This article was published on March 19, 2019

Blackmailers are posing as CIA agents to steal your Bitcoin

This is the sextortion scam, with a twist


Blackmailers are posing as CIA agents to steal your Bitcoin

A cryptocurrency fan has issued a warning: scammers are posing as the US Central Intelligence Agency (CIA) to fool you into giving up $10,000 worth of Bitcoin, so take notice.

A Reddit post titled “CIA got me fam” displayed proof of a new bogus email campaign designed to trick potential victims into thinking they are subject of an international criminal investigation.

The ruse is their details have been flagged in a database related to a police operation set to arrest more than 2,000 individuals suspected of paedophilia across 27 countries.

Legitimacy is supposedly derived from its masked email domain (@esxo.cia-gov.ga), as well as an image of a CIA crest in the email signature.

Oh no, not the chat-room logs!

The <3 of EU tech

The latest rumblings from the EU tech scene, a story from our wise ol' founder Boris, and some questionable AI art. It's free, every week, in your inbox. Sign up now!

This potentially very serious legal problem can all go away, though, if you would just transfer $10,000 in Bitcoin to an address (supposedly) controlled Hong Lees, a federal agent working for the CIA’s Directorate of Science and Technology.

The email lists cryptocurrency exchanges Coinbase, Bitstamp, and Coinmama as examples of platforms that support Bitcoin purchase and transferal.

It also seeks to make it clear that Lees needs “a few days” to access and edit the files (read: scrub the evidence of your supposed paedophilia), so any potential payments would be need to be made well before arrests start (the commencement date is conveniently included).

Nice try, Lees

If it wasn’t already obvious, this email is full of shit. The CIA is not out here requesting Bitcoins from potential paedophiles, and if you receive this – the best course of action is to simply not respond.

This scam is a slight evolution of the infamous Bitcoin ‘sextortion’ scam. That fraud is premised on the idea that a “magic pixel” has been smuggled onto the target’s machine, which then recorded video of the potential victim masturbating.

Those masturbation vids wouldn’t be released as long as $1,900 in Bitcoin was sent to a specific address, which is considerably less than the $10,000 requested by “the CIA.”

The sextortion scam was first discovered in June 2017, and by December last year researches estimated it had successfully swindled more than $300,000 worth of Bitcoin from victims.

For now, it doesn’t appear as though this CIA scam has found any success. At pixel time, the supplied Bitcoin address is entirely empty, with no transactions in its history. Let’s hope it stays that way.

Update 17:40 UTC, March 19: As further reports surface, it appears these fraudsters are generating unique Bitcoin addresses, presumably to hide the full extent of their potential success.

As each potential victim has their own Bitcoin address to send the $10,000 “ransom,” gauging how many often their phishing results in Bitcoin payments is more difficult than if they were to use a single address for every email.

It also seems each attempt comes with a randomized name for the fake CIA agent, so if you receive this email, it’s likely it won’t be from “Hong Lees.”

Want to find out more about cryptocurrencies and blockchain technology? Check out our Hard Fork track at TNW 2019!

Get the TNW newsletter

Get the most important tech news in your inbox each week.

Also tagged with