He's looking to blackmail someone who placed an order without encrypting their address. Apparently this is OK since the guy has also purchased "like 10+ stolen credit card infos"
And it's no biggie to do this, cuz the phishing attempt didn't get any PIN numbers, so the accounts are "mostly useless" anyway.
smh
Lesson learned here, this is another reason to always use PGP!
To anyone who's ever been phished, I think his post is a great place for you to... talk about your feelings...
i do encrypt my address but i think i'll add, i don't know, fifty or sixty additional OPSEC measures to my buying process now
i already have enough to worry about with LE and the potential for scamming. don't need some dickhead who knows a phisher helping himself to my money because i slipped up once