“Unfortunately, there are some bad news for you” email scam Removal Guide
What is “Unfortunately, there are some bad news for you” email scam?
“Unfortunately, there are some bad news for you” scam exports money from people basing the ransom demand on false information
The email message states about possible consequences that are created out of nowhere
“Unfortunately, there are some bad news for you” email message encourages people to participate and pay the ransom by claiming that senders have sensitive information about the person on the receiving end. This is a sextortion scam that is sent in the campaign aiming to get money from people falling that someone is having the sexually explicit video of them.
The recording is threatened to be released to the public, so the payment in Bitcoin needs to be made as soon as possible. Criminals ask for $1750 in Bitcoin, and the lengthy email message is named You have an outstanding payment in the subject line bar. Keep in mind that the size of payment may differ from person to person.
In reality, this is a scam and there is no video regarding your activities or personal information. Paying is not recommended and cannot give any good results. “Unfortunately, there are some bad news for you” is the start of the email message that should scare people into following the suggested steps.
There are various claims and scare tactics used in the long email message, you should ignore them and be aware that these criminals have only bad intentions. You can get your files or sensitive data exfiltrated if you contact these people and transferring payment is a wrong move since you would be paying for nothing and losing funds.
|Name||“Unfortunately, there are some bad news for you” email|
|Type||Scam; phishing campaign; fraud|
|Also known||You have an outstanding payment scam|
|Ransom amount||$1750 in Bitcoin (mat vary)|
|Claim||Scammers state that the compromising video is in their possession, so the ransom needs to be paid to avoid publication|
|Damage||Sensitive and private information, financial losses, identify theft|
|Distribution||Deceiving emails, malicious links, domains, pop-up ads with misleading material|
|Removal||Possible malware infections can be removed using the proper anti-malware tools|
|Repair||Many things can get damaged, so running ReimageIntego can help with the proper performance|
“Unfortunately, there are some bad news for you” email scam is a campaign during which malicious actors come up with universal claims and scary messages that can be convincing enough, so people transfer money to the cryptocurrency wallets linked with criminals. Bitcoin is one of the most popular digital currencies that malicious actors prefer to get from affected people.
Social engineering methods used here are pretty common in these scamming campaigns because people tend to believe various claims when facts are even a little close to reality. People can easily fall for the scammer's message and believe they got hacked if there is not enough knowledge on such infections and the possibilities of the hacking. You should ignore such messages and not panic if you haven't clicked on any of the links or buttons within the email.
The specific scamming techniques
“Unfortunately, there are some bad news for you” email scam is not as dangerous as the senders want you to believe. All the false claims are there to trick recipients into paying the ransom over the fake video. Instead of deleting the explicit video, criminals can then spread malware on the machine by sending you a laced file or additional link via email. The threat actor already can state that your device was laced with a virus that obtained such a video months ago to trick you into paying.
Thos si the sextortion scam that is only distributed around to make people pay for nonsense claims
The lengthy message victims get in the email:
Unfortunately, there are some bad news for you.
Around several months ago I have obtained access to your devices that you were using to browse internet.
Subsequently, I have proceeded with tracking down internet activities of yours.
Below, is the sequence of past events:
In the past, I have bought access from hackers to numerous email accounts (today, that is a very straightforward task that can be done online).
Clearly, I have effortlessly logged in to email account of yours (xxxxxxxx).
A week after that, I have managed to install Trojan virus to Operating Systems of all your devices that are used for email access.
Actually, that was quite simple (because you were clicking the links in inbox emails).
All smart things are quite straightforward. (>_<) The software of mine allows me to access to all controllers in your devices, such as video camera, microphone and keyboard. I have managed to download all your personal data, as well as web browsing history and photos to my servers. I can access all messengers of yours, as well as emails, social networks, contacts list and even chat history. My virus unceasingly refreshes its signatures (since it is driver-based), and hereby stays invisible for your antivirus. So, by now you should already understand the reason why I remained unnoticed until this very moment… While collecting your information, I have found out that you are also a huge fan of websites for adults. You truly enjoy checking out porn websites and watching dirty videos, while having a lot of kinky fun. I have recorded several kinky scenes of yours and montaged some videos, where you reach orgasms while passionately masturbating. If you still doubt my serious intentions, it only takes couple mouse clicks to share your videos with your friends, relatives and even colleagues. It is also not a problem for me to allow those vids for access of public as well. I truly believe, you would not want this to occur, understanding how special are the videos you love watching, (you are clearly aware of that) all that stuff can result in a real disaster for you. Let's resolve it like this: All you need is $1750 USD transfer to my account (bitcoin equivalent based on exchange rate during your transfer), and after the transaction is successful, I will proceed to delete all that kinky stuff without delay. Afterwards, we can pretend that we have never met before. In addition, I assure you that all the harmful software will be deleted from all your devices. Be sure, I keep my promises. That is quite a fair deal with a low price, bearing in mind that I have spent a lot of effort to go through your profile and traffic for a long period. If you are unaware how to buy and send bitcoins – it can be easily fixed by searching all related information online. Below is bitcoin wallet of mine: 17Ga9z9f3HFBafsmMq76NVsVX5r1CzxhaP You are given not more than 48 hours after you have opened this email (2 days to be precise). Below is the list of actions that you should not attempt doing: > Do not attempt to reply my email (the email in your inbox was created by me together with return address).
> Do not attempt to call police or any other security services. Moreover, don’t even think to share this with friends of yours. Once I find that out (make no doubt about it, I can do that effortlessly, bearing in mind that I have full control over all your systems) – the video of yours will become available to public immediately.
> Do not attempt to search for me – there is completely no point in that. All cryptocurrency transactions remain anonymous at all times.
> Do not attempt reinstalling the OS on devices of yours or get rid of them. It is meaningless too, because all your videos are already available at remote servers.
Below is the list of things you don’t need to be concerned about:
> That I will not receive the money you transferred.
– Don’t you worry, I can still track it, after the transaction is successfully completed, because I still monitor all your activities (trojan virus of mine includes a remote-control option, just like TeamViewer).
> That I still will make your videos available to public after your money transfer is complete.
– Believe me, it is meaningless for me to keep on making your life complicated. If I indeed wanted to make it happen, it would happen long time ago!
Everything will be carried out based on fairness!
Before I forget…moving forward try not to get involved in this kind of situations anymore!
An advice from me – regularly change all the passwords to your accounts.
Note that the crypto-wallet provided might also vary. Here are a few examples you might encounter:
- 153tGcwGFcj33YXxtjvgnzCYW1FhcPo1CM, etc.
There is no other way to get rid of the scamming message but to remove the fake email without interacting with it. These scams need to be ignored, and the message poses no threat to you or your contacts. Unless you provide more details to the attacker or pay the ransom, respond to the email itself. If you see the subject line like You have an outstanding payment in your email box, you need to avoid even opening the message.
Before you get rid of the email, we recommend contacting your local authorities and reporting it, as there are several law enforcement agencies that work on caching criminals behind the scam. Here are a few links that you may find useful:
- USA – Internet Crime Complaint Center IC3
- United Kingdom – ActionFraud
- Canada – Canadian Anti-Fraud Centre
- Australia – ScamWatch
- New Zealand – ConsumerProtection
- Germany – Polizei
- France – Ministère de l'Intérieur
If your country is not listed above, you should contact the local police department or communications center.
Ways to clear the machine from infections
“Unfortunately, there are some bad news for you” email scam shouldn't cause any symptoms like other more common malware, but if you notice unauthorized purchases, changed online account passwords, background processes, and programs installed behind your back, you should be concerned about the security of your machine.
The best way to fight malware is with antivirus programs. Tools that are considered system security applications or anti-malware can check the machine and detect problems with the performance, so the infection is terminated. You can rely on apps like SpyHunter 5Combo Cleaner or Malwarebytes for this. Scanning the machine properly can help ensure that the system is virus-free.
Sometimes the exposure to some malicious material online is the thing that led to the “Unfortunately, there are some bad news for you” email scam message. When you receive an email with a file attached or link included, be careful! The attachment could be infected and can allow the malware to get onto your computer.
The best way to avoid getting”Unfortunately, there are some bad news for you” email scam messages and malware is by following these simple rules:
- never open an attachment from unknown sources;
- check who submitted your download channel – official sites or freeware/gullible ones;
- make sure any program activation tool comes straight off a developer's site with no grey market alternatives like cracks etc.
If you notice additional issues with the performance of the machine, you might want to check if there are any infections active. If that is difficult or you feel you don't have enough experience, rely on these tips.
Step 1. Access Safe Mode with Networking
Manual malware removal should be best performed in the Safe Mode environment.
Windows 7 / Vista / XP
- Click Start > Shutdown > Restart > OK.
- When your computer becomes active, start pressing the F8 button (if that does not work, try F2, F12, Del, etc. It all depends on your motherboard model) multiple times until you see the Advanced Boot Options window.
- Select Safe Mode with Networking from the list.
Windows 10 / Windows 8
- Right-click on Start button and select Settings.
- Scroll down to pick Update & Security.
- On the left side of the window, pick Recovery.
- Now scroll down to find Advanced Startup section.
- Click Restart now.
- Select Troubleshoot.
- Go to Advanced options.
- Select Startup Settings.
- Press Restart.
- Now press 5 or click 5) Enable Safe Mode with Networking.
Step 2. Shut down suspicious processes
Windows Task Manager is a useful tool that shows all the processes running in the background. If malware is running a process, you need to shut it down:
- Press Ctrl + Shift + Esc on your keyboard to open Windows Task Manager.
- Click on More details.
- Scroll down to Background processes section, and look for anything suspicious.
- Right-click and select Open file location.
- Go back to the process, right-click and pick End Task.
- Delete the contents of the malicious folder.
Step 3. Check program Startup
- Press Ctrl + Shift + Esc on your keyboard to open Windows Task Manager.
- Go to Startup tab.
- Right-click on the suspicious program and pick Disable.
Step 4. Delete virus files
Malware-related files can be found in various places within your computer. Here are instructions that could help you find them:
- Type in Disk Cleanup in Windows search and press Enter.
- Select the drive you want to clean (C: is your main drive by default and is likely to be the one that has malicious files in).
- Scroll through the Files to delete list and select the following:
Temporary Internet Files
- Pick Clean up system files.
- You can also look for other malicious files hidden in the following folders (type these entries in Windows Search and press Enter):
After you are finished, reboot the PC in normal mode.
If you still fear that the “Unfortunately, there are some bad news for you” email might be real and your device got hacked before – change the passwords of your accounts. Make sure to double-check the machine with SpyHunter 5Combo Cleaner or Malwarebytes and clear any possibly malicious programs detected during the scan. Keep these programs for later checks.
You would also benefit from particular system scans that can help block suspicious emails. Experts note that these scams are common and that malicious actors tend to target various people, so email campaigns can be scary, and resemble real senders and companies. Keep the tool like ReimageIntego too, so any unsolved system issues are left behind. Thore corrupted files and programs can lead to malware infiltration when the system is vulnerable.
How to prevent from getting spam tools
Access your website securely from any location
When you work on the domain, site, blog, or different project that requires constant management, content creation, or coding, you may need to connect to the server and content management service more often. The best solution for creating a tighter network could be a dedicated/fixed IP address.
If you make your IP address static and set to your device, you can connect to the CMS from any location and do not create any additional issues for the server or network manager that needs to monitor connections and activities. VPN software providers like Private Internet Access can help you with such settings and offer the option to control the online reputation and manage projects easily from any part of the world.
Recover files after data-affecting malware attacks
While much of the data can be accidentally deleted due to various reasons, malware is one of the main culprits that can cause loss of pictures, documents, videos, and other important files. More serious malware infections lead to significant data loss when your documents, system files, and images get encrypted. In particular, ransomware is is a type of malware that focuses on such functions, so your files become useless without an ability to access them.
Even though there is little to no possibility to recover after file-locking threats, some applications have features for data recovery in the system. In some cases, Data Recovery Pro can also help to recover at least some portion of your data after data-locking virus infection or general cyber infection.