Cyber Extortion Scams With Google Images

A new variety of phishing emails have been targeting people across the country. This new spin on a very old extortion scam uses Google Maps Street View images to intimidate victims. The email threatens to release compromising photos and videos (which they likely do not possess) unless a substantial amount of Bitcoin is paid. Cybersecurity experts suspect this is a common scam tactic. Scammers often use publicly available data like online directories, social media, and data breaches to gather personal information and then download images of your location from Google Maps to create a sense of urgency and fear.

Why Is This Scam so Effective?

• Personalization: The use of personal information and a visually familiar image makes the threat more convincing.

• Fear and Intimidation: The threat of public exposure or harm can be psychologically distressing, leading victims to comply with the scammer’s demands.

• Anonymity: Cryptocurrency transactions provide anonymity, making it difficult to trace the scammer’s identity.

How does it impact the FIT community?

Unfortunately, we have had multiple reports of FIT users having received this hoax email. The Division of Information Technology has remediated the issue by fine tuning email filters. If you receive this or any suspicious email mark the email as a phish in Google. If you think you have been a victim of phishing, forward it to [email protected] or open a ticket at techhelp.fitnyc.edu. 

How to Protect Yourself

• Be Vigilant. Be wary of unsolicited emails, especially those containing threats or demands for payment.

• Verify Information. If you receive a suspicious email, try to verify the information independently.

• Don’t Engage. Do not respond to extortion emails or provide any personal information.

• Protect Your Data. Regularly update your passwords and enroll in two-factor authentication for all your accounts. 

• Don’t overshare. Social media accounts with too much personal information make identity theft easier. Things like your high school, where you live, mother’s maiden are always private details threat-actors can use to gain your trust or intimidate you. 

While the Division of Information Technology at FIT has taken steps to filter these emails, it’s important to remain vigilant. Remember, knowledge is your best defense. By following the steps outlined above, you can protect yourself from falling victim to this phishing scam and others like it. Remember, if you ever feel unsure about an email, it’s always best to err on the side of caution and report it. Let’s work together to keep our online community safe.