Webcam Blackmail / Sextortion Email Scam via Email
How mass-spam sextortion emails falsely claim to have hacked your webcam and recorded you, then pressure you to pay before the fake footage is 'released'.
Part of: Webcam Blackmail / Sextortion Email Scam
Last reviewed: 13 July 2026
The webcam blackmail email scam is delivered almost exclusively through the medium it is named for: a cold email, sent to thousands or millions of addresses at once, claiming the sender installed spyware on your device and recorded you through your webcam while you visited an adult website. The email typically includes an old, breached password of yours in the subject line or opening lines to make the claim feel credible, then threatens to send the supposed footage to your entire contact list unless you pay in cryptocurrency within a short deadline.
No hacking or recording has actually taken place in the overwhelming majority of these emails. The password was harvested from a historic, unrelated data breach and is being reused as a fear-inducing prop. Because the message is mass-mailed rather than personally targeted, recognising the email-specific pattern — a stranger's address, generic threatening language, and a bitcoin wallet — is usually enough to identify it as a scam and delete it without paying anything.
How this scam works on Email
The email typically arrives from a spoofed or throwaway address, often disguised to look like it was sent from your own account to make the 'hack' claim seem more plausible. The subject line or first line contains an old password associated with your email address, pulled from a previous data breach unrelated to any actual webcam access.
The body claims malware was installed when you visited an adult site, that your webcam recorded you, and that your microphone captured audio, all compiled into a split-screen video that will be sent to your contacts, family, and colleagues unless a cryptocurrency payment is made within 24 to 48 hours. The email usually includes a bitcoin wallet address and inflates urgency by claiming a tracking pixel will alert the sender the moment you open the message.
Because the same template is blasted to enormous mailing lists purchased from breach data, most recipients never had a webcam active or never visited the site described, which is itself a strong sign the claim is fabricated boilerplate rather than a genuine targeted threat.
Common red flags
- The email opens with an old password of yours that you recognise from a previous account, not a recent one
- The sender address is spoofed to look like your own email or is an unfamiliar throwaway address
- The message claims webcam footage exists but includes no actual screenshot or proof, only a description
- Payment is demanded exclusively in cryptocurrency to an anonymous wallet address
- A tight countdown (24 to 72 hours) is used to prevent you from thinking it through or checking sources
- The same or a near-identical email has been reported by many other people online with the same wording
How to protect yourself
- Do not reply to the email, click any links, or open any attachments
- Do not pay — paying confirms your address is active and invites further extortion attempts
- Change the password mentioned in the email everywhere you have reused it, and enable two-factor authentication
- Check whether your email appears in known data breaches using a reputable breach-checking service
- Cover or physically disconnect your webcam when not in use as a general precaution, not because this specific email is credible
- Mark the email as spam/phishing in your email provider so similar messages are filtered in future
How to report it
- Report the email as phishing/spam directly through your email provider's built-in reporting tool
- File a report with the FBI's IC3 (ic3.gov) in the US or Action Fraud in the UK
- Report the bitcoin wallet address to blockchain-abuse tracking services if one was provided
Frequently asked questions
Is there really a video of me?
In the vast majority of these mass-mailed emails, no recording exists at all. The email is a template sent to enormous lists of addresses paired with old breached passwords to create false credibility. If the email cannot show you an actual screenshot or clip as proof, treat the claim as fabricated.
Why does the scammer know my old password?
It almost always comes from a historic data breach at a website you had an account with, not from hacking your current device. Breached credential lists are bought and sold cheaply and reused across millions of extortion emails exactly like this one.
Should I pay a small amount just to be safe?
No. Paying does not make the threat go away — it confirms to the sender that your email address is active and that you respond to threats, which typically leads to repeat demands rather than resolution.
Can I get my money back if I already paid the bitcoin ransom?
Cryptocurrency payments are generally irreversible, so a refund from the scammer is extremely unlikely. Report the transaction and wallet address to the relevant cybercrime authority; recovery may depend on the payment method and timing, but you should not expect the funds back.
Should I tell my contacts in case the video is real?
You can mention the email to close family if it would ease your mind, but there is generally no need to alert your whole contact list, since no footage exists to distribute in the first place.