Netflix credential phishing hides behind working CAPTCHA

silversurfer

Level 85
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Malware Hunter
Well-known
Aug 17, 2014
10,057
A recent wave of phishing attacks aiming to steal payment card info and credentials for Netflix streaming service starts with redirecting to a functioning CAPTCHA page to bypass email security controls.

The actor behind these attempts used a "failed payment" theme to engage potential victims into the redirect chain leading to the phishing page.

The fraudulent emails were sent at the beginning of the month and purported to be a notification from the Netflix support service about issues with verifying the billing address and payment details.

Looking at the sender's address (netfiix@csupport .co), it is clear that the attacker made an effort to make it look legitimate by trying to impersonate Netflix's customer support.

Researchers at Armorblox, a company fighting targeted email attacks, analyzed the redirection chain. It all starts with a link in the message that takes to the phishing page.
 

Brahman

Level 16
Verified
Top Poster
Well-known
Aug 22, 2013
799
I know phishing is a differt matter all together but Its a shame that Netflix doesn't still support two factor authentication. Its users are always at the mercy of a snooper. What does it cost for Netflix to enable 2FA on their servers, may be nothing at all, but for users its a huge leap and peace of mind.
 

upnorth

Moderator
Verified
Staff Member
Malware Hunter
Well-known
Jul 27, 2015
5,459
I fully agree on 2FA and I personal wouldn't mind. I wonder how it is for example on Disney+? @blackice , I recall you have that service from one of the Disney+ threads. Not sure you still have it.
 
Last edited:

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top