FraudScope // Threat Library // Sextortion and blackmail

Scam type // Sextortion

Sextortion and blackmail scams

An email or message claims someone has compromising images, video, or browsing history and will share it with your contacts unless you pay. In the vast majority of cases it is an empty bluff designed to panic you. Here is how to handle it.

Explore FraudScope Download on App Store

On-device iPhone · iOS 18+ Available now

What it is

Fear with nothing behind it

Sextortion scams threaten to expose embarrassing images or activity unless you pay, usually in cryptocurrency. To seem credible, the message may include an old password from a data breach or address you by name.

In most mass sextortion emails, the scammer has no actual footage. They send the same template to thousands of people, betting that a few will be frightened enough to pay. Shame and urgency are the entire strategy.

The playbook

How the scam works

Open with "proof"

They cite an old leaked password or your name to seem like they really know you.

Claim compromising material

They say they recorded you through your camera or have your private images.

Threaten exposure

Pay or they send everything to your family, friends, and coworkers.

Demand crypto, fast

A short deadline and a Bitcoin address, so the payment is untraceable.

In their words

What it looks like

// THE MESSAGE

I know your password is "summer2019". I placed malware on your device and recorded you. You have 48 hours to send $1,500 in Bitcoin to the address below, or I send the video to all your contacts.

FraudScope reads it as

Sextortion bluff. FraudScope flags the breach-sourced password as fake "proof," the unverifiable claim, and the crypto deadline. Its guidance: do not pay or reply. Change any reused passwords and report the message.

Red flags

Warning signs to watch for

An old password used as "proof," which usually comes from a public data breach.
A claim to have hacked your camera or have private content, with no actual sample.
A demand for payment in Bitcoin or another cryptocurrency.
A short, high-pressure deadline of 24 to 48 hours.
Generic wording that could apply to anyone.

How FraudScope helps

Replace panic with a plan

Paste the message and FraudScope explains that these are almost always empty mass threats, identifies the breach-password tactic, and gives calm next steps: do not pay, change reused passwords, and report it.

Analysis runs entirely on your iPhone and makes no network requests. The only time FraudScope touches the internet is if you tap Inspect URL to check where a link really goes, and it tells you before it does.

Intent reconstructionCalm guidanceOn-device

Questions

Frequently asked

They knew my password. Does that mean they really hacked me?

Usually not. These passwords typically come from old data breaches that are sold in bulk. It is alarming but not proof of access. Change that password everywhere you used it and enable two-factor authentication.

Should I pay a sextortion demand?

No. Paying marks you as a willing target and invites more demands, and in most cases there is no real material at all. Do not reply, do not pay, preserve the message, and report it to the FBI’s IC3 and the platform involved.

Does FraudScope send my messages anywhere?

No. Analysis runs entirely on your iPhone with no network connection. The only time it contacts the internet is if you choose to inspect a link’s destination, and it tells you before it does.

Will FraudScope catch every scam?

No tool can. FraudScope is strongest with the full content of a message and weaker with a bare screenshot that has no link or sender. It is a powerful second opinion, not a guarantee. When in doubt, slow down and check with someone you trust.

Read the scam before it reads you

FraudScope explains what a suspicious message is really trying to do, entirely on your iPhone. Now available on the App Store.