Security News New phishing scam sends out fake Netflix suspension emails

Exterminator

Exterminator

Community Manager
Thread author
Verified
Staff Member
Well-known
Oct 23, 2012
12,527
A new phishing scam pretending to be from entertainment company Netflix has recently been making the rounds online.

According to a report by MailGuard, the email is utilizing a template system to personalize messages. This means that the email is set to display the recipient's name, therefore making it look more legitimate.


Fake emails are personalized per recipient. | via MailGuard
The email in question contains an alert informing that the recipient's Netflix subscription has expired, and that they have to "restart their membership" to be able to enjoy the service. If the link is clicked, a bogus Netflix page is opened, which will then ask for the user to login.
It will even require the user to enter personal details such as credit card details, driver's license, mother's maiden name, billing address, and so on. Obviously, once these are submitted, the credentials will be sent over to the cybercriminals, with the intent of using them for identity theft or other related activities in the future.

MailGuard explains the phishing process further:

The fake Netflix site this scam is using is built on a compromised Wordpress blog. Scammers can break into Wordpress sites by making use of vulnerabilities in blog plugins and once in, they can make the website look enough like a real Netflix login page to trick their victims.

Phishing is nothing new, yet it remains one of the most alarming things to look out for online. These emails can look very real, which can easily trick those not well aware. To lessen chances of falling victim to such schemes, it always pays to double check the sender of the email and the URLs that are being opened, as these usually point out if a message is indeed coming from genuine sources.

Source: MailGuard via Deadline
Click to expand...
 
  • Like
Reactions: XhenEd, Transhumana, harlan4096 and 2 others
zzz00m

zzz00m

Level 6
Verified
Well-known
Jun 10, 2017
248
That's pure evil!!! :mad:

And the main reason why I rarely click login links within emails, unless it is one I just solicited to reset a password or something.
 
You must log in or register to reply here.

Similar threads

nicolaasjan
    • +Reputation
Booking.com customers targeted by scam ‘confirmation’ emails
Replies
0
Views
574
News Archive
nicolaasjan
nicolaasjan
Ink
    • Like
    • +Reputation
Security News ZeroFont Phishing Attack to Bypass Spam Filters
Replies
4
Views
2,185
Security News
Trident
Trident
vtqhtr413
    • Like
    • +Reputation
Scams & Phishing News New Phishing Scam Hooks META Businesses with Trademark Threats
Replies
0
Views
1,296
Security News
vtqhtr413
vtqhtr413

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top