Phishing attacks have been existing as long as email. However, a recent campaign attacking Netflix subscribers is exceptionally clever as it bypasses security software and makes victims believe that it is authentic.
This new Netflix phishing scam is detected by researchers from cloud office security organization Armorblox. According to researchers, the phishing emails claim that those are coming from Netflix Support as well as alerts that there is been a confirmation breakdown of the monthly billing process. Moreover, these attacks request the receivers to update their details through a link in the email otherwise they will suspend their subscription.
The difference between current and other scams is that clicking the link directs users to a functioning Captcha that seems as if it belongs to the website of Netflix. Developed to verify either someone is human or a bot, the forms populate the internet. And, in this case, perform a function as reassurance that the website is authentic.
The target users after they have passed the Captcha are directed to a login page which looks similar to Netflix’s login page. There are warning signals. However, the address bar exposes this is not the domain of Netflix. Also when you click on the link it simply reloads the page.
Once the target people logged in, they are then required to update their billing address and payment information before they have been told that the process has succeeded. At this point, they are automatically taken to the actual Netflix homepage, and the fraudsters have all their sensitive data.
One thing which is different in this scam is the use of the Captcha. Captcha hides the real landing page from security software that examines URL redirection. Furthermore, authentic domains are used to host all the pages including the artificial Netflix website which is hosted by a Texas oil and gas organization.
According to ArmorBlox,
“Attackers likely exploited vulnerabilities in the web server or the Content Management Systems (CMS) to host these pages on legitimate parent domains without the website admins knowing.”
Although readers of this website are aware that never click on a link which exists inside an email as well as could detect the invalid URL on the fake Netflix page, the Captcha likely persuade a lot of less tech-savvy users that the website is genuine.
Get real time update about this post categories directly on your device, subscribe now.