There are, sadly, far too many people and companies out there more than willing to take advantage of people. Fortunately, awareness is usually a good defense. What are some scams that we should all know about so that we don't fall for them?

I just received a mail from my own e-mail address, hosted on Gandi on my own domain name. It said that the sender has hacked me, used malware, keyloggers and RDP to get my passwords and copy all my files to his own computer, and took videos of me while watching adult content using my webcam (I never noticed the light turning on for it). Claims they've been doing this for a few months. Gives a bitcoin address and wants $1000 (a sum I can't and won't give, don't even have a fraction of it) in 48 hrs, or else will share the videos with my contacts. It said something about a pixel the message included.

I viewed the message from K-9 mail on android (which didn't tell anything about pixels or whatnot), and when I went back on my computer to check the headers and stuff, the message was deleted.

Now, is this some sort of phishing or or have I really been pwned? I feel like it's just phishing, but the message deleting itself kinda gave me shills of fear. I promptly changed my password for the mail account.

I volunteer with several small nonprofits. A few weeks ago, one of them got a spam message from a "volunteer" offering to create a free website for the organization and disclosing a connection to DonorComplete. There was no unsubscribe link. I hit Google, which eventually led me to a thread on TechSoup where I commented with what I had found to that date under the same user name: http://forums.techsoup.org/cs/community/f/24/t/43439.aspx This & other results showed that the "free" website is linked to historically very expensive hosting (historically , ~ $20-$40/mo, now showing about $10/mo) for a static website with very limited support or options.

My research continued intermittently, but there appears to be a network of over 100 domains (active, expired, dormant and/or returning server errors) connected to spam efforts over roughly the last 6 years, questionable marketing tactics dating back to ~ 1998, 4 overlapping corporations with one man as a central figure, several throwaway email addresses and a couple that seem to be dedicated & longer running, a handful of apparently dedicated servers and several shared servers with many connected domains hosted. The messages target nonprofit organizations and churches, with 4 textual variations posted via email, mailing lists, and comments. The first archived comments I found targeted FOSS project mailing lists. Based on the Internet Archive's Wayback Machine, many small nonprofits used their service years ago, but it looks like the spammers' services have been largely abandoned over the last few years - probably why the new campaign started ~ June.

I've filed complaints with two of the registrars, and at least one of the recently active domains appears to be in non-hosted status. Would there be any interest in my posting a thread with the details of what I've found so far (spreadsheets and mind maps in progress)? Would anyone be interested in helping me present the data in a more easily digestible format a la r/dataisbeautiful? Or can anyone recommend an easier way to report the registrant tied to the spam? I'm not trying to start a witch hunt, but these people seem to have flown under the radar for a long time, and I know many small nonprofits aren't tech savvy enough to recognize the warning signs these folks present.