This appears to be causing some panic at my company lately.
Spoof mails (usually sending as recipient's address) claiming to be a darknet hacker and sometimes revealing passwords of users asking for bitcoin payment.
It seems that this is related to a recent LinkedIn hack or something.