Register for The Paypers news Follow The Paypers on LinkedIn! Follow The Paypers on Twitter! Follow The Paypers on Facebook! Follow The Paypers on Google+!
The Paypers, paypers, Insight in payments, News, Reports, Events
Digital Identity, Security & Online Fraud

Symantec discovers phishing attach targeting Netflix users

Friday 12 February 2016 | 11:30 AM CET

A recently discovered phishing campaign redirects users to a fake Netflix website and steals payment card details.

According to recent research by Symantec, cyber-criminals are stealing user's login credentials for popular online streaming service Netflix in an attempt to steal banking information. One malware campaign involves malicious files posing as Netflix software on compromised computers desktops. The files are downloaders that, once executed, open the Netflix home page as a decoy whilst downloading Banload, a Trojan primarily used in Brazil that steals banking information.

Another campaign involves the phishing of Netflix credentials. The streaming service allows between one and four users on the same account, meaning that an attack can piggyback on a user’s subscription without their knowledge. In these phishing campaigns, attackers redirect users to a fake Netflix website to coax the user into providing login credentials, personal information and payment card details.

In addition to the campaigns, there is an underground economy targeting users who wish to access Netflix for a reduced price or free. These accounts either provide a month of viewing or give full access to the premium service. In most advertisements for these services, the seller asks the buyer not to change any information on the accounts, such as the password, as it may render them unusable. This is because a password change would alert the user who had their account stolen of the compromise.

Print | Contact editor | Mail
© 2016 The Paypers
More: Abstract | Link