- Jan 24, 2011
- 9,377
We’ve seen countless fake pages purporting to be a bank or a popular shopping site that ask you for personal information.
This type of scam is called phishing and typically starts with an urgent-looking message in your inbox. Upon following the directions (typically clicking on a link), you’re taken to a page that looks like an exact replica of the genuine company.
Eric Lawrence, creator of the famous Fiddler web debugger, spotted a phishing attack targeting Netflix customers. Readers of this blog may remember a similar one we identified several months ago.
This new one is more sophisticated (better graphics, etc) although it does not have the tech support scam element but instead goes after your identity and wallet.
The bogus domain netflix-ssl.net (IP address: 176.74.28.254) was registered a few days ago through the “Crazy Domains FZ-LLC” registrar.
The information requested on the phishing page includes name, address and credit card details. It’s sent back to the bad guys’ server with multiple POST requests such as the one below:
Read more: https://blog.malwarebytes.org/fraud...netflix-site-wants-to-leave-you-high-and-dry/