Massive Netflix Fraud Stealing Account and Credit Card Information from Users in 23 Countries

Massive Netflix Fraud Stealing Account and Credit Card Information from Users in 23 Countries

Bitdefender reports that an SMS phishing campaign is targeting Netflix users in 23 countries in an attempt to steal login credentials, personal information, and even credit card information.

In a new blog post, the cybersecurity firm details how the scare campaign, which supposedly began in September, is a common method used to trick customers into believing their subscriptions have not been paid and their accounts will soon be suspended.

SMS messages sent to potential victims provide a link to click to authenticate their account. They are also prompted to update their credit card information to keep their account up-to-date. As you might expect, these important login and financial information are not sent to Netflix. Instead, these information will be repackaged and sold on the dark web. In this way, the fraudsters behind this campaign are rewarded, while the hackers who purchase this data will have a wealth of new credentials and credit card information to use in future attacks.

This particular SMS phishing campaign appears to have spread to 23 countries, including the United States, Germany, Spain, Australia, Greece, and Portugal. The link appears to be official and uses the Netflix name, so at first glance it appears to be genuine, although some recipients of it may be savvy enough to avoid clicking through. However, the sense of urgency of potentially losing access to their Netflix account may cause less knowledgeable users to click on the link and enter their information.

It is important to note that Netflix does not contact customers via text message, and most companies do not. While they do not offer two-factor authentication for enhanced security, there are other ways to protect yourself and your account.

First, make sure you have a security solution set up on your device, such as one of the best anti-virus software suites or best Android anti-virus apps, to protect against malware and malicious threats.

From there, never open links from unknown or even unexpected senders. If in doubt, do not follow the link, but visit the website manually by typing the address into your browser's search bar. That way, you can check your account information and verify that the text you received is authentic without having to click on any suspicious links along the way. Hackers and scammers love to impersonate top tech brands, including Apple and Microsoft, so it is not surprising that they have started using Netflix as an attack decoy, especially ahead of the holiday season. It is up to you to carefully check every email, text, and even social media message you receive to avoid falling victim to such scams. But if you keep your wits about you and avoid clicking on suspicious links, you and your Netflix account are safe.

Categories