OK, this is a pretty bad day. Normally I have a couple of pages but sometimes it comes like a tornado. Today it seems themusiczoo.com has been targeted. It is not a brand I’m familiar with in Europe, but maybe better known in the US.
The Receipt(numbers).zips will contain a virus payload that will encrypt my documents and then the hackers will expect an anonymous randsomware payment by bitcoin to unlock it all.
As you can see I run a @catchall address on my old karlomeara.com and bendecko.com domains – firstname.lastname@example.org etc. Most of these aliases have been scraped from websites e.g. the paypal one – that one, for example, on an old site where I offered some products for sale: It is used in the Url sent to PayPal.
Others, like the LinkedIn alias, were not. I was aware of a leak from LinkedIn years before it was in the news – because I could see Spam like this addressed to the my LinkedIn alias – which was only ever used to login to Linked in’s website. They had to be source of the leak.