Extortion Active · 2018–2026 Blackmail / phishing

Got an email saying a hacker filmed you? Here's what it is.

ScamChecker.online · Last verified June 2026 · Active and widespread · 6 min read

In a nutshell

An email claims a hacker recorded you through your webcam while you watched adult content, and demands Bitcoin or it sends the video to everyone you know.
In almost every case there is no video, no hack, and no access to your device. It's a mass email sent to thousands of addresses at once.
The old password it may quote came from a data breach, not from your computer. That's the whole trick - one real-looking detail to make the bluff land.
Don't pay. Don't reply. Delete it, change any reused password, and report it. Steps are below.

Our verdict

This is a scam, and the threat is almost always empty. Paying does not make it stop - it marks you as someone who pays, and the demands continue. A separate, more serious version targets people whose real images were obtained, often teenagers. We cover that case and what to do about it further down.

Does this sound familiar?

An email landed in your inbox claiming someone hacked your device, watched you through your camera, and recorded you on an adult site. Pay a few hundred to a few thousand dollars in Bitcoin within 24 to 48 hours, or it goes to your family, friends, and coworkers. It may even quote a password you recognize, or look like it was sent from your own email address.

Below are reconstructed examples of how these messages look. The wording and amounts change - the structure doesn't. This pattern goes by several names: sextortion email, the "I hacked your camera" scam, the Bitcoin blackmail email, and (the bluff version) a "hello pervert" email. (Illustrations, not real screenshots. Names, addresses, passwords, and wallet addresses are fictional.)

Inbox

Your account has been compromised

security-alert87@mail-relay[.]xyz
to me · 9:41 AM

I know Spring2016! is one of your passwords. I placed malware on an adult site you visited. Your browser worked as a remote desktop with a keylogger that gave me your screen and webcam. I made a split-screen video - the clip you watched on one side, you on the other. Pay $1,450 in Bitcoin within 48 hours or I send it to all your contacts.

BTC: bc1qexample0not0a0real0wallet0address0xyz

The password is the hook. It's almost always old and came from a data breach - proof of a leak, not of a hack.

Inbox

Is visiting [your street] a more convenient way to reach you?

no-reply@secure-notice[.]info
to me · 2:13 PM

Hello, [Your Name]. I know you live at [your address]. Is that a surprise? Don't bother hiding - I have everything. Here's a photo of where you live.

A 2024 variant adds your name, address, and a map image of your home to feel real. Security researchers traced the photos to public mapping tools.4

megan_h__

Active now

I have the screenshots and the video you sent. I also have your followers list.11:58 PM

Send $300 in gift cards in the next hour or I post it and tag your school.11:59 PM

Don't tell anyone. I'm watching.12:00 AM

The serious version: a real chat, often after a fake romantic interest, demanding payment over images the victim was tricked into sending. This one targets teens.

The bluff email and the coercion chat are different threats with the same name. The first is spam with a scary script. The second involves a real conversation and real images. The advice differs, so we treat them separately below.

How the bluff email works

The mass-emailed version - the most common one by far - runs in four steps. No hacking is involved at any point. (The screens above are illustrations of how these messages typically appear.)

A data breach exposes your email

Your email address - and sometimes an old password - leaks in a breach of some website you once used. These dumps are bought and sold in bulk. The scammer never touched your computer. They bought a list.

📂 Billions of breached email-and-password pairs circulate on criminal forums. Yours may be among them without anything on your device being compromised.

One script goes to thousands

The same email is blasted to every address on the list. Software drops in your leaked password automatically, so it feels personal. The "video," the webcam, the malware - all invented. There is nothing to send because nothing was ever recorded.

"I got the exact same email, word for word, except the amount. The password was one I used years ago on a forum." - Recurring report on the FTC consumer alert comments, 2020–20211

The threat is built to make you panic

A short deadline. Shame. "Don't tell anyone." A crypto address you can pay in minutes. Every element is there to stop you thinking and get you to act before you check. Newer versions add your name, address, or a photo of your street to crank up the fear.

⏱ The 24-to-48-hour countdown is the scam, not a real window. Real investigators don't email you a Bitcoin address.

Nothing happens - unless you engage

Delete it and the deadline passes with no consequence, because there was never any footage. If you reply or pay, you've confirmed the address is live and that you scare. Expect more emails, larger demands, and your address sold to other scammers.

🗑 The right move is the simplest one: don't reply, don't pay, delete. Then change the leaked password.

The serious version - read this if real images exist

Some sextortion isn't a bluff. In financially motivated sextortion, a scammer poses as a romantic interest, persuades the victim to send an intimate photo or video, then demands money under threat of sending it to family, friends, or followers. Here the images are real and the threat is real.

This version heavily targets teenagers, especially boys aged 14 to 17, and federal agencies have linked it to victim suicides.2 Scammers also use AI to build fake explicit images from ordinary photos, then extort people over pictures that were never real.2 If this is your situation, or your child's, skip to what to do now - the steps are different, and there is real help.

Remember

A quoted password proves a data leak, not a hack of your device.

A scary email sent to thousands is spam, not a personal threat.

Paying never ends it. It marks you as someone who pays.

If real images are involved, you're not in trouble and not alone. Help exists.

Red flags to catch it early

For the bluff email, any one of these is a strong tell. Together they're conclusive.

It quotes a password

Almost always an old one you stopped using. It came from a breached website's database, not from your computer.

A countdown and a Bitcoin address

A 24-to-48-hour deadline paired with a crypto wallet. Crypto is demanded because it's hard to trace and impossible to claw back.

"Pay within 48 hours or it goes to everyone."

It claims a recording but shows no proof

Real blackmail with real footage would show you a frame. The bluff never does, because there's nothing to show.

It looks sent "from your own address"

A spoofing trick to imply they're inside your account. Sender addresses are trivial to forge and prove nothing.

Generic, with no real detail about you

No site name, no date, no actual content of the supposed video. Vague because the same script went to thousands of people.

"Don't tell anyone"

Isolation is the lever. Silence and shame are what the scam runs on. Telling someone is exactly what defeats it.

Got one of these? Here's what to do

First, breathe. Receiving one of these is frightening by design. For the mass email, you almost certainly have nothing to fear and nothing to clean up beyond an old password. If real images are involved, you are not in trouble for being targeted, and the steps below include people whose job is to help.

If it's the mass email (no real images)

The common case

Don't pay, don't reply, then close the door behind it

There's no footage and no access to your device. A few minutes of cleanup is all this calls for.

Don't pay and don't reply Replying confirms your address is active and that you'll engage. Paying invites larger demands. Neither buys you anything, because there's nothing to release.

Change any password the email quoted If you still use that password anywhere, change it everywhere it appears and never reuse it. Turn on two-factor authentication on your email and important accounts.

Check where your email has leaked A breach-check service like Have I Been Pwned shows which breaches exposed your address, so you know which accounts to clean up. The email being out there is the breach - not your device.

Cover or disable the webcam if it eases your mind Not because you were filmed - you weren't - but if it lowers the anxiety, a sticker over the lens is cheap peace of mind.

Report it, then delete Report to the FTC and the FBI's IC3 (links below). Reports help track the wallets and campaigns behind these waves. Then delete the email.

If real images exist, or the target is a teen or child

The serious case

Stop contact, save evidence, get help - don't pay

Paying rarely stops it and often brings more demands. There are services that remove images and people trained to help.

Stop responding, but don't delete anything Cut off contact. Keep the messages, usernames, and profile - they help investigators. Block the account after you've saved what you can.

Don't pay The FBI is clear that paying rarely ends sextortion - offenders usually demand more, and may release the material anyway.3

Use a takedown service for the images If the person in the image was under 18, NCMEC's free Take It Down can help remove it from participating platforms - the image never leaves the device. For adults 18+, StopNCII.org does the same. Both work from a digital fingerprint, so you never send the picture to anyone.

Tell someone, and report it If it involves a minor, tell a trusted adult and report to NCMEC's CyberTipline and the FBI's IC3. There is no shame in being targeted - the person doing the threatening is the one committing a crime.

Reach out for support if you're struggling This can feel overwhelming. In the US you can call or text the 988 Suicide & Crisis Lifeline any time. You don't have to handle this alone.

Ignore anyone who offers to "erase" or "recover" it for a fee People who've been targeted are quickly approached by a follow-up money recovery scam - a second fraud charging upfront to "scrub" images or "recover" funds. The FBI has warned about for-profit companies charging sextortion victims with deceptive tactics.5 The takedown services above are free.

Where to report it

Start here

FTC - ReportFraud.ftc.gov

Federal Trade Commission. Covers blackmail emails and online extortion. Your report feeds the Consumer Sentinel database used by law enforcement nationwide.

reportfraud.ftc.gov

For extortion and any loss

FBI - IC3.gov

Internet Crime Complaint Center. The FBI tracks sextortion and extortion campaigns, including the wallets used to collect Bitcoin.

ic3.gov

If a minor is involved

NCMEC CyberTipline

National Center for Missing & Exploited Children. Report sextortion of anyone under 18. Pair it with the free Take It Down tool to remove images.

report.cybertip.org

In crisis? The 988 Suicide & Crisis Lifeline is free and available 24/7 - call or text 988.

Start here

Action Fraud

UK national fraud and cybercrime reporting. Reports go to the National Fraud Intelligence Bureau. Online or phone: 0300 123 2040.

actionfraud.police.uk

For intimate-image abuse (adults)

Revenge Porn Helpline

Free, confidential UK support for adults whose intimate images are shared or threatened. Runs StopNCII.org for takedowns.

revengepornhelpline.org.uk

If a child's image is involved

Internet Watch Foundation

Reports and removes child sexual abuse imagery. Use alongside Report Remove (Childline) for under-18s.

iwf.org.uk/report

In emotional distress? Samaritans is free, 24/7 - call 116 123.

Start here

Scamwatch (ACCC)

Australian Competition and Consumer Commission. Report the blackmail email to help track emerging patterns.

scamwatch.gov.au/report-a-scam

For image-based abuse

eSafety Commissioner

Australia's online safety regulator. Has formal powers to help remove intimate images shared or threatened without consent.

esafety.gov.au/report

If identity information was shared

IDCARE

Australia and New Zealand's national identity and cyber support service. Free specialist help.

idcare.org

In crisis? Lifeline Australia is free, 24/7 - call 13 11 14.

Canada

Canadian Anti-Fraud Centre

antifraudcentre-centreantifraude.ca

European Union

Europol Cybercrime Reporting

europol.europa.eu

Anywhere - extortion and crypto

FBI IC3 (accepts international reports)

Accepts reports from victims outside the US, useful when Bitcoin was demanded.

ic3.gov

Not sure where to report? Search "[your country] report online extortion" or "image-based abuse helpline." For takedowns: Take It Down (under 18) and StopNCII.org (18+) work internationally.

How big is this problem?

The bluff email has circulated since at least 2018 and spikes whenever a fresh batch of breached passwords hits the market. The coercion version - real images, often teens - has grown sharply and turned deadly. Email was the most common way people reported being contacted by scammers in 2024, according to the FTC's Consumer Sentinel data.6

~55,000

Reports of sextortion and extortion-related crimes the FBI received in 20242

$33.5M

Financial losses reported in those 2024 cases2

+59%

Increase in the number of reports versus 20232

Boys 14–17

The group federal agencies flag as most targeted by financially motivated sextortion2

The bluff email costs the scammer almost nothing. Send a script to a million addresses, drop in a leaked password to make it bite, and a small fraction panic and pay. The economics work even if 99.99% delete it - which is why these waves keep coming.

The coercion version is the dangerous one. The US Treasury's financial-crimes unit, FinCEN, issued a notice in 2025 warning banks to watch for it, citing the FBI's figures and the toll on victims and families.2 Scammers increasingly use generative AI to fake explicit images from someone's ordinary social media photos, then extort them over pictures that were never real.2 The defense is the same in both cases: don't pay, don't stay silent, and get help.

Sources

Federal Trade Commission, "Scam emails demand Bitcoin, threaten blackmail", April 2020. Bluff-email mechanics, the breached-password trick, and the don't-pay-delete-report guidance. The public comment thread documents the near-identical scripts victims received.
Financial Crimes Enforcement Network (US Treasury), "FinCEN Issues Notice on Financially Motivated Sextortion" (FIN-2025-NTC2), 2025. Source of the ~55,000 reports, $33.5M losses, and 59% increase figures (FBI, 2024), the boys-14–17 targeting, and the AI/deepfake trend.
Federal Bureau of Investigation, "Sextortion" guidance. FBI position that paying rarely stops sextortion and offenders typically demand more.
Brian Krebs, "Sextortion Scams Now Include Photos of Your Home", and the Electronic Frontier Foundation, "New Email Scam Includes Pictures of Your House", September 2024. Security-research documentation of the 2024 "photo of your home" variant. Cited as reported patterns, not government totals.
FBI Internet Crime Complaint Center, "For-Profit Companies Charging Sextortion Victims for Assistance and Using Deceptive Tactics to Elicit Payments", April 2023. Warning that follow-up "recovery" services target sextortion victims - basis for the recovery-scam cross-link.
Federal Trade Commission, 2024 Consumer Sentinel Network data, March 2025. Email as the most commonly reported method of scammer contact in 2024.

Researched and maintained by ScamChecker.online

We document recurring online scam patterns using primary sources - government agencies, law enforcement, and security researchers. We do not accuse named businesses, and ads on this page do not influence our reporting. Read about how we research or who we are.

Last verified: June 2026 · Reviewed against current FTC, FBI, and FinCEN guidance