- Jun 9, 2013
- 6,720
A new phishing campaign that spoofs Netflix and collects credit card details is targeting both consumers and corporate email users—hoping to capitalize on the thirst for streaming video. The results could be dangerous for businesses and individuals alike.
Uncovered by PhishMe, the gambit begins with a mail purporting to be from the streaming giant, asking for an account update. Once the victim enters their Netflix credentials on a spoofed website, they are redirected to a second screen, which harvests the victim’s credit card credentials. The final step shows a thank-you message, where clicking the “Get Started” button takes visitor to Netflix.com, meaning that they could remain blissfully unaware that they’ve been phished for quite some time.
PhishMe’s analysis found that the email address associated with the campaign has been involved in the use of five different phishing toolkits since June, targeting customers of Chase Bank, Comcast, Netflix, TD Bank and Wells Fargo. But business users can be at risk as well.
“Everyone has accounts for these consumer services,” said PhishMe analyst Chase Sims, in a blog. “Attackers are not always discriminant in who receives their phishing messages. This might be successful because people use corporate email for consumer stuff all the time. If the threat actor can find examples of password reuse, phishing a consumer service like Netflix might lead to illicit access to an enterprise email account and associated services.”
Read More. Netflix Phish Presses Play on Corporate Dangers
Uncovered by PhishMe, the gambit begins with a mail purporting to be from the streaming giant, asking for an account update. Once the victim enters their Netflix credentials on a spoofed website, they are redirected to a second screen, which harvests the victim’s credit card credentials. The final step shows a thank-you message, where clicking the “Get Started” button takes visitor to Netflix.com, meaning that they could remain blissfully unaware that they’ve been phished for quite some time.
PhishMe’s analysis found that the email address associated with the campaign has been involved in the use of five different phishing toolkits since June, targeting customers of Chase Bank, Comcast, Netflix, TD Bank and Wells Fargo. But business users can be at risk as well.
“Everyone has accounts for these consumer services,” said PhishMe analyst Chase Sims, in a blog. “Attackers are not always discriminant in who receives their phishing messages. This might be successful because people use corporate email for consumer stuff all the time. If the threat actor can find examples of password reuse, phishing a consumer service like Netflix might lead to illicit access to an enterprise email account and associated services.”
Read More. Netflix Phish Presses Play on Corporate Dangers
