion Scam?
The "Pegasus Email Scam is a type of "Sextortion scam". It's a particularly insidious form of cybercrime where scammers attempt to extort money from victims by threatening to release compromising videos of them.
A modified version of the scam has been circulating recently which includes a generic Google Maps photo of a victim's known address, or previously known address. The email script remains relatively the same, but we have noticed an uptick of payments being sent by victims. Remember, your address is public knowledge and Google's Street View Maps is available to anyone on the internet.
Typical Scam Tactics and Threats
Threatening Email: You receive an email claiming that the scammers have installed Pegasus spyware on your device while you were visiting adult websites.
Personal Information: A number of individuals may receive a slightly modified version of this email that includes your name, personal phone number, address, etc.
False Accusation: The email falsely accuses you of engaging in explicit online activities and claims to have recorded you.
Demand for Payment: The scammers demand a ransom in cryptocurrency, typically Bitcoin, to prevent the release of the alleged video. Typically, this email will contain a PDF attachment that contains a QR code for you to scan in order to make the payment.
Important Information
No Threat: This is a scam, the scammer has NOT installed any kind of malicious software on your device.
Personal Information: It may be very concerning if you receive the modified version of this email that contains some of your personal information. However, this is one instance where it's comforting to know that your personal information is relatively easy to come across due to the number of companies that have had data breaches in past.
No Evidence: The scammers do NOT have any compromising videos of you. They're bluffing.
Don't Pay: Never pay a ransom to these scammers. In this example they don't have any legitimate information. Even if they did, paying does not guarantee your privacy and will actually result in the scammers coming back to demand even more.
What to Do if You're Targeted
Delete: Delete the email without clicking on any links or downloading any of the attachments to your computer.
Don't Panic: Take a deep breath, this is a scam, don't let fear dictate your actions.
ScamBot Command
The ScamBot can provide a shortened description of this scam by using the following command:
!pegasus
Pegasus Email Example
