Is an email saying I was caught viewing adult content and must pay to prevent the video being shared a scam?
Yes. This is called sextortion or webcam blackmail email fraud. In the vast majority of cases, the sender has no video and is bluffing entirely.
Last reviewed: 10 June 2026
Explanation
Sextortion emails are sent in enormous volumes to addresses harvested from data breaches. They typically include a password that you once used — found in the breach data — as 'proof' that your computer was compromised. The email claims that malware was installed during your browsing, that your webcam was activated, and that the sender captured footage of you viewing adult content.
You are given a deadline, typically 24 to 72 hours, to pay a specified amount in Bitcoin to prevent the video being sent to your contacts. The email often includes your real name, location, or part of a password to lend credibility.
In the vast majority of cases there is no video. The sender has your email address and an old password from a breach database, and that is the entirety of their leverage. The technique is a bluff applied at industrial scale — millions of emails are sent because even a tiny response rate generates significant revenue.
If you recognise the password mentioned, it is worth changing that password anywhere you still use it, and enabling two-factor authentication. But paying has no benefit — it marks you as someone who pays, and further demands will follow.
Common red flags
- Email contains one of your old or current passwords
- Claims your webcam was activated and you were recorded
- Demands Bitcoin payment within a short deadline
- Threatens to send the alleged video to your email contacts or social media
- Claims to have installed keylogging or screen-capture malware
- Sender address is a random string — not anyone you know
What to do now
- Do not pay anything — payment invites further demands
- Do not reply to the email
- Change the password mentioned in the email on any account where you still use it
- Enable two-factor authentication on important accounts
- Run a malware scan on your device for peace of mind
- Report the email to your national cybercrime reporting centre
Frequently asked questions
How did they get my password?
Passwords appear in large breach databases — compilations of credentials from past hacks of sites like LinkedIn, Adobe, MyFitnessPal, and thousands of others. These databases are bought and sold on criminal marketplaces.
What if there is a genuine video from a real interaction?
Real sextortion, involving an actual compromising image or video obtained through a relationship, is different and more serious. Report it to law enforcement and, if you are under 18, to CEOP or your country's equivalent child protection authority.