Urgent warning to Netflix users over new scam

Advertisement

Cybersecurity experts have uncovered an SMS phishing campaign targeting Netflix users in an attempt to steal accounts and credit card information. Hackers are sending fraudulent text messages that claim the victim has failed to pay for their subscription and the account will soon be suspended.

A link is also included that takes users to a sit designed to look like Netflix's platform, prompting them to give their login and credit card information. Experts urge Netflix members to be vigilant when receiving communications from the streaming giant as hidden signs point to criminal activity.

A link is also included that takes users to a sit designed to look like Netflix’s platform, prompting them to give their login and credit card information. Experts urge Netflix members to be vigilant when receiving communications from the streaming giant as hidden signs point to criminal activity.

The language used in the messages is a dead giveaway, such as grammatical errors, and links with terms not associated with 'Netflix.' Cybersecurity firm Bitdefender, which uncovered the scam, has identified the fake messages, including several with misspelled words and strange links. 'NETFLIX : There was an issue processing your payment. To keek your services active, please sign in and confirm your details at : https://account-details[.]com,' one message reads that features misspelled words.

The language used in the messages is a dead giveaway, such as grammatical errors, and links with terms not associated with ‘Netflix.’ Cybersecurity firm Bitdefender, which uncovered the scam, has identified the fake messages, including several with misspelled words and strange links. ‘NETFLIX : There was an issue processing your payment. To keek your services active, please sign in and confirm your details at : https://account-details[.]com,’ one message reads that features misspelled words.

Bitdefender has urged users to never open messages from unknown senders and if they do, do not click links accompanied with the text. 'We will never ask you to enter your personal information in a text or email,' Netflix said in a statement about the fishy text messages. 'We will never request payment through a 3rd party vendor or website. If the text or email links to a URL that you don't recognize, don't tap or click it.

Bitdefender has urged users to never open messages from unknown senders and if they do, do not click links accompanied with the text. ‘We will never ask you to enter your personal information in a text or email,’ Netflix said in a statement about the fishy text messages. ‘We will never request payment through a 3rd party vendor or website. If the text or email links to a URL that you don’t recognize, don’t tap or click it.

Bitdefender found the scam has been running wild in 23 countries, including the US, since September. Other countries being target include Germany, Spain, France, Greece and Australia. 'A big security problem is that Netflix doesn't have 2FA (two-factor authentication) and only relies on usernames and passwords,' Bitdefender shared.

Bitdefender found the scam has been running wild in 23 countries, including the US, since September. Other countries being target include Germany, Spain, France, Greece and Australia. ‘A big security problem is that Netflix doesn’t have 2FA (two-factor authentication) and only relies on usernames and passwords,’ Bitdefender shared.

'This means that Netflix customers are very exposed to account takeover attacks via credential stuffing.' Many Netflix users who have received the fake messages have shared how others can avoid being scammed. Miguel A. Calles, a security analyst, posted a message he received : Notice that 'http://netflix.com' is at the start of the domain. So it must be valid at first glance, right? 'Did you notice the address starts with ¿http://¿ instead of the ¿https://¿ that Netflix and other major companies enforce?'

‘This means that Netflix customers are very exposed to account takeover attacks via credential stuffing.’ Many Netflix users who have received the fake messages have shared how others can avoid being scammed. Miguel A. Calles, a security analyst, posted a message he received : Notice that ‘http://netflix.com’ is at the start of the domain. So it must be valid at first glance, right? ‘Did you notice the address starts with “http://” instead of the “https://” that Netflix and other major companies enforce?’

He continued to explain that criminals will also add '911' in the URL to spark urgency among victims. 'Having this number in the address plays with our subconscious that we must react right away,' Calles added, urging users to never click links from unknown text message senders. But if users accidentally click the link, Bitdefender explains the lengths criminals go to steal your data and money. 'Funnily enough, they first want to see if you're a robot. This is likely done to give potential victims a false sense of security and to reinforce the impression that they are visiting an official website,' the firm shared.

He continued to explain that criminals will also add ‘911’ in the URL to spark urgency among victims. ‘Having this number in the address plays with our subconscious that we must react right away,’ Calles added, urging users to never click links from unknown text message senders. But if users accidentally click the link, Bitdefender explains the lengths criminals go to steal your data and money. ‘Funnily enough, they first want to see if you’re a robot. This is likely done to give potential victims a false sense of security and to reinforce the impression that they are visiting an official website,’ the firm shared.

'The next step is to collect credentials from Netflix customers. As soon as the user inputs those credentials, the attackers have them.' Once login information is given, a 'Your account is temporarily suspended' alert appears on the screen with another option to make a payment. 'There's even the option to pay via a Gift Card instead of a credit card, which is just as good,' said Bitdefender. 'Netflix does offer the option to purchase gift cards, but it's worth noting that they're not available in every region.' If users do fall for the scam, the firm explained that their 'Netflix credentials and payment information will likely end up on the dark web, where they will be sold in bundles or as a single item.'

‘The next step is to collect credentials from Netflix customers. As soon as the user inputs those credentials, the attackers have them.’ Once login information is given, a ‘Your account is temporarily suspended’ alert appears on the screen with another option to make a payment. ‘There’s even the option to pay via a Gift Card instead of a credit card, which is just as good,’ said Bitdefender. ‘Netflix does offer the option to purchase gift cards, but it’s worth noting that they’re not available in every region.’ If users do fall for the scam, the firm explained that their ‘Netflix credentials and payment information will likely end up on the dark web, where they will be sold in bundles or as a single item.’

Want more stories like this from the Daily Mail? Visit our profile page and hit the follow button above for more of the news you need.

Want more stories like this from the Daily Mail? Visit our profile page and hit the follow button above for more of the news you need.

***
Read more at DailyMail.co.uk