“Restitution Payment for Online Scam Victim” Email Scam
Written by: Stelian Pilici
Published on:
The “Restitution Payment for Online Scam Victim” email is a scam that targets individuals who have fallen victim to online scams in the past. This email, which appears to be from the Financial Monitoring Division and the FBI, claims that the recipient is eligible to receive a restitution payment for an online scam they have been a victim of. Recipients are asked to provide personal information and subsequently, to send money in order to receive their restitution.
It is important to note that the Financial Monitoring Division and FBI will not ask individuals to respond to an email address in order to receive their restitution and the contact information provided in the email is fake. Therefore, any email claiming to be from these organizations and asking for personal information or money should be considered a scam and should be deleted.
This article contains:
What is the “Restitution Payment for Online Scam Victim” email?
The “Restitution Payment for Online Scam Victim” email is a scam that targets individuals who have fallen victim to online scams in the past. This email, which appears to be from the Financial Monitoring Division and the FBI, claims that the recipient is eligible to receive a restitution payment for an online scam they have been a victim of.
The email includes a reference number and case details, which may seem legitimate to the recipient. It also includes contact information for a law firm called Leber Wilhelm Chambers & Co., which is supposed to assist the recipient in receiving their restitution payment.
However, the Financial Monitoring Division and FBI will not ask individuals to respond to an email address in order to receive their restitution. Additionally, the law firm and contact information provided in the email are fake.
Here is what a typical “Restitution Payment for Online Scam Victim” scam message looks like:
From: Rena Danton danton@swissmail.com
Attn; Dear Sir/ Madam,
FILE REF ID: AU405994000
Notification Date: 07.04.2019
Notification Subject: Identity Theft Settlement
I have tried to reach you but to no avail.
Please go through the attached and get back to me immediately.
Yours Truly,
Mrs. Rena Danton
Notification Dept.
Financial Monitoring Division -UK
Internet Crime Complaint Center In
Partnership with:
Federal Bureau of Investigation (FBI) National
White Collar Crime Center (NW3C)
Court Notice: Restitution Payment Eligibility
Notification Ref ID: AU405994000
Court orders in the below detailed case indicate that you are eligible to receive a restitution payment for an online scam you’ve been a victim of.
See following case details:
The case on infamous internet fraudsters, Kevin Amuche, 32 and Henrik Bialek, has officially been tried and closed in Basel Stadt, Switzerland after numerous rejected extradition appeals. The Nigerian and Swiss nationals accordingly, were arrested at the Euro Airport, Basel while trying to flee Switzerland federal authorities in an unrelated fraud case.
The case was closed based upon the following terms; I. Court-ordered restitution -select offshore Swiss bank accounts
shall be converted into restitution funds to be remitted to eligible affected victims, II. Time served plus 257 months, court orders reveal.
The aforementioned defendants and their group of co-offenders used over 450 aliases to mask their original identities, which is why you may not be familiar with the real names of the defendants. 1 To that regard, if you do not recollect an incident, you were certainly a victim of identity theft. However, records suggest that you have been a victim because your contact details and personal information were found on several computer devices belonging to the defendants, alongside corresponding expenses, services and property acquired using your credentials. Following court orders, this
makes you eligible for restitution in the amount of £521,911.00 for damages caused by his crimes.
During investigation, authorities revealed that the operated on an international scale victimizing thousands of individuals of over 18 nationalities and hid a majority of their acquisitions in offshore Swiss bank accounts and properties. Based on that revelation, the Switzerland government concluded that the extradition proceedings would
be impossible and that litigation proceedings had to be completed with no open dissemination to avoid jurisdiction issues, as well as maintain unitary judgment and integrity in international relations. Because this was a private trial,
all victims (including you) were represented by a local court-appointed public representative.
To receive your restitution contact immediately:
Leber Wilhelm Chambers & Co. (Solicitors, Advocates/Notary Public)
Manchester, United Kingdom.
Tel: +44 161 507 1583
Email: leber@leberwilhelmllc.co.uk
https://www.leberwilhelmllc.co.uk
Leber Wilhelm Esq. and Associates, P.C. is a European based law firm with office in the UK and an impeccable track record of success and very successful at what they do. To avoid a lengthy process and complications leading from unsuccessful participants, please keep your reference Numbers safe and away from 2nd or 3rd parties.
Yours Truly,
Rena Danton
The “Restitution Payment for Online Scam Victim” email is a scam that aims to infect your device with malware to steal your personal and financial information.
If you receive this email, do not respond to it or provide any personal information or money to the scammers. Instead, report the email to the FBI’s Internet Crime Complaint Center and to the FTC.
If you receive the “Restitution Payment for Online Scam Victim” email or any other suspicious email it is important to take the following steps:
Do not open any attachments or click on any links in the email. The attachment or link is likely to contain malware.
Do not provide any personal information. Scammers may ask for personal information, such as your address or credit card information, in order to steal your identity.
Verify the authenticity of the email and the sender.
Report the email as spam. This will help to prevent other people from falling victim to the scam.
If you have already opened the attachment, run a full scan on your device with Malwarebytes Anti-Malware.
If you have already provided personal information, contact your bank and credit card companies, and monitor your account for any suspicious activity.
It’s important to be cautious when receiving emails from unknown or suspicious sources and to take steps to protect yourself from potential scams.
Is the “Restitution Payment for Online Scam Victim” email real?
No, and don’t panic. If you receive the DHL Shipment Notification scam email, do not open the attachment or click on any links. Instead, delete the email immediately. If you are unsure about the legitimacy of an email, you can contact DHL directly to inquire about the shipment.
The “Restitution Payment for Online Scam Victim” email is a scam that tries to trick you into clicking on a link or opening an attachment. To make the email more credible, these scammers use fake invoice numbers, renewal dates, official logos, and promotional banners.
Here are signs that this email is a scam, even though it looks like it comes from a company you know — and even uses the company’s logo in the header:
A generic greeting is used in place of a name (eg. “customer,” “account holder,” or “dear”).
The sender’s email address is not associated with a legitimate domain name
The email invites you to click on a link to resolve an issue. Most reputable organizations will not ask users to disclose sensitive information (e.g. credit card numbers) by clicking on a link.
There is a time limit or uncharacteristic sense of urgency
Poor grammar, spelling, and sentence structure may hint that an email is not from a reputable source.
While real companies might communicate with you by email, legitimate companies won’t email or text message you with a link to login or update your account. Phishing emails can often have real consequences for people who give scammers their information, including identity theft.
What should I do now?
We recommend that you ignore the content of the “Restitution Payment for Online Scam Victim” email and delete it from your Inbox. If you have downloaded any attachments or clicked on any links from this email, or if you suspect that your computer might be infected with malware, you can follow the below steps to scan your device for malware with Malwarebytes and remove it for free.
Check if you’re device is infected with malware
The “Restitution Payment for Online Scam Victim” phishing emails may contain malware within the attachments or links that appear in the body of the email. By interacting with the malware — for example, opening or downloading an attachment that contains a malicious payload — the user may unknowingly infect their device or network, enabling attackers to gain access to protected applications and data.
To check your computer or phone for Trojans, browser hijackers, or other malware and remove them for free, you run a scan with Malwarebytes Free.
Malwarebytes can run on Windows, Mac, and Android devices. Depending on which operating system is installed on the device you’re trying to run a Malwarebytes scan, please click on the tab below and follow the displayed steps.
Malwarebytes For WindowsMalwarebytes For MacMalwarebytes For Android
Scan your computer with Malwarebytes for Windows to remove malware
Malwarebytes stands out as one of the leading and widely-used anti-malware solutions for Windows, and for good reason. It effectively eradicates various types of malware that other programs often overlook, all at no cost to you. When it comes to disinfecting an infected device, Malwarebytes has consistently been a free and indispensable tool in the battle against malware. We highly recommend it for maintaining a clean and secure system.
Download Malwarebytes for Windows
You can download Malwarebytes by clicking the link below.
After the download is complete, locate the MBSetup file, typically found in your Downloads folder. Double-click on the MBSetup file to begin the installation of Malwarebytes on your computer. If a User Account Control pop-up appears, click “Yes” to continue the Malwarebytes installation.
Follow the On-Screen Prompts to Install Malwarebytes
When the Malwarebytes installation begins, the setup wizard will guide you through the process.
You’ll first be prompted to choose the type of computer you’re installing the program on—select either “Personal Computer” or “Work Computer” as appropriate, then click on Next.
Malwarebytes will now begin the installation process on your device.
When the Malwarebytes installation is complete, the program will automatically open to the “Welcome to Malwarebytes” screen.
On the final screen, simply click on the Open Malwarebytes option to start the program.
Enable “Rootkit scanning”.
Malwarebytes Anti-Malware will now start, and you will see the main screen as shown below. To maximize Malwarebytes’ ability to detect malware and unwanted programs, we need to enable rootkit scanning. Click on the “Settings” gear icon located on the left of the screen to access the general settings section.
In the settings menu, enable the “Scan for rootkits” option by clicking the toggle switch until it turns blue.
Now that you have enabled rootkit scanning, click on the “Dashboard” button in the left pane to get back to the main screen.
Perform a Scan with Malwarebytes.
To start a scan, click the Scan button. Malwarebytes will automatically update its antivirus database and begin scanning your computer for malicious programs.
Wait for the Malwarebytes scan to complete.
Malwarebytes will now scan your computer for browser hijackers and other malicious programs. This process can take a few minutes, so we suggest you do something else and periodically check the status of the scan to see when it is finished.
Quarantine detected malware
Once the Malwarebytes scan is complete, it will display a list of detected malware, adware, and potentially unwanted programs. To effectively remove these threats, click the “Quarantine” button.
Malwarebytes will now delete all of the files and registry keys and add them to the program’s quarantine.
Restart your computer.
When removing files, Malwarebytes may require a reboot to fully eliminate some threats. If you see a message indicating that a reboot is needed, please allow it. Once your computer has restarted and you are logged back in, you can continue with the remaining steps.
Your computer should now be free of trojans, adware, browser hijackers, and other malware.
If your current antivirus allowed this malicious program on your computer, you may want to consider purchasing Malwarebytes Premium to protect against these types of threats in the future. If you are still having problems with your computer after completing these instructions, then please follow one of the steps:
Scan your computer with Malwarebytes for Mac to remove malware
Malwarebytes for Mac is an on-demand scanner that can destroy many types of malware that other software tends to miss without costing you absolutely anything. When it comes to cleaning up an infected device, Malwarebytes has always been free, and we recommend it as an essential tool in the fight against malware.
Download Malwarebytes for Mac.
You can download Malwarebytes for Mac by clicking the link below.
When Malwarebytes has finished downloading, double-click on the setup file to install Malwarebytes on your computer. In most cases, downloaded files are saved to the Downloads folder.
Follow the on-screen prompts to install Malwarebytes.
When the Malwarebytes installation begins, you will see the Malwarebytes for Mac Installer which will guide you through the installation process. Click “Continue“, then keep following the prompts to continue with the installation process.
When your Malwarebytes installation completes, the program opens to the Welcome to Malwarebytes screen. Click the “Get started” button.
Select “Personal Computer” or “Work Computer”.
The Malwarebytes Welcome screen will first ask you what type of computer are you installing this program, click either Personal Computer or Work Computer.
Click on “Scan”.
To scan your computer with Malwarebytes, click on the “Scan” button. Malwarebytes for Mac will automatically update the antivirus database and start scanning your computer for malware.
Wait for the Malwarebytes scan to complete.
Malwarebytes will scan your computer for adware, browser hijackers, and other malicious programs. This process can take a few minutes, so we suggest you do something else and periodically check on the status of the scan to see when it is finished.
Click on “Quarantine”.
When the scan has been completed, you will be presented with a screen showing the malware infections that Malwarebytes has detected. To remove the malware that Malwarebytes has found, click on the “Quarantine” button.
Restart computer.
Malwarebytes will now remove all the malicious files that it has found. To complete the malware removal process, Malwarebytes may ask you to restart your computer.
Your Mac should now be free of adware, browser hijackers, and other malware.
If your current antivirus allowed a malicious program on your computer, you might want to consider purchasing the full-featured version of Malwarebytes Anti-Malware to protect against these types of threats in the future. If you are still experiencing problems while trying to remove a malicious program from your computer, please ask for help in our Mac Malware Removal Help & Support forum.
Scan your phone with Malwarebytes for Android to remove malware
Malwarebytes for Android automatically detects and removes dangerous threats like malware and ransomware so you don’t have to worry about your most-used device being compromised. Aggressive detection of adware and potentially unwanted programs keeps your Android phone or tablet running smooth.
Download Malwarebytes for Android.
You can download Malwarebytes for Android by clicking the link below.
In the Google Play Store, tap “Install” to install Malwarebytes for Android on your device.
When the installation process has finished, tap “Open” to begin using Malwarebytes for Android. You can also open Malwarebytes by tapping on its icon in your phone menu or home screen.
Follow the on-screen prompts to complete the setup process
When Malwarebytes will open, you will see the Malwarebytes Setup Wizard which will guide you through a series of permissions and other setup options. This is the first of two screens that explain the difference between the Premium and Free versions. Swipe this screen to continue. Tap on “Got it” to proceed to the next step. Malwarebytes for Android will now ask for a set of permissions that are required to scan your device and protect it from malware. Tap on “Give permission” to continue. Tap on “Allow” to permit Malwarebytes to access the files on your phone.
Update database and run a scan with Malwarebytes for Android
You will now be prompted to update the Malwarebytes database and run a full system scan.
Click on “Update database” to update the Malwarebytes for Android definitions to the latest version, then click on “Run full scan” to perform a system scan.
Wait for the Malwarebytes scan to complete.
Malwarebytes will now start scanning your phone for adware and other malicious apps. This process can take a few minutes, so we suggest you do something else and periodically check on the status of the scan to see when it is finished.
Click on “Remove Selected”.
When the scan has been completed, you will be presented with a screen showing the malware infections that Malwarebytes for Android has detected. To remove the malicious apps that Malwarebytes has found, tap on the “Remove Selected” button.
Restart your phone.
Malwarebytes for Android will now remove all the malicious apps that it has found. To complete the malware removal process, Malwarebytes may ask you to restart your device.
Your phone should now be free of adware, browser hijackers, and other malware.
If your current antivirus allowed a malicious app on your phone, you may want to consider purchasing the full-featured version of Malwarebytes to protect against these types of threats in the future. If you are still having problems with your phone after completing these instructions, then please follow one of the steps:
Restore your phone to factory settings by going to Settings > General management > Reset > Factory data reset.
Here are 10 basic security tips to help you avoid malware and protect your device:
Use a good antivirus and keep it up-to-date.
It's essential to use a good quality antivirus and keep it up-to-date to stay ahead of the latest cyber threats. We are huge fans of Malwarebytes Premium and use it on all of our devices, including Windows and Mac computers as well as our mobile devices. Malwarebytes sits beside your traditional antivirus, filling in any gaps in its defenses, and providing extra protection against sneakier security threats.
Keep software and operating systems up-to-date.
Keep your operating system and apps up to date. Whenever an update is released for your device, download and install it right away. These updates often include security fixes, vulnerability patches, and other necessary maintenance.
Be careful when installing programs and apps.
Pay close attention to installation screens and license agreements when installing software. Custom or advanced installation options will often disclose any third-party software that is also being installed. Take great care in every stage of the process and make sure you know what it is you're agreeing to before you click "Next."
Install an ad blocker.
Use a browser-based content blocker, like AdGuard. Content blockers help stop malicious ads, Trojans, phishing, and other undesirable content that an antivirus product alone may not stop.
Be careful what you download.
A top goal of cybercriminals is to trick you into downloading malware—programs or apps that carry malware or try to steal information. This malware can be disguised as an app: anything from a popular game to something that checks traffic or the weather.
Be alert for people trying to trick you.
Whether it's your email, phone, messenger, or other applications, always be alert and on guard for someone trying to trick you into clicking on links or replying to messages. Remember that it's easy to spoof phone numbers, so a familiar name or number doesn't make messages more trustworthy.
Back up your data.
Back up your data frequently and check that your backup data can be restored. You can do this manually on an external HDD/USB stick, or automatically using backup software. This is also the best way to counter ransomware. Never connect the backup drive to a computer if you suspect that the computer is infected with malware.
Choose strong passwords.
Use strong and unique passwords for each of your accounts. Avoid using personal information or easily guessable words in your passwords. Enable two-factor authentication (2FA) on your accounts whenever possible.
Be careful where you click.
Be cautious when clicking on links or downloading attachments from unknown sources. These could potentially contain malware or phishing scams.
Don't use pirated software.
Avoid using Peer-to-Peer (P2P) file-sharing programs, keygens, cracks, and other pirated software that can often compromise your data, privacy, or both.
To avoid potential dangers on the internet, it's important to follow these 10 basic safety rules. By doing so, you can protect yourself from many of the unpleasant surprises that can arise when using the web.
Meet Stelian Pilici
Stelian leverages over a decade of cybersecurity expertise to lead malware analysis and removal, uncover scams, and educate people. His experience provides insightful analysis and valuable perspective.
