Breaking News Today

Dangerous Netflix scam designed to harvest credit card information

Published: (Updated: ) in Australian News by .

Netflix subscribers are being warned to show caution after a sophisticated phishing scam was discovered flooding inboxes across the country.

Netflix subscribers are being warned to show caution after a sophisticated phishing scam was discovered flooding inboxes across the country.

The scam ironically mimics 3-step verification - a common digital safety feature used to protect sensitive data online – to trick victims into thinking the email is from Netflix.

Victims receive an email purporting to be from the streaming giant, which advises them their "billing information has been modified" and must be updated in the next 24 hours, otherwise their account will be suspended.

A hyperlink to Netflix's "online help centre" is included in the body of the email, with unsuspecting victims taken to a fake login page after clicking the link.

Users who "log in" are led to another phishing page featuring Netflix branding, which urges recipients to update their payment information.

The scam then redirects victims to a third page advising them to perform "a 3-step verification" in order to continue.

Once users have entered a password sent to their mobile phone number, they taken to another screen confirming the information has been updated and services will continue.

Scammers then redirect the user to the actual login page for Netflix.

Email security firm MailGuard said the sole purpose behind this elaborate scam is to steal Netflix users' sensitive data, including credit card information.  

"Cybercriminals have taken great pains to incorporate the exact colour scheme, logo, fonts and popular images commonly found in Netflix pages," the company explained.

"They have also employed 3-step verification as part of this scam. This only adds on to the sense of legitimacy evoked by the email as such a detailed and secure process is expected of a well-established company like Netflix."

READ:  Millions of masks to be handed out at Victorian schools

Despite extensive efforts to disguise the scam as an official correspondence from Netflix, there are several red flags to indicate the email isn't authentic.

These include several grammar and spelling errors in the email and the lack of Netflix domain missing from the email address which sent the initial email.

Nine, the publisher of this website, is the owner of Stan.

Source: 9News https://www.9news.com.au/technology/netflix-email-scam-phishing-scam-mimics-3-step-verification/6ede6c6e-0cbf-4ab5-8797-85d9856e6c0f

Shares
Share This
Finance Advice 2021